Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Malvertising campaign targets Android users with advanced crypto-steal...
How are people in 15 countries leveraging AI for travel planning?
Insider threats cited alongside external attacks in terms of severity:...
How are people in 15 countries leveraging AI for travel planning?
North America financial institutions lead surge in financial regulator...
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      Resilience the true benchmark for smart infrastructure

      Resilience the true benchmark for smart infrastructure

      Wednesday, August 27, 2025, 8:21 PM Asia/Singapore | Features, IoT Security
    • Featured

      Deepfake a crisis of trust, not just technology

      Deepfake a crisis of trust, not just technology

      Tuesday, August 19, 2025, 10:06 AM Asia/Singapore | Features
    • Featured

      When talking sense into AI power mongers fails, talk $$$: A message from AI

      When talking sense into AI power mongers fails, talk $$$: A message from AI

      Thursday, August 14, 2025, 12:26 PM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • Awards 2025
  • Directory
  • E-Learning

Select Page

News

Rise in state-sponsored cyber-attacks across APAC

By CybersecAsia editors | Wednesday, July 30, 2025, 9:05 PM Asia/Singapore

Rise in state-sponsored cyber-attacks across APAC

Amid growing supply chain vulnerabilities and a thriving underground economy, APAC is experiencing a notable rise in state-sponsored cyber-attacks. 

Ensign InfoSecurity recently released its sixth Cyber Threat Landscape Report (CTLR) 2025, revealing a significant rise in state-sponsored cyber-attacks across Asia-Pacific (APAC) in 2024. Meanwhile, an increasingly sophisticated underground economy and growing supply chain vulnerabilities are driving the scale and success of attacks across the region.

This report is based on insights drawn from Ensign’s proprietary telemetry and intelligence gathered across the APAC region in 2024. It provides a comprehensive view of the evolving threat landscape Some key findings include:

1. Rising state-sponsored attacks across APAC

State-sponsored threat groups across APAC are on the rise, accounting for a notable number of cyberattacks in 2024. These groups are usually well-resourced and have high-level capabilities. Their modus operandi is characterized by stealth, persistence, and strategic patience, positioning themselves for future operations.

2. Thriving underground economy powers persistent threats

The cyber underground has evolved into a mature and highly collaborative economy. Threat actors including ransomware groups, Initial Access Brokers (IABs), and hacktivists work in tandem; each specializes in a piece of an attack while pursuing multiple income streams. IABs, for instance, have adopted a “breach once, sell to many” model, monetizing initial access by selling it to multiple parties. In the meantime, state-sponsored groups were observed to sub-contract attack tasks to other threat actors, adding layers of complexity to cyber campaigns. Such multi-stakeholder participation in cyberattack campaigns makes it increasingly difficult to attribute attacks to the original masterminds.

“Threat actors are no longer operating in silos. The cyber underground today functions as an illicit, dynamic, and highly collaborative marketplace,” said Xiang Zheng Teo, Vice President of Advisory, Ensign InfoSecurity. “These alliances, combined with widening supply chain vulnerabilities, have made threat groups more capable, persistent, and difficult to dislodge.”

3. Cyber supply chain under sustained attack

The report reveals increasing sophistication in supply chain compromises, where hardware, software, and service providers are targeted for stealthy access into organizations. The Business and Professional Services (BPS) firms, such as legal, accounting, and consulting, have become prime targets. Because of the trusted relationships these firms maintain with their clients, they often possess large amounts of sensitive client data. Yet, they typically lack deep defensive capabilities, making them attractive pathways for attackers seeking broader network penetration.

4. Dwell time quadrupled, indicating growing detection gaps

Notably, compared to 2023, incident-response dwell time (the duration attackers remain undetected within networks) has risen significantly across industries. Across APAC, the maximum dwell quadrupled from 49 to 201 days, while the minimum dwell more than doubled to 7 days. This signals that cyber criminals had a much wider window to steal data, move across networks, and cause damage.

“We are increasingly seeing many organizations being compromised without them even realizing it. As digitization deepens, AI technologies become more pervasive and threat actors grow increasingly sophisticated, organizations must move beyond assumptions of safety,” Teo added. “It is clear that the cyber space is not benign. Organizations must continue to validate their defenses, fix the weak links, and ensure that their cyber posture is operating at a level of readiness that meets today’s threat landscape.”

Share:

PreviousIs your organization truly AI-ready?
NextProactive security to sustain energy and AI

Related Posts

Seven cyber trends to monitor this year

Seven cyber trends to monitor this year

Friday, January 26, 2024

Cartoon avatars are fun, but can avatar apps leak your data?

Cartoon avatars are fun, but can avatar apps leak your data?

Friday, July 2, 2021

Learning from the cyber threats of 2024

Learning from the cyber threats of 2024

Tuesday, November 19, 2024

The greatest threat to industrial cybersecurity may actually be red tape!

The greatest threat to industrial cybersecurity may actually be red tape!

Tuesday, September 29, 2020

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
Slide
previous arrow
next arrow

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • 2024 Insider Threat Report: Trends, Challenges, and Solutions

    2024 Insider Threat Report: Trends, Challenges, and Solutions

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
  • AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    AI-Powered Cyber Ops: Redefining Cloud Security for 2025

    The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
  • Data Management in the Age of Cloud and AI

    Data Management in the Age of Cloud and AI

    In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper
  • Mitigating Ransomware Risks with GRC Automation

    Mitigating Ransomware Risks with GRC Automation

    In today’s landscape, ransomware attacks pose significant threats to organizations of all sizes, with increasing …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • CISOs can navigate emerging risks from autonomous AI with a new security framework

    CISOs can navigate emerging risks from autonomous AI with a new security framework

    See how security leaders can adopt layered strategies addressing intent, governance, and oversight to manage …Read more
  • MoneyMe strengthens fraud prevention and credit decisioning

    MoneyMe strengthens fraud prevention and credit decisioning

    Australian fintech strengthens risk management with SEON to scale lending operations securely and efficiently.Read more
  • PT Kereta Api Indonesia announces nationwide email and communication overhaul

    PT Kereta Api Indonesia announces nationwide email and communication overhaul

    The state railway operator’s upgraded email system improves privacy, operational reliability, and regulatory alignment for …Read more
  • Operationalizing sustainability in cybersecurity: Group-IB’s approach

    Operationalizing sustainability in cybersecurity: Group-IB’s approach

    See how the firm turned malware-group takedowns into measurements of sustainability and resilience gains: by …Read more

Bottom sidebar

  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2025 CybersecAsia All Rights Reserved.