Kaspersky detected over 57,000 ransomware attacks targeting Southeast Asian businesses in early 2024, with Indonesia, the Philippines, and Thailand being the hardest hit. To counteract this growing threat, Kaspersky emphasizes the importance of proactive cybersecurity measures, including regular updates, robust network monitoring, and employee education.
20 November 2024 – Kaspersky’s cybersecurity solutions identified and blocked 57,571 ransomware attacks targeting businesses across Southeast Asia (SEA) between January and June 2024. This alarming figure underscores the region’s vulnerability as a hotspot for cybercriminal activity due to its burgeoning digital economy, strategic importance as a regional hub, and varying levels of cybersecurity infrastructure.
Adrian Hia, Managing Director for Asia Pacific at Kaspersky, noted that ransomware groups are increasingly targeting critical sectors, including finance, public services, manufacturing, and healthcare. “They are opportunists aiming for high-value targets with substantial cash flow,” he said.
The report revealed Indonesia as the most affected country, with 32,803 ransomware incidents, followed by the Philippines (15,208), Thailand (4,841), Malaysia (3,920), Vietnam (692), and Singapore (107). Recent high-profile attacks on critical infrastructure and service providers across SEA further highlight the severity of the threat.
The repercussions of ransomware attacks are profound, encompassing financial losses, reputational damage, operational disruptions, and recovery delays. These impacts are particularly devastating for critical infrastructure and essential service providers, where downtime is not an option.
While initiatives like the global “No More Ransom” project and regional cybersecurity laws—such as Malaysia’s Cybersecurity Act 2024 and Singapore’s Cybersecurity Act 2018—are steps in the right direction, businesses must actively strengthen their defenses.
Kaspersky’s Recommendations to Bolster Cybersecurity
To mitigate ransomware risks, Kaspersky advises:
- Keeping software updated and applying security patches promptly.
- Backing up data regularly for quick recovery during emergencies.
- Avoiding pirated software and securing supply chain access.
- Limiting remote access exposure and enforcing strong passwords with two-factor authentication.
- Monitoring network activity and controlling user access on a need-to-know basis.
- Using advanced tools like Kaspersky Unified Monitoring and Analysis Platform for incident detection and response.
- Leveraging threat intelligence for up-to-date insights into cyber risks.
- Educating employees via platforms like Kaspersky Automated Security Awareness Platform.
For SMEs and businesses with limited IT resources, solutions such as Kaspersky Small Office Security and managed services like Kaspersky MDR offer effective, budget-friendly protection. As ransomware threats grow more sophisticated, adopting proactive, multi-layered cybersecurity strategies is crucial for businesses to safeguard their operations and reputation.