Brunei Strengthens Cybersecurity Front: Minister Shamhary Outlines Bold Initiatives to Combat Fraud and Online Threats

On March 5, 2025, during the 21st Legislative Council session in Brunei, Minister of Transport and Infocommunications, Yang Berhormat Pengiran Dato Seri Setia Shamhary bin Pengiran Dato Paduka Haji Mustapha, announced significant strides in the nation’s cybersecurity posture. Highlighting proactive measures taken since 2024, the minister revealed that Brunei’s cybersecurity agencies, in close collaboration with the Royal Brunei Police Force (RBPF), Unified National Networks (UNN), and local service providers, have blocked 82 fraudulent websites and 557 phone numbers to curb cybercrime. This announcement, made in response to concerns about smartphone hacking and online scams, underscores the country’s commitment to safeguarding its digital infrastructure and public from evolving cyber threats.

Brunei is making headlines with its robust cybersecurity initiatives aimed at combating cybercrime and protecting its citizens in an increasingly digital world. The recent statements from Minister Shamhary provide a comprehensive overview of the country’s multi-faceted approach to addressing cyber threats, particularly those involving fraudulent websites and malicious SMS scams. In his address during the 21st Legislative Council session, the minister emphasized that continuous efforts are being made to block cybercriminal activities—actions that include the re-registration of prepaid SIM cards and widespread public awareness campaigns.

Key Cybersecurity Initiatives and Collaborations

1. Blocking Fraudulent Websites and Phone Numbers:
   Since 2024, Brunei has successfully blocked 82 fraudulent websites and 557 phone numbers known to be involved in online scams and fraudulent activities. These measures, taken in collaboration with the RBPF, UNN, and leading service providers, have significantly reduced the risk of cyber-attacks targeting the public through deceptive online channels.
2. Prepaid SIM Card Re-registration Program:
   To prevent the misuse of SIM cards for fraudulent activities and fake news, the Authority for Info-communications Technology Industry of Brunei Darussalam (AITI) has launched a nationwide re-registration program. Running in stages from January 2 to December 31, 2025, the program has already seen 55,148 prepaid users (13% of the user base) re-register as of February 1. This initiative ensures that up-to-date user records are maintained, enabling law enforcement to track and mitigate fraudulent activities effectively.
3. Public Awareness and Education Campaigns:
   Recognizing that a well-informed public is the first line of defense against cyber threats, Brunei has intensified its public awareness initiatives. Efforts include briefing sessions for senior citizens and youth, distribution of awareness posters, and the production of informative video clips. These campaigns aim to educate citizens about online fraud, phishing, and the responsible use of digital technologies.
4. Cyber Fraud Intelligence and Monitoring:
   In a bid to combat online fraud holistically, the Cyber Security Brunei (CSB) recently held a workshop in conjunction with law enforcement agencies, AITI, and local banks. The workshop introduced the latest technological methods available through the Fraud Intelligence Platform, designed to monitor and combat cybercrime. Additionally, CSB is developing a dedicated portal—and a complementary mobile app—to provide the public with real-time information on scam and fraud conduits.
5. Centralized Fact-Checking Platform:
   AITI has also launched a centralized fact-checking platform to help disseminate accurate information and counteract fake news. This platform is integral in raising public awareness and ensuring that the information circulating online is both reliable and verifiable.
6. Collaboration with International Tech Companies:
   Brunei’s cybersecurity efforts are bolstered by direct engagement with global tech giants like Meta (Facebook, WhatsApp, and Instagram). These discussions focus on content takedowns and safeguarding children against harmful online material. The National Cyber Security Committee’s visit to Meta’s office in Singapore last year further solidified these collaborative efforts, resulting in Meta appointing a dedicated focal point for cooperation with the RBPF and AITI.
7. Regulatory Review and Best Practices Adoption:
   The government is actively reviewing regional approaches to regulate social media platforms, taking cues from ASEAN and Australia. This regulatory review is aimed at controlling the spread of age-inappropriate content and balancing technological advancements with social responsibility. Stakeholders are working together to adopt best practices for blocking objectionable content and ensuring safe digital environments for children and the general public.
8. Blocking Immoral Content and Website Filtration:
   AITI, in cooperation with UNN, has blocked 135 websites over the past five years that violated the Internet Code of Practice by hosting immoral or inappropriate content. Although the use of VPNs may occasionally bypass these blocks, continuous efforts are underway to refine filtration methods and enforce stricter control measures.
9. Ongoing Enforcement and Legal Actions:
   The cooperation between the RBPF, AITI, and other law enforcement agencies has led to several arrests and court cases related to online fraud. These legal actions not only deter cybercriminals but also reinforce the government’s commitment to a secure digital space.
10. Continuous Improvement Through Stakeholder Collaboration:
    The integrated approach of Brunei’s cybersecurity strategy—combining technological solutions, public awareness, regulatory review, and international collaboration—demonstrates the country’s commitment to continuous improvement. Through ongoing partnerships with entities like the Ministry of Education, the Ministry of Religious Affairs, and the Ministry of Culture, Youth and Sports, Brunei is expanding its cybersecurity initiatives and distributing educational materials to promote responsible internet usage.

