Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Closing the gap in Zero Trust implementation: What you need to conside...
Solving data protection challenges in an era of cloud and AI
42Gears Launches SureIdP — Zero Trust Identity and Access Manage...
42Gears Launches SureIdP — Zero Trust Identity and Access Manage...
Will robocall fraud start to decline in 2026 with stronger regulations...
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      Solving data protection challenges in an era of cloud and AI

      Solving data protection challenges in an era of cloud and AI

      Wednesday, June 18, 2025, 11:12 AM Asia/Singapore | Data Protection, Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning

Select Page

LOGIN REGISTER
  • Features
    • Featured

      Solving data protection challenges in an era of cloud and AI

      Solving data protection challenges in an era of cloud and AI

      Wednesday, June 18, 2025, 11:12 AM Asia/Singapore | Data Protection, Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning
News

RDP vulnerabilities still a major regional concern in 2024

By CybersecAsia editors | Tuesday, May 20, 2025, 10:40 AM Asia/Singapore

RDP vulnerabilities still a major regional concern in 2024

Despite raised awareness of post-pandemic remote-working cyber risks, one cybersecurity firm’s South-east Asian user base was still highly vulnerable last year.

Data from a cybersecurity firm’s client base in South-east Asia (SEA) indicates that password-guessing attempts had remained a persistent threat for the year 2024, with over 53m brute-force attacks against its regional customer base detected and addressed.

In the data, Remote Desktop Protocol (RDP) attacks had dominated the observed activity, accounting for the majority of incidents.

The firm’s systems had logged an average of 145,000 daily brute-force attempts across its South-east Asian clientele, with attack volumes intensifying in Indonesia and Malaysia during 2024. Indonesian customers had faced 14.7m RDP-focused attacks (a 25% annual increase) while Malaysian clients had seen a 14% rise to 3.2m incidents. Attack rates for the other regional clientele for 2024 included: the Philippines: 4,115,520; Singapore: 4,250,099; Thailand: 7,298,037; and Vietnam (19,874,626).

The 2024 incident data suggests that attackers targeting SEA had been increasingly leveraging AI to accelerate password-cracking efficiency. Compromised devices operating outside corporate networks’ protective frameworks remained particularly susceptible, as remote access protocols often lacked multi-factor authentication or robust encryption standards among the firm’s client base.

According to Adrian Hia, Managing Director (Asia Pacific), Kaspersky, the firm offering its 2024 incident data findings for the region to the media: “With better AI services (in) play, cybercriminals now have a reliable assistant to guess passwords and break encryptions faster. Once successful, a brute-force attack allows an attacker to gain remote access to the targeted host computer. Imagine the repercussions of having (one) spy or more, inside your computers. Thus, it is urgent for businesses here to really look into their IT posture and recalibrate their cybersecurity capabilities.”

The firm has taken the opportunity to cautions organizations to audit remote access configurations, enforce strict authentication protocols (including the use of corporate VPNs and network level authentication with multi-factor authentication), and segment networks to limit lateral movement during intrusions.

The 2024 incident data suggests that attackers targeting SEA had been increasingly leveraging AI to accelerate password-cracking efficiency. Compromised devices operating outside corporate networks’ protective frameworks remained particularly susceptible, as remote access protocols often lacked multi-factor authentication or robust encryption standards among the firm’s client base.

According to Adrian Hia, Managing Director (Asia Pacific), Kaspersky, the firm offering its 2024 incident data findings for the region to the media: “With better AI services (in) play, cybercriminals now have a reliable assistant to guess passwords and break encryptions faster. Once successful, a brute-force attack allows an attacker to gain remote access to the targeted host computer. Imagine the repercussions of having (one) spy or more, inside your computers. Thus, it is urgent for businesses here to really look into their IT posture and recalibrate their cybersecurity capabilities.”

The firm has taken the opportunity to cautions organizations to audit remote access configurations, enforce strict authentication protocols (including the use of corporate VPNs and network level authentication with multi-factor authentication), and segment networks to limit lateral movement during intrusions.

Share:

PreviousBackups are essential, but they are not a cybersecurity strategy on their own
NextSTRADVISION Maintains ISO/IEC 27001 & 27701 Information Security Certifications for Five Consecutive Years

Related Posts

Cyber insurance terms reward the cyber diligent

Cyber insurance terms reward the cyber diligent

Tuesday, June 6, 2023

Managing ransomware risk with zero-trust, encryption and immutable backups

Managing ransomware risk with zero-trust, encryption and immutable backups

Tuesday, August 31, 2021

This North Korean dolphin has its eyes set on South Korean secrets

This North Korean dolphin has its eyes set on South Korean secrets

Friday, December 2, 2022

Will robocall fraud start to decline in 2026 with stronger regulations?

Will robocall fraud start to decline in 2026 with stronger regulations?

Tuesday, June 17, 2025

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • 2024 Insider Threat Report: Trends, Challenges, and Solutions

    2024 Insider Threat Report: Trends, Challenges, and Solutions

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
  • AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
  • Data Management in the Age of Cloud and AI

    Data Management in the Age of Cloud and AI

    In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper
  • Mitigating Ransomware Risks with GRC Automation

    Mitigating Ransomware Risks with GRC Automation

    In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    With only a small IT team, the digital transformation has united operations across 30 locations, …Read more
  • Automating border control and security with facial recognition technology

    Automating border control and security with facial recognition technology

    Indonesia Immigration & Seaport Authorities enhances security and speeds up border control queues at Batam …Read more
  • Securing wealth advisory services without unnecessary friction: Endowus

    Securing wealth advisory services without unnecessary friction: Endowus

    The wealth advisory platform demonstrates its non-negotiable commitment to a robust security posture through partnering …Read more
  • LifeTech group sets up next-gen security operations center in Malaysia

    LifeTech group sets up next-gen security operations center in Malaysia

    By partnering with a unified cybersecurity platform, the firm will be offering cost-effective advanced SOC …Read more

Bottom sidebar

  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 CybersecAsia All Rights Reserved.