Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Business email compromise rackets still going strong, cybersecurity fi...
Infostealer threat group shows resilience despite major takedown and t...
Survey recaps well-known cybersecurity hurdles for Operational Technol...
AI model o3 defies shutdown commands autonomously, with code tampering
ATxEnterprise 2025 Boosts Global Participation, Reinforces Singapore&#...
LOGIN REGISTER
CybersecAsia
  • Conference 2025
  • Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features, Newsletter
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
    • Featured

      Navigating blockchain adoption amid rising security challenges

      Navigating blockchain adoption amid rising security challenges

      Wednesday, May 14, 2025, 12:32 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2024
  • Directory
  • E-Learning

Select Page

LOGIN REGISTER
  • Conference 2025
  • Features
    • Featured

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Will your organization’s defenses be breached due to your suppliers’ weak cybersecurity?

      Thursday, May 29, 2025, 5:04 PM Asia/Singapore | Features, Newsletter
    • Featured

      How the UAE proactively protects its digital economy

      How the UAE proactively protects its digital economy

      Monday, May 19, 2025, 2:16 PM Asia/Singapore | Features
    • Featured

      Navigating blockchain adoption amid rising security challenges

      Navigating blockchain adoption amid rising security challenges

      Wednesday, May 14, 2025, 12:32 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2024
  • Directory
  • E-Learning
News

RDP vulnerabilities still a major regional concern in 2024

By CybersecAsia editors | Tuesday, May 20, 2025, 10:40 AM Asia/Singapore

RDP vulnerabilities still a major regional concern in 2024

Despite raised awareness of post-pandemic remote-working cyber risks, one cybersecurity firm’s South-east Asian user base was still highly vulnerable last year.

Data from a cybersecurity firm’s client base in South-east Asia (SEA) indicates that password-guessing attempts had remained a persistent threat for the year 2024, with over 53m brute-force attacks against its regional customer base detected and addressed.

In the data, Remote Desktop Protocol (RDP) attacks had dominated the observed activity, accounting for the majority of incidents.

The firm’s systems had logged an average of 145,000 daily brute-force attempts across its South-east Asian clientele, with attack volumes intensifying in Indonesia and Malaysia during 2024. Indonesian customers had faced 14.7m RDP-focused attacks (a 25% annual increase) while Malaysian clients had seen a 14% rise to 3.2m incidents. Attack rates for the other regional clientele for 2024 included: the Philippines: 4,115,520; Singapore: 4,250,099; Thailand: 7,298,037; and Vietnam (19,874,626).

The 2024 incident data suggests that attackers targeting SEA had been increasingly leveraging AI to accelerate password-cracking efficiency. Compromised devices operating outside corporate networks’ protective frameworks remained particularly susceptible, as remote access protocols often lacked multi-factor authentication or robust encryption standards among the firm’s client base.

According to Adrian Hia, Managing Director (Asia Pacific), Kaspersky, the firm offering its 2024 incident data findings for the region to the media: “With better AI services (in) play, cybercriminals now have a reliable assistant to guess passwords and break encryptions faster. Once successful, a brute-force attack allows an attacker to gain remote access to the targeted host computer. Imagine the repercussions of having (one) spy or more, inside your computers. Thus, it is urgent for businesses here to really look into their IT posture and recalibrate their cybersecurity capabilities.”

The firm has taken the opportunity to cautions organizations to audit remote access configurations, enforce strict authentication protocols (including the use of corporate VPNs and network level authentication with multi-factor authentication), and segment networks to limit lateral movement during intrusions.

The 2024 incident data suggests that attackers targeting SEA had been increasingly leveraging AI to accelerate password-cracking efficiency. Compromised devices operating outside corporate networks’ protective frameworks remained particularly susceptible, as remote access protocols often lacked multi-factor authentication or robust encryption standards among the firm’s client base.

According to Adrian Hia, Managing Director (Asia Pacific), Kaspersky, the firm offering its 2024 incident data findings for the region to the media: “With better AI services (in) play, cybercriminals now have a reliable assistant to guess passwords and break encryptions faster. Once successful, a brute-force attack allows an attacker to gain remote access to the targeted host computer. Imagine the repercussions of having (one) spy or more, inside your computers. Thus, it is urgent for businesses here to really look into their IT posture and recalibrate their cybersecurity capabilities.”

The firm has taken the opportunity to cautions organizations to audit remote access configurations, enforce strict authentication protocols (including the use of corporate VPNs and network level authentication with multi-factor authentication), and segment networks to limit lateral movement during intrusions.

Share:

PreviousBackups are essential, but they are not a cybersecurity strategy on their own
NextSTRADVISION Maintains ISO/IEC 27001 & 27701 Information Security Certifications for Five Consecutive Years

Related Posts

No middle ground for DevOps adoption in government

No middle ground for DevOps adoption in government

Tuesday, June 16, 2020

Authentication vs authorization

Authentication vs authorization

Tuesday, July 14, 2020

The pivotal role of HR in cybersecurity

The pivotal role of HR in cybersecurity

Wednesday, November 11, 2020

BlackBerry’s Transformation Journey and Our Smartphone Heritage

BlackBerry’s Transformation Journey and Our Smartphone Heritage

Wednesday, August 17, 2022

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • 2024 Insider Threat Report: Trends, Challenges, and Solutions

    2024 Insider Threat Report: Trends, Challenges, and Solutions

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
  • AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
  • Data Management in the Age of Cloud and AI

    Data Management in the Age of Cloud and AI

    In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper
  • Mitigating Ransomware Risks with GRC Automation

    Mitigating Ransomware Risks with GRC Automation

    In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    St Luke’s ElderCare enhances operations and capabilities through a centralized secure, scalable network

    With only a small IT team, the digital transformation has united operations across 30 locations, …Read more
  • Automating border control and security with facial recognition technology

    Automating border control and security with facial recognition technology

    Indonesia Immigration & Seaport Authorities enhances security and speeds up border control queues at Batam …Read more
  • Securing wealth advisory services without unnecessary friction: Endowus

    Securing wealth advisory services without unnecessary friction: Endowus

    The wealth advisory platform demonstrates its non-negotiable commitment to a robust security posture through partnering …Read more
  • LifeTech group sets up next-gen security operations center in Malaysia

    LifeTech group sets up next-gen security operations center in Malaysia

    By partnering with a unified cybersecurity platform, the firm will be offering cost-effective advanced SOC …Read more

Bottom sidebar

  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 CybersecAsia All Rights Reserved.