Luong Hue manages Dato, a social enterprise in Vietnam that works with over 500 ethnic minority households producing herbs and spices. At first, she believed cybersecurity was mainly for larger corporations, while her priority was learning digital tools for marketing. But after nearly losing important customer data, she felt vulnerable and joined the APAC Cybersecurity Fund training. There, she discovered that even small vulnerabilities could endanger her business and her partners. She learned to identify phishing attempts, enable two-factor authentication, and introduce safer file-sharing practices for her staff. With these changes, she not only strengthened her business security but also held internal sessions to share lessons with her team. Today, Hue sees cybersecurity as an essential foundation for growth and sustainability, ensuring that her enterprise and its partner households can thrive safely in the digital economy.
Jesmin Begum runs Jihad Store, a small business in Khulna, Bangladesh. She often relied on Gmail for communication and bKash for payments but had little awareness of how weak passwords left her accounts exposed. The risk made her anxious, especially as she began to expand her business online. Motivated to protect herself, Jesmin joined the APAC Cybersecurity Fund training. She realized that cybersecurity was not just for large companies, but for entrepreneurs like her too. Through the program, Jesmin learned to create stronger, unique passwords and enable two-factor authentication. These simple steps gave her confidence to manage her digital tools safely. Since then, she has become a mentor to other women in her community, teaching them how to secure their accounts and avoid scams. Today, Jesmin describes the training as a source of peace of mind, allowing her to focus on serving her customers without fear.
Josna Akter, an e-commerce business owner from Rajshahi, once received a call claiming she had won a large cash prize. The caller, posing as a bank official, demanded her mobile wallet PIN to “process” the reward. Excited but unsure, Josna almost shared her details before realizing it could be a scam. This experience left her shaken and motivated to join the APAC Cybersecurity Fund training. Before the session, Josna believed she had little control over such fraud, but she soon discovered practical ways to protect herself. She learned to identify phishing calls, block suspicious numbers, and strengthen her account security. With new knowledge, she confidently avoided future scams and even started warning her neighbors and fellow business owners about similar tricks. Today, Josna calls the training a turning point—what could have been a costly mistake became an opportunity to build confidence and share protection strategies with her community.
Harindu joined the ACF Cyber Clinic as part of his ISRM module assignment. Coming from a strong technical background, he initially viewed cybersecurity purely through a technical lens. However, working with a real software startup during the training changed his perspective. He learned that risk assessments aren’t just about following frameworks—they require understanding how a business operates and connecting security issues to real impacts such as financial loss or reputational damage. Through the program, Harindu developed the ability to identify risks systematically, analyze them effectively, and translate technical findings into clear business implications. This shift helped him move beyond a “technical-only” mindset to one that considers both business and security priorities. One of the most valuable skills he gained was learning how to communicate complex security issues in simple, practical terms. When working with the startup using the OCTAVE Allegro framework, he realized his technical reports were too complicated for the business owners. He adjusted his approach—keeping his technical analysis in the background but simplifying his explanations so MSME owners could understand and act on them. For example, instead of describing an SQL injection attack in technical detail, he explained it as a risk of customer data being stolen, leading to fines and loss of trust. The Cyber Clinic experience reshaped how Harindu sees his role in the community. He now understands that cybersecurity isn’t just about finding technical flaws—it’s about helping real businesses protect themselves in practical, affordable ways. “Small businesses face the same cyber threats as large companies, but they don’t have the same resources. My job isn’t just to find problems—it’s to help solve them,” he shared.
Mrs. Suphan Phanphrom, the village headwoman of Khok Lam in Udon Thani, Thailand, often felt uncertain about how to manage her digital safety. Like many in her community, she depended on others to set up accounts and passwords, leaving her exposed to potential scams. Motivated to take ownership of her security, she joined the APAC Cybersecurity Fund training. Before the session, she thought cybersecurity was beyond her ability, but the training showed her practical steps she could take herself. She learned to create strong passwords, delete unused accounts, and safely use apps from the Google Play Store. For the first time, she felt in control of her phone and online accounts. After the training, Mrs. Suphan shared her new knowledge on the community radio and directly with villagers, encouraging them to adopt the same habits. Today, she calls the program an eye-opener that not only secured her own digital life but also empowered her to protect her community from online scams.
