Singapore websites asked to adopt these 11 anti-hacking measures

Better safe than sorry.

Following threats of the Anonymous collective to launch cyber-attacks on government bodies, the Reading Room has released 11 recommendations that will help all Singapore websites protect themselves from hacking attempts.

Already, SPH's Straits Times had allegedly been infiltrated by an Anonymous hacker.

Reading Room recommends that all sites implement the following 5 internal actions:

• Update all User names and Passwords and delete unnecessary accounts.
• Ensure that user names and passwords are secure with a mixture of alpha / numeric and capital letters
• Be vigilant in your own internal security - EG: Do not leave work stations unlocked and always log out
• Check DNS security with your DNS management team
• Please notify us of any unusual or suspicious site active also checking user access logs

In addition, Singapore website owners should consider 6 extra protective measures:

• Update your username and password for accessing any online system
• Delete all non-essential accounts
• Back up all content on your server, store offsite and have readily available for restore
• Review website code for security vulnerabilities – SQL injection, cross-site scripting, malware upload (see https://www.owasp.org/index.php/Top_10_2013-Top_10)
• Contact your DNS provider and confirm the integrity of your DNS server
• Be mindful of physical access to offices and computer terminals, and remind users to log off after each session