Over 79 percent of software supply chains in Malaysia were exposed to cyberattacks in the last 12 months, compared to the global average of 76 percent, according to research by BlackBerry Ltd.
The Canadian software firm unveiled its research at the ongoing Nacsa Cybersecurity Summit in Kuala Lumpur yesterday, revealing that almost 38 percent of organisations took up to a month to recover from the attacks.
The survey, conducted in April 2024 by global research agency Coleman Parkes, followed the Malaysian government’s gazetting of the 2024 Cyber Security Act (Act 854) and the announcement of the National Semiconductor Strategy (NSS) in May.
These initiatives aimed to bolster Malaysia’s position as a global semiconductor powerhouse and underscored the need for secure-by-design software practices and robust regulations to protect the IT supply chain.
The report emphasised the critical importance of these measures in supporting Malaysia’s ambitions in sectors like semiconductor manufacturing and AI.
The study aimed to identify current procedures for managing security breaches in software supply chains.
It revealed that nearly one-third of Malaysian respondents identified operating systems (30 percent) and IoT/connected components (19 percent) as the most at-risk areas, leading to significant financial loss (71 percent), reputational damage (66 percent), and data loss (59 percent) after an attack.
Nacsa chief executive Megat Zuhairy Megat Tajuddin said the findings from the study highlighted the importance of Act 854, which is designed to enhance the cyber-resilience of Malaysia’s critical information infrastructure.
He added that Malaysia also shares a global responsibility to protect the software supply chain and ensure secure-by-design practices through improved compliance, technology adoption, as well as skills and training initiatives.
“This can better protect key infrastructure, boost business confidence, and aid economic growth through smoother international trade and cooperation,” Megat Zuhairy said in a statement yesterday.
Lucrative target
Meanwhile, BlackBerry cybersecurity chief information security officer Christine Gadsby noted that Malaysia is increasing regulatory measures and investment in skills and technology to safeguard critical infrastructure and key industries from cyberattacks.
She said widely distributed sectors like semiconductor manufacturing continue to be a lucrative target for threat actors seeking maximum global impact in an uncertain geopolitical climate.
Gadsby also observed that Malaysian IT leaders indicated in the survey that human factors, such as a lack of skilled talent and technical understanding, continue to challenge industries.
However, it was encouraging to see a high standard for demanding compliance certification when dealing with suppliers.
“Along with training and upskilling efforts, modern AI-powered managed detection and response technologies can also support organisations with 24/7 threat coverage, helping IT teams with fewer resources tackle emerging threats in their software supply chain and navigate complex security incidents,” she said.
The Nacsa Cybersecurity Summit runs until Thursday (Aug 1) at the Putrajaya International Convention Centre.
- Bernama
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.