APAC Cybersecurity Fund

About the Program

The APAC Cybersecurity Fund initiative aims to strengthen the Asia-Pacific region’s cybersecurity ecosystem by equipping micro and small businesses, nonprofits, and social enterprises with the skills needed to navigate the Internet safely and confidently. Supported by a $15M grant from Google.org, Google’s philanthropic arm, The Asia Foundation leads the initiative in collaboration with the CyberPeace Institute and Global Cyber Alliance. Spanning 12 countries, the program includes Bangladesh, India, Indonesia, Japan, Korea, Malaysia, Pakistan, Philippines, Singapore, Sri Lanka, Thailand, and Vietnam.

The program is implemented by The Asia Foundation in collaboration with key partners. In India, the Foundation for MSME Clusters (FMC) is leading implementation in 10 states.

The primary goal is to equip MSMEs with the knowledge and tools to identify cyber risks, adopt basic cybersecurity practices, and build resilience against digital threats

The program is open to all MSME owners, employees, and managers who wish to strengthen their understanding and preparedness around cybersecurity.

No. The training is completely free of cost for MSMEs

No, it is open to MSMEs from all sectors including manufacturing, services, trade, and others.

Yes, MSMEs in IT, consulting, logistics, and other services are encouraged to attend.

Yes, startups that meet the MSME criteria can participate.

Not at all. The program is designed for beginners and covers the basics in an easy-to-understand format.

Each workshop typically lasts between 6 to 8 hours in a single day.

Workshops are primarily conducted offline in cluster locations for hands-on engagement. Some sessions may be offered online based on location and demand.

The program is being conducted in 20 states across India. FMC is implementing it in Andhra Pradesh, Chhattisgarh, Delhi, Haryana, Karnataka, Madhya Pradesh, Maharashtra, Punjab, Telangana, and Uttar Pradesh.

Each state has a designated State Head or Project Co-ordinator responsible for the rollout. You can contact them via the "Contact Us" page.

Workshop schedules are updated regularly on the website and shared by the respective State Head. You may also receive invitations through local associations.

Yes, wherever possible, the training is conducted in local languages to ensure better understanding.

The training includes presentations, interactive discussions, live demonstrations, group work, and Q&A sessions.

Yes, all participants will receive a digital certificate upon successful completion of the workshop.

Yes. If there is adequate demand, a customized session can be organized. Please reach out through the contact form or to your State Head.

Registration

You can register by filling out the online registration form available on the website or by contacting your State Head.

Each state has a dedicated team. You can reach out via the "Contact Us" page or email the FMC coordination team.

Basic details such as business name, contact information, and your MSME category are sufficient.

Yes. The form is available under the “Register” tab on the website.

In select locations, yes, but it is recommended to pre-register to ensure a seat.

Cybersecurity Basics

Cybersecurity refers to the practice of protecting systems, networks, and data from digital attacks, unauthorized access, or damage

MSMEs are increasingly becoming targets for cyberattacks due to limited resources and awareness. Strong cybersecurity can protect your data, finances, and business reputation.

Common threats include phishing, malware, ransomware, data breaches, and email spoofing.

MSMEs often operate with limited budgets, lack dedicated IT or cybersecurity staff, and may not regularly update software or conduct security training, making them easier targets for attackers.

Yes. Cybercriminals often target MSMEs because they are perceived as “low-hanging fruit” — easier to breach due to weaker security measures compared to large corporations.

Unfortunately, yes. Due to lack of monitoring systems and awareness, many MSMEs only realize they've been attacked after the damage is done.

Common mistakes include using weak passwords, not updating software, ignoring security patches, and lacking employee training on phishing or malware risks.

Yes. For small businesses, a single ransomware attack or data breach can result in irreversible financial and reputational damage.

Manufacturing businesses often rely on digital systems like automated machinery, inventory software, and supply chain communication tools — all of which can be exploited if not secured properly.

They face threats like ransomware attacks on production systems, theft of intellectual property or design files, disruption in supply chain communication, and manipulation of machinery via network breaches.

