{"id":1057,"date":"2024-12-03T23:50:22","date_gmt":"2024-12-03T23:50:22","guid":{"rendered":"https:\/\/cybersecurityinfocus.com\/?p=1057"},"modified":"2024-12-03T23:50:22","modified_gmt":"2024-12-03T23:50:22","slug":"blackberry-highlights-rising-software-supply-chain-risks-in-malaysia","status":"publish","type":"post","link":"https:\/\/cybersecurityinfocus.com\/?p=1057","title":{"rendered":"BlackBerry Highlights Rising Software Supply Chain Risks in Malaysia"},"content":{"rendered":"
\n
\n
\n
\n
<\/div>\n

In 2024, BlackBerry unveiled new proprietary research<\/a>, underscoring the vulnerability of software supply chains in Malaysia<\/a> and around the world.<\/p>\n

According to the study, 79% of Malaysian organizations reported cyberattacks or vulnerabilities in their software supply chains during the past 12 months, slightly exceeding the global average of 76%. Alarmingly, 81% of respondents revealed they had discovered unknown members within their software supply chains during this period.<\/p>\n

These findings point to the rise in supply chain attacks, targeting vulnerable digital threads that connect millions of organizations.\u00a0 Around the same time this survey was released, BlackBerry\u2019s Global Threat Intelligence Report<\/a> revealed the company detected and stopped an average of 11,500 unique malware samples daily, up 53 percent from the previous reporting period. \u00a0It also said, in the Asia Pacific region, geopolitical tensions continue to influence cyber trends, including rising state-sponsored and financially-motivated cyberattacks on critical infrastructure, supply chains and businesses.<\/p>\n

In tandem, Malaysia\u2019s efforts to bolster cybersecurity resilience through initiatives such as the Cyber Security Act 2024<\/a> (Act 854)<\/strong> and the National Semiconductor Strategy<\/a> (NSS)<\/strong>, will help to strengthen overall preparedness and fortify key industries and critical infrastructure. With ambitions for the NSS to establish Malaysia as a global semiconductor hub, it rightly emphasizes secure-by-design principles for Internet of Things (IoT) components and skills development to strengthen the IT supply chain.<\/p>\n

The Cost of Insecurity<\/strong><\/h3>\n

BlackBerry\u2019s research paints a stark picture of the impact of supply chain breaches. Nearly a third of Malaysian respondents identified operating systems (30%) and IoT components (19%) as their biggest vulnerabilities. The consequences of attacks are severe, including financial losses (71%), reputational damage (66%), and data breaches (59%).<\/p>\n

\n

BlackBerry<\/p>\n<\/div>\n

While many organizations prioritize cybersecurity, 38% admitted recovery from supply chain incidents can take up to a month. Christine Gadsby, BlackBerry\u2019s CISO, emphasized that protecting software supply chains requires more than trust.<\/p>\n

\u201cA comprehensive approach that integrates skilled talent, secure-by-design practices, and modern AI monitoring tools is essential.\u201d<\/em><\/p>\n

Building Cyber-Resilience in Malaysia<\/strong><\/h3>\n

The Cyber Security Act 2024 mandates more rigorous standards for securing Malaysia\u2019s National Critical Information Infrastructure, which is seen as crucial to the nation\u2019s economic future and attracting foreign investment.<\/p>\n

Dr. Megat Zuhairy bin Megat Tajuddin, CEO of NACSA, highlighted the importance of robust supply chain security for Malaysia\u2019s global ambitions in sectors like semiconductors and Artificial Intelligence (AI). <\/p>\n

\u201cBy improving compliance, adopting cutting-edge technologies, and training a skilled workforce, we can protect key infrastructure, boost economic confidence, and strengthen international trade partnerships.\u201d<\/em><\/p>\n

Challenges and Opportunities Ahead<\/strong><\/h3>\n

Despite significant progress in cybersecurity regulation, skills development and other initiatives, the research revealed areas for improvement. Malaysian organizations demonstrate high confidence in their supply chain partners\u2019 cybersecurity measures, with 95% believing their suppliers can prevent vulnerabilities. However, only 18% of companies request ongoing evidence of compliance with security frameworks post-onboarding.<\/p>\n

Moreover, regular software inventory audits are hindered by barriers such as limited technical understanding (58%), inadequate tools (44%), and a lack of skilled talent (40%). To address these challenges, 77% of respondents expressed interest in adopting tools that enhance visibility into software supply chains and automate vulnerability tracking.<\/p>\n

\n

BlackBerry<\/p>\n<\/div>\n

Gadsby concluded by advocating for the integration of Managed Detection and Response (MDR)<\/strong> technologies.<\/p>\n

\u201cThese solutions provide 24\/7 threat monitoring, enabling resource-constrained IT teams to mitigate emerging risks effectively.\u201d<\/em><\/p>\n

The BlackBerry Global Threat Report (September<\/a>) also showed that organisations are increasingly targeted by a plethora of threats such as cyber espionage, eavesdropping, ransomware and phishing attacks. To enhance the resilience of supply chains, organisations in Malaysia should heighten their vigilance and protections cross all threat vectors, including devices and communications<\/a><\/strong>, particularly following recent espionage campaigns infiltrating sovereign telecoms operators<\/a> in the United States and \u2018Lightspy\u2019 mobile espionage actors.<\/p>\n

A Future-Ready Cybersecurity Strategy<\/strong><\/h3>\n

As Malaysia strengthens its cybersecurity posture nationally, BlackBerry\u2019s research highlights the urgency of secure-by-design practices and cross-sector collaboration.<\/p>\n

While these future-focused government policies are an important first step, they cannot thrive without the right training initiatives for a modern cybersecurity workforce. That is why BlackBerry is actively supporting these efforts through its partnership with the Malaysian Communications & Multimedia Commission (MCMC) in operating the Cybersecurity Center of Excellence (CCoE) in Cyberjaya<\/strong>.<\/p>\n

The CCoE is the first of its kind in the region, offering a range of initiatives to help build an ecosystem of cybersecurity training both nationwide and regionally. This will in turn help grow the workforce, fill much needed roles and help to safeguard against cyberattacks targeting Malaysian government institutions, businesses and infrastructure.<\/p>\n

To see the full software supply chain study in APAC, please visit here<\/a>.\u00a0 To access the full global report<\/a>, visit here.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"

In 2024, BlackBerry unveiled new proprietary research, underscoring the vulnerability of software supply chains in Malaysia and around the world. According to the study, 79% of Malaysian organizations reported cyberattacks or vulnerabilities in their software supply chains during the past 12 months, slightly exceeding the global average of 76%. Alarmingly, 81% of respondents revealed they […]<\/p>\n","protected":false},"author":0,"featured_media":1058,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-1057","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-education"],"_links":{"self":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/1057"}],"collection":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1057"}],"version-history":[{"count":0,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/1057\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/media\/1058"}],"wp:attachment":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1057"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1057"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1057"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}