10 Advises to Avoid Cyber Threats in the Future:

1. Implement Strict Access Controls:
   Limit access to critical digital assets by enforcing robust authentication mechanisms such as multi-factor authentication (MFA).
2. Regularly Update Software and Systems:
   Ensure that all software and hardware systems receive timely updates and patches to protect against known vulnerabilities.
3. Educate Employees and the Public:
   Conduct regular cybersecurity awareness training for employees and public awareness campaigns to educate on the dangers of phishing, online fraud, and the importance of digital hygiene.
4. Deploy Advanced Monitoring Tools:
   Utilize intrusion detection systems (IDS), security information and event management (SIEM) solutions, and other advanced monitoring tools to detect suspicious activities in real-time.
5. Enforce Strong Password Policies:
   Adopt strict password policies that require complex passwords and regular changes to reduce the risk of unauthorized access.
6. Segment Networks:
   Implement network segmentation to limit the lateral movement of attackers and reduce the overall risk of compromise in the event of a breach.
7. Conduct Regular Security Audits:
   Schedule frequent security audits and penetration testing to identify and remediate vulnerabilities before attackers can exploit them.
8. Implement a Robust Incident Response Plan:
   Develop and maintain an incident response plan that outlines procedures for detecting, containing, and recovering from cyber incidents.
9. Encourage Collaboration with Cybersecurity Experts:
   Engage with external cybersecurity professionals and industry peers to share insights, threat intelligence, and best practices for improved security measures.
10. Utilize Centralized Threat Intelligence Platforms:
    Adopt centralized platforms for threat intelligence and data sharing to enhance the overall visibility and responsiveness of cybersecurity operations.

Conclusion:
Brunei’s proactive stance on cybersecurity, as highlighted by Minister Shamhary on March 5, 2025, marks a significant leap forward in the nation’s digital safety initiatives. Through strategic collaborations, advanced technological measures, and a robust regulatory framework, Brunei is setting a global standard for cybersecurity in the region. The launch of coordinated initiatives—from blocking fraudulent websites and phone numbers to launching public awareness programs and centralized fact-checking platforms—underscores the country’s commitment to creating a secure digital environment for its citizens.

As cyber threats continue to evolve, it is imperative that organizations and governments alike adopt comprehensive security measures. The 10 advises provided serve as critical steps in fortifying defenses against cybercrime. By embracing these best practices, organizations can not only protect their own assets but also contribute to a safer digital ecosystem for all.

Brunei’s ongoing efforts to combat cybercrime and secure its digital infrastructure are a model for countries worldwide. As technology advances and cyber threats grow in sophistication, continuous improvement, collaboration, and public awareness will be key to maintaining a resilient cybersecurity posture.

Want to stay on top of cybersecurity news? Follow us on Facebook, X (Twitter), Instagram, LinkedIn and YouTube for the latest threats, insights, and updates!