SingCERT

Frequently Asked Questions

FAQ
SingCERT
What does SingCERT do?

The Singapore Computer Emergency Response Team (SingCERT), under the Cyber Security Agency of Singapore (CSA), facilitates the detection, resolution and prevention of cybersecurity incidents for the Singapore constituency. SingCERT achieves these objectives by:

  1. Broadcasting timely alerts, advisories and security patches to highlight security vulnerabilities in software and hardware products, and provide updates on the latest cyber threat trends;
  2. Driving outreach and education to raise cybersecurity awareness and adoption through seminars and workshops;
  3. Collaborating with other international and local CERTs to respond to cyber-related incidents; and
  4. Strengthening cooperation among CERTs and testing of incident handling processes through multiple conferences and cybersecurity exercise drills.
How do I contact SingCERT?

You can email SingCERT at singcert@csa.gov.sg or access SingCERT's Cyber Incident Reporting form at https://www.csa.gov.sg/singcert/reporting

Please note that our operating hours are Monday to Thursday from 8:30am - 6:00pm (GMT+8) and Friday from 8:30am - 5:30pm (GMT+8).

What is SingCERT?

The Singapore Computer Emergency Response Team (SingCERT), is the national CERT in Singapore. It is the point of contact with members of the public, private businesses and international CERTs around the world. SingCERT was set up in October 1997 as a programme of the then Infocomm Development Authority of Singapore (IDA), in collaboration with the National University of Singapore, to facilitate the detection, resolution and prevention of security-related incidents on the Internet. In 1999, SingCERT become a wholly IDA-owned programme.

With the formation of the Cyber Security Agency of Singapore (CSA) in 2015 as the national body providing dedicated and centralised oversight of national cybersecurity functions, SingCERT moved over to CSA.

Does SingCERT work with other law enforcement agencies to track down cyber-attackers?

SingCERT is not an investigative or law enforcement agency. SingCERT does not investigate, maintain or disclose information about inpidual cyber-attackers or conduct criminal investigations.

Our activities focus on providing technical assistance and facilitating communications in response to computer security incidents.

If the company or user is interested in pursuing any form of investigation such as finding out the identity of the intruder or seeking legal prosecution, you may wish to contact the Technology Crime Investigation Branch, Singapore Police Force, at 6435 0000 or discuss it with your organisation's legal officer.

SingCERT does not have the legal expertise and cannot offer legal advice.

What information should I provide to SingCERT when my site has had an intrusion?

The organisation or person reporting the incident should provide the following information:

  • Contact information including name, email addresses, telephone and fax numbers.
  • Description of the incident, including supporting logs and details such as source and targeted IP addresses, time of occurrence, parties involved and other relevant information.

Please email SingCERT at singcert@csa.gov.sg. When sending sensitive information, please use encryption. SingCERT's public PGP key is available on the Download PGP Key page.

We will keep any information specific to your site confidential unless you authorise SingCERT to release that information.