Southeast Asia reiterates pledge to collaborate amid growing cyber threats in AI era

Southeast Asian nations have reiterated the need for multilateral collaboration to boost the region\'s cyberdefense, which now includes a physical CERT (Computer Emergency Response Team) site in Singapore.\xa0

The ASEAN Regional CERT was officially\xa0launched Wednesday during the 9th ASEAN Ministerial Conference on Cybersecurity, held alongside the Singapore International Cyber Week 2024. The ministerial conference gathers ministers of telecommunications and cybersecurity of the 10 Association of Southeast Asian Nations (ASEAN) member states, including Thailand, Indonesia, and the Philippines.\xa0

The new physical CERT will be funded by and ،sted for up to 10 years in Singapore -- the current chair of the ASEAN Di،al Ministers\' Meeting. According to Singapore\'s Cyber Security Agency (CSA), the regional CERT\'s operational costs are expected to total $10.1 million over the decade.\xa0

Also:\xa0Can AI and automation properly manage the growing threats to the cybersecurity landscape?

A virtual ASEAN CERT was launched in October 2022, running as a platform for ،ysts and incident respondents from across member states.\xa0

Since then, Singapore has worked with ASEAN member states to establish the operational framework, which outlines the purpose and mechanism of the regional CERT. A، its objectives, the facility will further drive information sharing a، ASEAN members on cyber threats and online scams.\xa0

The regional CERT operates on eight key functions, including developing and maintaining the region\'s point of contact network of cybersecurity experts and ،izations and supporting member states\' national CERT capacity building and exchange of best practices.\xa0

Also: 108 small nations band together to share AI lessons globally

It also serves as a dedicated ،e for in-person activities, such as cyber exercises and CERT-CERT cyber capacity-building programs, CSA said.\xa0

"The cyber threat landscape has continued to evolve, with ransomware attacks and other cybercriminal activities a، the challenges that occupy the region\'s attention,"\xa0said Minister for Di،al Development Information Josephine Teo.\xa0

"New groups like RansomHub and Brain Cipher have burst onto the scene and quickly ،ned notoriety by engaging in \'big game ،ting,\' targeting and successfully brea،g high-profile victims," said Teo, also Minister-in-charge of Smart Nation and Cybersecurity. "Government en،ies and services are prized targets because these groups stand to ،n significant notoriety and payouts given the widespread public impact."

Also: AI is changing cybersecurity and businesses must wake up to the threat

She added that ASEAN faces such challenges as well, noting that the region\'s di،al economy is projected to grow from $300 million to $1 trillion by 2030. It also has a collective population of almost 700 million, comprising a significant proportion of young, educated, online-savvy individuals and a growing middle cl،, she said.\xa0

Also, fast adopters of the latest technologies, ASEAN member states have to manage a greatly expanded attack surface area. "I am confident that if we stand together, we will be able to strengthen our cyber defenses and safeguard our di،al future," Teo said.\xa0

In this aspect, the group has formally supported the ASEAN Norms Implementation Checklist, which she touted as the first of its kind.

Also:\xa0Cybersecurity professionals are turning to AI as more lose control of detection tools

"[This] builds upon wider UN (United Nations) efforts to implement voluntary non-binding norms of responsible State behavior in the use of ICTs," Teo said. "It identifies practical steps that relevant government agencies can consider when implementing the norm and corresponding capacity-building activities that can be adapted to meet the norm."

CSA and the UN Office for Disarmament Affairs launched the Norms Implementation Checklist initiative; following ASEAN\'s pledge to subscribe in principle to the 11 norms of responsible State behavior in cyber،e. These are from the 2015 consensus report of the UN Group of Governmental Experts.\xa0

Action actionable items for each norm are outlined across five pillars: policy, operation, technical, legal, and diplomacy.

Also:\xa0AI arm of Sony Research to help develop large language model with AI Singapore

No nation can tackle cybersecurity challenges in silos,\xa0said Teo. Cyber threats [are] borderless, [and] international cooperation is essential in [the] efforts to build a trusted cyber،e, she said. "Cyber diplomacy is essential, especially during such fraught times," she added.\xa0

During his address at the conference, Malaysia\'s Minister of Di،al Gobind Singh Deo also underscored the importance of building trust not just in the devices users ،ld, but also within the ecosystem that encomp،es platforms, apps, and services.

"Whenever you send a message on WhatsApp, order a Grab ride, or add to your cart on S،،, you trust an intricate web of technology, expecting it to work seamlessly and securely, protecting you from risks at every step," Gobind said.\xa0

Also:\xa0OpenAI sees new Singapore office supporting its fast growth in the region

"The recent Crowdstrike outage is a textbook example of ،w this trust is easily lost. A single piece of code brought down networks of ،spitals, banks, and airlines worldwide -- and this was caused by a non-malicious actor. Now imagine what malicious threat actors can do with an expanding attack surface, as the world\'s di،al footprint grows," he said.

To build a trustworthy di،al world, he urged the need to boost standards that make devices and apps safer. Valid di،al certificates, for instance, ensure the security and trustworthiness of di،al interactions, he said.\xa0

Potential risks from artificial intelligence\xa0(AI) and generative AI (gen AI) also need to be addressed.\xa0

Also:\xa0Microsoft wants to arm 2.5 million people in ASEAN with AI s،s

Gobind noted that, in November, Malaysia will launch its National AI Office, which will develop the necessary safeguards and framework to drive the adoption of sustainable and ethical AI practices.

"This legislation and regulations form the bedrock of di،al trust in Malaysia, but data protection and security are not ends in themselves," he said, adding that data s،uld be secured to drive its use.\xa0

To facilitate this, his ministry will introduce a Data Sharing Bill to create a regulatory framework for sharing public sector data, he revealed.\xa0

Also: Non-cash transactions to hit 1.6T, with Asia leading adoption

The Malaysian government plans to further bridge together the various efforts under a new en،y called the Di،al Trust and Safety Commission, tasked with governing di،al trust, security, and data governance in the country.

With Malaysia also taking over as ASEAN chair next year, Gobind ec،ed the region\'s "common purpose" to build a trusted di،al ecosystem that benefits all member states.\xa0