Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Sparsa AI Launches Sovereign Enterprise AI Platform with Global Deploy...
Conifers AI Opens Singapore Data Region, Bringing Local Data Residency...
Finally taken down: Residential proxy network of at least 2m smart dev...
DXC Opens Flagship AI-first Customer Experience Center in Bengaluru
AI speeds threat discovery as coverage gaps persist: survey
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      S E Asia governments targeted by cyber-espionage group

      S E Asia governments targeted by cyber-espionage group

      Tuesday, June 23, 2026, 8:00 AM Asia/Singapore | Features
    • Featured

      Rethinking network and infrastructure design for resilience

      Rethinking network and infrastructure design for resilience

      Thursday, June 18, 2026, 2:17 PM Asia/Singapore | Features
    • Featured

      Bringing cybercriminals to justice in APAC

      Bringing cybercriminals to justice in APAC

      Thursday, June 11, 2026, 10:30 AM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • AWARDS 2026
  • Directory
  • E-Learning

Select Page

Features

Addressing Asia Pacific’s rising insider threats

By Victor Ng | Wednesday, October 15, 2025, 10:18 AM Asia/Singapore

Addressing Asia Pacific’s rising insider threats

Recent research findings from Exabeam reveal that insider threats have overtaken external attacks as the top concern.

According to the research, the Asia Pacific and Japan (APJ) region is especially vulnerable, with 69% of respondents expecting insider threats to grow in the next 12 months. 53% of APJ respondents view insiders, whether malicious or compromised, as a greater risk than external actors.

As insider threats accelerate, how can APJ security leaders bridge the gap and effectively defend against sophisticated, AI-powered insider threats? We find out from Steve Wilson, Chief AI and Product Officer, Exabeam.

Exabeam’s recent research finds that insider threats have overtaken external attacks as the top concern among APJ organizations. What are the likely reasons for this growing concern?

Wilson: Over the past year, three in five (60%) APJ organizations have seen a measurable rise in insider incidents, according to Exabeam’s recent research. About half of the respondents (53%) now view insiders, whether malicious or compromised, as a greater risk than external actors.

AI is accelerating this shift. Particularly, Generative AI (GenAI) is a major driver of insider threats, as it makes attacks faster, stealthier, and more difficult to detect. The increase in insider threats is also driven by a combination of human and operational factors, including third-party dependencies and the use of unapproved AI tools, which create new opportunities for misuse.

APJ stands out globally in insider risk awareness, with 69% of organizations expecting insider threats to grow over the next 12 months, reflecting heightened awareness of identity-driven attacks.

How has AI changed the game for insider threats?

Wilson: AI has fundamentally changed the way insider threats operate. Today, insiders aren’t just people anymore. They are AI agents logging in with valid credentials, spoofing trusted voices, and making moves at machine speed. The question isn’t just who has access — it’s whether you can spot when that access is being abused.

In APJ, three in four (75%) respondents report that AI is making insider attacks more effective. The most concerning threat vectors include AI-enhanced phishing and social engineering, privilege misuse or unauthorized access, and data exfiltration. GenAI adds another dimension, as unapproved use by employees can create a dual-risk scenario where the same tools intended to boost productivity can be repurposed for malicious activity.

The convergence of insider access and AI capabilities is producing threats that evade traditional controls, highlighting their limitations and reinforcing the need for more advanced detection approaches.

Why are most insider threat programs missing the mark on threat detection today? Where is the gap?

Wilson: Most insider threat programs in APJ are still playing catch-up to a hybrid threat landscape that has already outpaced them.

An earlier research from Exabeam points to a critical gap: organizations remain reliant on reactive tools —  such as endpoint detection and response (EDR) and data loss prevention (DLP) — that provide visibility but fail to deliver the contextual behavioral intelligence needed for early detection of emerging threats. Less than half of APJ organizations (37%) use user and entity behavior analytics (UEBA), the foundational capability required to baseline normal activity and identify the subtle anomalies that signal an insider attack.

On the other hand, governance and operational readiness of AI tools are still lagging, even though 94% of APJ organizations are using some form of AI in their insider threat toolkit. More than half of executives (55%) globally believe AI tools are fully deployed, but managers and analysts say many are still in pilot or evaluation stages.

Compounding the challenge, security teams face persistent barriers: privacy resistance, fragmented tools, and difficulty interpreting user intent remain major blind spots in the face of complex insider threats.

What are some actionable steps that APJ security leaders can take to bridge the gap to better defend against insider threats?