T-Subodha, the founder of Lili’s Fashion from Nature, runs a small sustainable fashion enterprise in Sri Lanka that relies heavily on online sales and digital client engagement. Before participating in the APAC Cybersecurity Fund’s Cyber Hygiene Awareness Program, cybersecurity was not part of her business strategy. Like many small enterprises, her focus was on sales and operations, unaware that online threats could directly affect her business continuity and customer relationships. The training equipped Lili and her team with practical cybersecurity skills to safeguard their value chain. They implemented two-factor authentication, strengthened password management, and introduced clear internal guidelines for safer digital communication. These measures helped secure their online platforms, protect client data, and reduce disruptions in digital transactions. The impact was immediate and measurable. When a phishing attempt targeted her network, Lili was able to identify and respond swiftly, preventing financial loss. More importantly, the incident reinforced the value of preparedness. She now conducts regular digital security reviews and educates her staff and partners on safe online practices. Today, cybersecurity is embedded in Lili’s operations. By integrating digital safety into her business processes, she has strengthened customer trust, enhanced data security, and ensured long-term business resilience—demonstrating how cyber readiness directly contributes to MSME growth and sustainability.
Kohinur runs a mobile accessories business in Dhaka, Bangladesh. One day, she received a call claiming she had won a cash reward through a mobile wallet platform. The caller asked her to send a small “verification” payment, and she complied—only to realize it was a scam. Frustrated and shaken, she joined the APAC Cybersecurity Fund training. Before, she believed such scams were unavoidable, but the program taught her to spot red flags, strengthen her passwords, and update her phone security. With new confidence, she now actively educates her customers about safe digital practices whenever they buy mobile products from her shop. The training turned her personal setback into a learning moment for her entire community, transforming her from a victim into an advocate for safer digital practices.
Coming from a background with little exposure to cybersecurity, I saw the Cyber Clinic training as a chance to explore something completely new. I’ve always been drawn to the intersection of technology and social impact, and this program allowed me to apply that interest in a meaningful way. As I went through the sessions, it was both eye-opening and, at times, alarming to realize just how vulnerable we are online as individuals and organizations. At the same time, it was empowering to learn that awareness and a culture of digital safety can make a real difference. One of my biggest takeaways was learning how to communicate cybersecurity concepts to a non-technical audience. Even simple steps like spotting phishing attempts or enabling two-factor authentication can greatly strengthen MSMEs’ digital security, especially for those with limited resources. Being part of the Cyber Clinic changed how I see my role in the community. It pushed me to step beyond my technical bubble and share practical knowledge with others, helping them take charge of their own cybersecurity. I now see myself as an advocate for awareness, contributing to safer and more resilient online communities.
Mohini Namjoshi runs a small clothing enterprise in Pune, India, where much of her customer engagement happens on social media. She once worried that phishing scams or hacked accounts could threaten her business. Before the APAC Cybersecurity Fund training, she thought security tools were complicated and out of reach. The program shifted her mindset, showing her how accessible and practical they could be. Mohini learned to enable two-factor authentication using Google Authenticator, regularly audit her login activities, and stay alert against phishing attempts in direct messages. These steps gave her greater peace of mind to continue selling online. Now, she confidently manages her digital presence, shares what she has learned with her employees, and encourages other women entrepreneurs in her circle to prioritize cybersecurity.
Mr. Chintakindi Kiran Kumar owns Jayalaxmi Paint Shop in Andhra Pradesh, India. Like many small business owners, he depended on point-of-sale devices but worried about phishing and account breaches. He often thought cybersecurity was too technical for him, leaving him uncertain about how to protect his shop. The APAC Cybersecurity Fund training changed that perspective. Kiran Kumar learned how to spot phishing attempts, use strong employee passwords, and install endpoint protection across his store devices. For the first time, he felt secure running digital transactions. Since then, his shop has not faced a single cyber incident, and he confidently manages both payments and customer trust. He now shares these practices with his staff and peers, proving that even small businesses can build resilience through simple but powerful cybersecurity habits.
NNR Global Logistics, a small logistics firm in Singapore, often faced phishing attempts but assumed cybersecurity was mainly an IT department’s concern. Employees sometimes nearly fell for fraudulent emails, creating anxiety across the team. Motivated to improve, they joined a Cybersecurity Clinic led by Temasek Polytechnic students under the APAC Cybersecurity Fund. The sessions helped them rethink cybersecurity as part of business health, not just a technical issue. They learned to review password protocols, strengthen device security, and identify phishing messages more effectively. Since then, NNR Global Logistics has scheduled quarterly security audits and reports greater confidence among staff. The firm now treats cybersecurity as a business priority, ensuring smoother operations and stronger customer trust.
