Despite increasingly sophisticated phishing threats, some boardrooms prioritize bottom lines, pressure IT teams to downplay incidents, and make CISOs squirm helplessly

The global cybersecurity landscape is more volatile than ever, with organizations facing an onslaught of increasingly sophisticated cyber threats.

The challenge is further compounded  by budget cuts and regulatory complexities, thereby straining security postures. 

So, what are the most pressing cyber threats organizations face today? Robert Pizzari, Group Vice-President, Strategic Advisory (APAC), Splunk, shared with CybersecAsia.net his professional insights.

CybersecAsia: What is the most prevalent attack vectors organizations face today?

Robert Pizzari (RP): Phishing remains the most prevalent cybersecurity threat today, due to the democratization of generative AI (GenAI). Attackers now use GenAI to create highly convincing phishing emails, automate malware delivery and evade detection, rendering traditional defenses less effective.

Despite widespread awareness efforts, phishing persists because it exploits human vulnerabilities, bypassing even the most advanced security tools. The need for seamless transactions often leads to weaker security controls as well as creates entry points for attackers.

Phishing has evolved into a cornerstone of the cybercrime economy, often serving as the first step in larger attacks such as ransomware, business email compromise and credential theft.

CybersecAsia: When a board of directors typically prioritizes business growth over security, how can their CISO effectively communicate the critical importance of security investments to them? In case of budget cuts, what are the critical cybersecurity areas most severely impacted?

To secure board buy-in, CISOs must position cybersecurity as a business enabler — much more than a mere technical necessity. Aligning strategies with revenue protection and operational resilience is crucial. Also:

• A compelling argument would be the financial impact of downtime — CISOs need to start framing cyber risks in business terms — lost revenue, service-level-agreement fines and regulatory penalties — to highlight how security safeguards business continuity, brand trust and compliance.
• Using visual tools such as compliance dashboards and financial metrics can help translate technical risks into clear business impacts. By speaking the board’s language and linking security to financial performance, CISOs can strengthen their case for investment and secure the resources needed to protect their businesses.

In the event of budget cuts, prioritization is key. CISOs should focus on high-impact areas, such as identity and access management, threat detection and incident response, to strengthen their cybersecurity posture. Delaying upgrades in these areas leaves organizations vulnerable, as attackers exploit outdated systems and weak access controls.

Adopting cost-efficient security strategies, including AI-driven automation, tools consolidation and ongoing security training, are also important amid budget pressures. While underinvestment increases cyber risks, it also strains teams. In our experience, teams have cited burnout and staff attrition, worsening the cybersecurity talent crunch. The financial toll is equally severe. In addition to ransomware demands, organizations foot hidden costs — reputational damage, customer churn and regulatory fines — which can have long-term consequences.

This is where AI-powered security operations can ease the burden of managing large volumes of alerts, as well as prevent analyst fatigue and improve decision-making. Context-rich alerts and automated recommendations help teams focus on real threats and respond with greater speed and accuracy.

CybersecAsia: With increasing regulatory complexities and the rising trend of CISOs being held personally liable, how should organizations approach compliance to avoid legal and reputational risks?