An attack can freeze your digital systems, delay orders, stop machinery, and disrupt vendor communication — causing serious production delays and customer dissatisfaction.

Yes. Even small units are often connected to suppliers and larger enterprises digitally. A weak link in the supply chain can be an easy entry point for attackers.

Traders and retailers often handle sensitive customer data, digital payments, and supplier transactions — all of which can be compromised through phishing, malware, or data breaches.

They face threats like point-of-sale (POS) system breaches, e-commerce website hacks, fake order scams, phishing emails, payment frauds, and ransomware attacks.

Yes. Even small traders are targeted because they often use unsecured payment platforms, outdated POS systems, or weak passwords that make them easy to breach.

Yes. Artisan MSMEs, especially those selling online or managing digital customer databases, are equally at risk of cyber threats such as data theft, payment fraud, and social media scams.

Many artisan businesses use platforms like WhatsApp, Instagram, Facebook Marketplace, or e-commerce websites to sell products. These platforms, if not secured properly, can be entry points for scammers and hackers.

They may face risks such as fake orders, phishing links, impersonation, non-secure payment requests, account takeovers, and unauthorized use of product designs or images.

Even small artisan businesses handle valuable assets: product photos, design ideas, supplier details, payment data, and customer lists — all of which can be misused if accessed by cybercriminals.

Impact and Benefits

Participants will gain a foundational understanding of cybersecurity, learn how to identify threats, and implement simple protection measures.

It reduces the risk of data breaches, improves client confidence, protects business continuity, and can aid in compliance.

Yes, all participants will receive a basic cybersecurity checklist and useful links.

Yes, success stories and case studies are shared during workshops and will be published on the website.

Yes. Adopting cybersecurity practices supports compliance with buyer protocols, government frameworks, and digital transactions.

Frequently Asked Questions (FAQs)

About the Program

What is the APAC Cybersecurity Fund program?

Who is organizing this cybersecurity awareness program for MSMEs?

What is the objective of this program?

Who can attend this program?

Is there a fee to attend the program?

Is the program only for manufacturing MSMEs?

Can service-based MSMEs also participate?

Are startups eligible to attend?

Is prior knowledge of cybersecurity required?

What is the duration of the training workshop?

Is the program conducted online or offline?

Where is the program being conducted?

Who is conducting the training in my state?

How do I know the dates of the workshop in my area?

Will the training be conducted in regional languages?

What is the format of the training?

Will participants receive a certificate of participation?

Can I request a training session for my cluster or industrial park?

Registration

How can I register for the program?

Whom should I contact for registration assistance?

What documents or information are needed for registration?

Is there an online registration form?

Is on-the-spot registration allowed?

Cybersecurity Basics

What is cybersecurity?

Why is cybersecurity important for MSMEs?

What are some common cyber threats faced by MSMEs?

Why are MSMEs more vulnerable to cyberattacks than larger companies?

Do cybercriminals intentionally target MSMEs?

Are MSMEs at risk even if they don’t handle customer data online?

Is it true that MSMEs often don’t detect cyber threats in time?

What common mistakes make MSMEs vulnerable?

Can a single cyberattack shut down an MSME?

Why are manufacturing businesses at risk of cyberattacks?

What kind of cyber threats do manufacturers face?

How can a cyberattack affect my production schedule?

Are small manufacturing units really at risk?

Why are traders and retailers at risk of cyberattacks?

What kind of cyber threats do traders and retailers commonly face?

Are small traders really on the radar of cybercriminals?

Are artisan MSMEs also at risk of cyberattacks?

How do artisan businesses become vulnerable online?

What kind of cyber threats do artisan enterprises face?

I run a small craft business — why would someone target me?

Impact and Benefits

What are the expected outcomes of the training?

How will this training help my business in the long run?

Will I get access to cybersecurity resources or toolkits?

Are there case studies of MSMEs benefiting from cybersecurity practices?

Can participation in this program improve my compliance with government or buyer requirements?