Bursa Malaysia Forms Working Group to Strengthen Cybersecurity in Stockbroking

Bursa Malaysia Creates Cybersecurity Working Group for Stockbroking Industry

Bursa Malaysia has established an industry working group to strengthen cybersecurity standards across the stockbroking sector. The initiative brings together market participants to address growing digital threats targeting financial markets and investor accounts.

The move comes as cyberattacks on financial services firms continue to rise globally, with stock exchanges and brokerage platforms being prime targets for credential theft, account takeovers, and market manipulation through compromised systems.

Why Cybersecurity in Stockbroking Matters Now

Malaysia's capital markets are increasingly digital. Online trading platforms, mobile brokerage apps, and algorithmic trading systems handle billions of ringgit in transactions daily. Each of these systems presents an attack surface that cybercriminals can exploit.

In recent years, incidents of unauthorised trading, phishing campaigns targeting brokerage clients, and data breaches at financial firms have prompted regulators worldwide to tighten cybersecurity requirements. Bursa Malaysia's working group signals that the domestic market is taking similar steps.

For retail investors, the risks are personal. A compromised trading account can result in unauthorised trades, drained funds, or stolen personal data that enables further fraud.

What the Working Group Will Address

The working group is expected to focus on several key areas of cybersecurity in the stockbroking industry:

• Standardised security frameworks — establishing baseline cybersecurity requirements for all brokers operating on Bursa Malaysia
• Incident response coordination — improving how firms share threat intelligence and respond to breaches collectively
• Investor protection measures — strengthening authentication, fraud detection, and account recovery processes
• Regulatory alignment — ensuring compliance with Bank Negara Malaysia's cybersecurity directives and the Cyber Security Act 2024

How to Protect Your Trading Accounts

• Enable two-factor authentication on all brokerage accounts — SMS-based is better than nothing, but app-based (TOTP) is stronger
• Use a unique, strong password for your trading platform — never reuse passwords from other services
• Monitor your account activity regularly — review transaction history for any trades you did not authorise
• Be cautious of phishing emails claiming to be from your broker — verify by calling the official customer service number

Frequently Asked Questions

Why is Bursa Malaysia forming a cybersecurity working group now?

Cyberattacks on financial services are increasing globally. The working group will set security standards and coordinate incident response across Malaysia's stockbroking industry.

How does this affect retail investors in Malaysia?

Stronger cybersecurity at brokerages means better protection for your trading accounts, personal data, and funds.

What should I do if my trading account is compromised?

Contact your broker immediately, change your password, enable two-factor authentication, and lodge a report with the NSRC at 997.