As digital transformation rapidly expands across Malaysia, the country faces a growing challenge in managing cyberthreats. Despite efforts like the Malaysia Cyber Security Strategy 2020-2024, cybercrime continues to escalate, with increasingly sophisticated attacks targeting both individuals and national infrastructure.
The Royal Malaysia Police (RMP) struggle to manage this due to a lack of artificial intelligence (AI)-driven cybersecurity tools. There is an urgent need for an AI-assisted cybercrime mitigation strategy to enhance the RMP’s ability to detect, prevent, and respond effectively to modern cyberthreats.
Cybercrime in Malaysia has been escalating at an alarming rate. According to recent statistics, the number of cybercrime cases in Malaysia has grown exponentially, with financial losses increasing by hundreds of millions of Malaysian ringgit annually. In 2024 alone, 15,589 online scam cases were reported in the first half of the year, resulting in economic losses amounting to RM753 million. Despite ongoing efforts to strengthen the cybersecurity framework, the RMP’s traditional law enforcement methods have failed to keep pace with the rapid sophistication of cyberattacks, which are increasingly aided by AI and other advanced technologies.
The core problem is the absence of AI-driven cybersecurity tools within the RMP, which hinders its ability to combat advanced cyberthreats effectively. AI can provide significant advantages, such as real-time threat detection, automated threat responses, and advanced digital forensics capabilities. However, the RMP lack the infrastructure, expertise, and governance structures necessary to implement AI-based solutions effectively. Addressing this technological gap is essential to prevent the escalating impact of cybercrime on Malaysia’s economy and national security.
The landscape of cybercrime in Malaysia has shifted dramatically over the last few years. From 2018 to 2024, cybercrime cases in Malaysia surged, with financial losses exceeding RM1.2 billion in 2023 alone. This increase is accompanied by the growing complexity of cyberattacks, including phishing, ransomware, and social engineering schemes. The reliance on outdated methods has limited the RMP’s ability to respond effectively to these threats, leaving gaps in threat detection, digital forensics, and incident response.
A critical shortfall identified in the analysis is the RMP’s lack of AI integration. AI technologies, such as real-time monitoring, predictive analytics, and machine learning, are essential for identifying and mitigating cyberattacks as they evolve. Without these tools, the RMP remains reactive, often identifying cyberthreats only after significant damage has occurred.
Another key issue is the shortage of skilled cybersecurity professionals within the RMP. AI tools require specialised knowledge for operation and interpretation. However, the RMP currently lack the trained personnel necessary to manage such systems effectively. This skills gap not only hinders the use of AI but also limits the RMP’s ability to modernise its cybercrime mitigation efforts.
Moreover, the governance framework necessary for ethical AI deployment is underdeveloped. The RMP must ensure that AI systems are implemented in a way that respects data privacy, maintains transparency, and addresses potential biases. This governance challenge needs to be addressed alongside AI adoption.
The RMP should prioritise implementing AI tools that provide real-time threat detection and predictive analysis. AI systems can continuously monitor network activities, identify anomalies, and detect potential threats before they escalate, offering a proactive, rather than reactive approach to cybercrime.
AI-powered digital forensics tools can significantly improve the speed and accuracy of investigations. The RMP should invest in machine learning systems that can analyse large volumes of digital data, identify connections between cyber incidents, and aid in uncovering complex criminal networks.
To address the skills gap, the RMP must invest in specialised training programmes that focus on AI and cybersecurity. Partnering with educational institutions and international cybersecurity organisations will provide access to the necessary training and certifications. The RMP should also offer scholarships and internships to attract talent to its cybersecurity teams.
Implementing AI must be accompanied by the development of a robust governance structure. This includes creating policies that ensure the ethical use of AI tools, including data privacy protection, transparency in AI decision-making processes, and accountability. Establishing an AI-Cybersecurity Governance Unit within the RMP could oversee these efforts.
Given the financial constraints involved in adopting AI, a phased approach is recommended. The initial phase should focus on high-impact areas like real-time threat detection and digital forensics. Subsequent phases can expand to include more advanced AI applications, such as predictive analytics and automated incident response systems.
Collaborating with private sector technology firms is essential for accessing cutting-edge AI technologies. Partnerships with companies like Microsoft, Amazon Web Services, and IBM can provide the RMP with AI tools, cloud infrastructure, and technical support. These collaborations will help reduce the financial burden of AI implementation and ensure access to the latest innovations.
Cybercrime often crosses national borders, making international cooperation critical. The RMP should strengthen ties with global cybersecurity organisations like Interpol and Europol to share intelligence and best practices. Engaging in global cybersecurity forums and joint operations will enhance the RMP’s capabilities in addressing cross-border cyberthreats.
The escalation of cybercrime in Malaysia demands a strategic shift in how the Royal Malaysia Police approach cybersecurity. The current reliance on traditional methods is insufficient to combat the rising complexity and sophistication of cyberattacks. To effectively mitigate these threats, the RMP must adopt AI-driven solutions that provide real-time monitoring, predictive analysis, and automated response capabilities.
However, the successful integration of AI into the RMP’s cybersecurity efforts hinges on addressing several key challenges. These include building human capital through specialised training, establishing a strong governance framework to ensure ethical AI use, and securing the necessary financial resources through phased implementation and public-private partnerships. International cooperation will also be vital in sharing intelligence and combating cross-border cyberthreats.
By embracing these recommendations, the RMP can significantly enhance its ability to detect and prevent cyberattacks, safeguard Malaysia’s digital infrastructure, and position itself as a leader in innovative law enforcement strategies. The adoption of AI technologies will not only strengthen the RMP’s operational capabilities but also ensure a more resilient and secure digital future for Malaysia.
Assistant Commissioner of Police Mohd Fakhrurazie Che Sulaiman is a senior police officer in the Royal Malaysia Police and is currently attending the National Security Course at the National Resilience College, PUSPAHANAS.