Wilson: Security leaders in APJ need to move beyond surface-level defenses to bridge the insider threat gap. Therefore, behavioral analytics must become the foundation.

By adopting capabilities like UEBA, organizations can establish dynamic baselines of normal activity for every user and activity across various network entities. This tool empowers teams to detect unusual access patterns or data transfers by authorized users, shifting insider threat detection from reactive to proactive defense.

In an era of AI-driven threats, chasing individual alerts at scale is simply unsustainable. Security teams need a holistic view, integrating data from across their stack and deploying AI to correlate, classify, and elevate only the most critical signals. This context improves accuracy, freeing analysts from repetitive, manual tasks so they can focus on high-value investigations

Finally, strategy must meet operational reality; closing the perception gap between leadership and front-line analysts is critical. Involving analysts early in tool deployment and prioritizing measurable outcomes ensures technology investments deliver as intended. This alignment builds resilience, trust, and a security operation designed to outpace modern insider threats.

Share:

PreviousDrata Expands Global Footprint, Bringing AI-Powered Trust Management to the Asia-Pacific Region
NextThe AI paradox in cybersecurity

Related Posts

Cyber-threats: How prepared are APAC organizations?

Cyber-threats: How prepared are APAC organizations?

Monday, October 11, 2021

2019 was a glorious year for malicious actors

2019 was a glorious year for malicious actors

Tuesday, December 3, 2019

Blockchain in cybersecurity applications? The jury is still out

Blockchain in cybersecurity applications? The jury is still out

Wednesday, June 19, 2024

Vietnam’s low cybersecurity awareness is a way of life, but there is hope

Vietnam’s low cybersecurity awareness is a way of life, but there is hope

Friday, December 9, 2022

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • Critical Security Threatsand the Need for ZTNA: How evolving cyberattacks demand a Zero Trust approach

    Critical Security Threatsand the Need for ZTNA: How evolving cyberattacks demand a Zero Trust approach

    Cyber threats have become more frequent and sophisticated, targeting organizations of all sizes across all …Download Whitepaper
  • Zero Trust Made Simple: Why it matters and how to get started

    Zero Trust Made Simple: Why it matters and how to get started

    Data breaches and cyberattacks are no longer limited to large, high-profile organizations.Download Whitepaper
  • Cloud Secure Edge: Remote access, better security

    Cloud Secure Edge: Remote access, better security

    ​SonicWall Cloud Secure Edge™ is a modern, cloud-native Security Service Edge (SSE) solution that addresses …Download Whitepaper
  • Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats

    Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • How a Vietnamese D2C retailer built its own secure digital infrastructure

    How a Vietnamese D2C retailer built its own secure digital infrastructure

    Would your organization build your own digital infrastructure – including AI governance and cybersecurity – …Read more
  • Cyber protection for medical clinics in Singapore

    Cyber protection for medical clinics in Singapore

    As Singapore’s healthcare sector becomes increasingly digital and interconnected, clinics are facing heightened cyber risks, …Read more
  • India’s WazirX strengthens governance and digital asset security

    India’s WazirX strengthens governance and digital asset security

    Revamping its custody infrastructure using multi‑party computation tools has improved operational resilience and institutional‑grade safeguardsRead more
  • Bangladesh LGED modernizes communication while addressing data security concerns

    Bangladesh LGED modernizes communication while addressing data security concerns

    To meet emerging data localization/privacy regulations, the government engineering agency deploys a secure, unified digital …Read more

Bottom sidebar

Other News

  • Sparsa AI Launches Sovereign Enterprise AI Platform with Global Deployment at QNET

    Wednesday, July 8, 2026
    The Sparsa AI Enterprise Operating …Read More »
  • Conifers AI Opens Singapore Data Region, Bringing Local Data Residency to Asia-Pacific Security Teams

    Wednesday, July 8, 2026
    With data regions now spanning …Read More »
  • DXC Opens Flagship AI-first Customer Experience Center in Bengaluru

    Tuesday, July 7, 2026
    Strengthens DXC’s India presence with …Read More »
  • D-Link Brings Advanced AI Fall Detection and Privacy Protection to Home Elderly Care with the New DCS-8610 Wi-Fi Camera

    Monday, July 6, 2026
    Advanced technologies traditionally found in …Read More »
  • ICAC Commissioner attends first IAACA European regional anti-corruption conference in Hungary

    Friday, July 3, 2026
    BUDAPEST, Hungary, July 2, 2026 …Read More »
  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2026 CybersecAsia All Rights Reserved.