Senaya joined the ACF Cyber Clinic training to gain practical experience and apply what she had learned in class to real-life situations. Through the program, she developed hands-on skills in cybersecurity risk management—conducting assessments, identifying vulnerabilities, and proposing realistic solutions that MSMEs could adopt within their limited resources. Her team worked with a small private hospital, which gave her valuable experience in communicating with employees who had little or no technical background. She learned how to explain cybersecurity concepts in simple terms, making it easier for staff to understand why protecting their digital assets matters. She also created awareness materials and questionnaires to gauge staff understanding after training sessions. The experience strengthened both her technical and communication skills. By translating complex findings into clear, actionable advice, she helped the MSME take practical steps to improve its cybersecurity. More importantly, the project made her realize that many cyber incidents happen not because of advanced attacks, but due to a lack of awareness. Senaya now sees her role as more than just protecting systems—she wants to help build a stronger culture of cybersecurity in her community. “Even small efforts like awareness sessions can make a big difference,” she shared.
Ibu Nurhayati, a small entrepreneur from Jakarta, once received a phone call from someone pretending to represent a state-owned bank, pressuring her to transfer money for an alleged overdue loan. The call left her frightened and uncertain, but thanks to the APAC Cybersecurity Fund training, she recognized the red flags and avoided the trap. Before, she thought scams were simply “bad luck,” but she now understands how they work and how to fight back. Nurhayati immediately strengthened her passwords, enabled two-factor authentication, and began using a password manager to keep her accounts safe. She now shares her knowledge with other women entrepreneurs in her MSME group, teaching them to double-check suspicious requests before acting. Today, Nurhayati feels empowered, describing the training as a turning point that gave her confidence to run her business without fear.
As someone who has experienced being scammed before, I don’t want my family and other Filipinos to go through what I did. Even though I had some knowledge about online scams, when it happened to me, I was still vulnerable and unable to fully protect myself. I lacked the skills to properly scrutinize the scam. That experience motivated me to become a trainer with ACF. Through the program, I hope to equip Filipinos not only with the knowledge to prevent cyber threats but also with the practical skills to respond when they face an attack. ACF’s simple yet comprehensive approach makes it easy for ordinary Filipinos to understand and apply in their daily lives. One moment that stood out was when a participant shared in our Cybersafe PH Network group that the session changed how she defined “tech savvy.” She realized it’s not about knowing every app or tool, but about protecting yourself, your family, and your community. Being part of ACF has strengthened my purpose as a trainer. It’s not just about teaching but about giving back to the community and helping MSMEs, who often lack resources, to build the skills and confidence to stay safe online.
Coming from a rural background, I’ve seen firsthand how many people in my community fall victim to online scams simply because they lack the awareness and tools to protect themselves. When I was invited to join ACF as a trainer, I immediately accepted. It felt like a meaningful way to give back and help small business owners who rely on social media and online platforms to promote their products but often don’t know how to stay safe online. Seeing people gain confidence in using digital tools more securely has been the most rewarding part of this journey. During one of my training sessions in a rural area, I learned that many participants didn’t understand why device updates were important. Some even believed that updates could damage or slow down their phones. I explained how updates provide essential security patches and walked them through the process. After the session, a few participants updated their devices for the first time and shared what they’d learned with their families. Through ACF, I’ve grown as a trainer, learning how to explain complex cybersecurity concepts simply and in the Iban language, making sessions more engaging and relevant for MSMEs in Kanowit, Sarawak.
Through the ACF Cyber Clinic training, I discovered how even simple cybersecurity practices can make a real difference for small businesses. One of the most impactful skills I gained was learning how to spot and respond to common cyber threats. I now guide MSMEs on practical ways to secure their online presence, protect customer data, and adopt safer digital habits. Seeing business owners gain confidence as they take these steps has been incredibly rewarding. My journey began with a strong curiosity about how online systems work and how they can be protected. With cyberattacks on the rise, I wanted to understand the risks and find ways to help build safer digital spaces. The training equipped me with essential knowledge on risk assessment, phishing detection, and data protection — all of which I can now apply and share with others. Being part of the Cyber Clinic has reshaped how I see my role in the community. I’ve become an advocate for cybersecurity awareness, helping others take simple, practical steps to stay safe online.
I decided to join the Cyber Clinic because I have a family member who’s studying cybersecurity. Even though we both took some of the same foundation courses, their way of looking at things was so different from mine. That really caught my attention, and I wanted to understand that different approach better. The Cyber Clinic gave me exactly that. It showed me how the same software or problems can be viewed from a whole new angle. One key thing I learned was the importance of patience and perseverance. During the cyber tasks, we encountered numerous challenges, unfamiliar operating systems, hardware malfunctions, and endless errors. These assignments taught me never to give up, because every problem has a solution. It’s just a matter of finding it. This mindset is essential not only in cybersecurity but also in business and everyday life. For small entrepreneurs, this ability to persist despite difficulties is crucial for success. Being part of the Cyber Clinic has really changed how I think about online safety. Now I’m more aware of the risks and loopholes we often overlook, and I have practical knowledge to protect myself and others. It’s empowering to know that by spreading awareness, I can make my community safer and more informed.
