Cybersecurity News in Asia

Insider threats cited alongside external attacks in terms of severity: risk survey

By CybersecAsia editors | Monday, September 1, 2025, 11:08 AM Asia/Singapore

A survey of mainly large APJ organizations has, besides AI threats, unearthed gaps in executive awareness and detection of insider risks.

Based on a survey of 1,010 cybersecurity professionals* across multiple industries and regions in June and July 2025 about how AI and the analytics gap are fueling insider risks in cybersecurity, a cybersecurity firm has shared its data findings on insider threats fueled by AI and analytics gaps with the media.

First, 69% of respondents in the Asia Pacific and Japan (APJ) region had indicated an expectation that insider threats would increase in the next 12 months — the region with the highest anticipation of in insider threats in the survey. Additionally, 60% had cited a measurable increase in insider incidents during the past year.

Second, 75% of APJ respondents had indicated that AI was increasing the effectiveness of insider attacks, with AI-enhanced phishing and social engineering identified by 31% as the top insider threat vector, followed by privilege misuse (18%) and data exfiltration (17%).

Other findings

Third, 53% of APJ respondents viewed insider threats — whether malicious or compromised insiders — as a risk equal or greater to that from external threat actors. Also:

Unauthorized use of generative AI tools by employees was reported by 64% of APJ respondents, with 12% identifying this as their top insider threat concern.
82% of APJ respondents cited having insider threat programs, and 37% cited using user and entity behavior analytics for detecting abnormal activity.
94% of APJ respondents reported some use of AI, with over half of the global survey sample indicated their belief that these tools were fully deployed despite many still being in pilot or evaluation phases.
A disconnect was noted between security teams and executive leadership, with 74% of respondents globally citing that executive leadership underestimated insider threats.

According to Steve Wilson, Chief AI and Product Officer, Exabeam, the firm releasing its data findings: “Insiders aren’t just people anymore. They’re AI agents logging in with valid credentials, spoofing trusted voices, and making moves at machine speed. The question isn’t just who has access — it’s whether you can spot when that access is being abused.”

*including analysts, security team leads, and executive decision-makers employed in technology, financial services, manufacturing, healthcare, retail, and government, with a significant proportion from large enterprises employing 500 or more staff across parts of the Asia Pacific and Japan (APJ), North America, Europe, and the Middle East regions. No breakdown of respondent profiles by region is disclosed in the full survey report.

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

CybersecAsia Voting Placement

Gamification listing or Participate Now

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats
Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
2024 Insider Threat Report: Trends, Challenges, and Solutions
Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper
AI-Powered Cyber Ops: Redefining Cloud Security for 2025
The future of cybersecurity is a perfect storm: AI-driven attacks, cloud expansion, and the convergence …Download Whitepaper
Data Management in the Age of Cloud and AI
In today’s Asia Pacific business environment, organizations are leaning on hybrid multi-cloud infrastructures and advanced …Download Whitepaper

Middle-sidebar-banner

Case Studies

India’s WazirX strengthens governance and digital asset security
Revamping its custody infrastructure using multi‑party computation tools has improved operational resilience and institutional‑grade safeguardsRead more
Bangladesh LGED modernizes communication while addressing data security concerns
To meet emerging data localization/privacy regulations, the government engineering agency deploys a secure, unified digital …Read more
What AI worries keep members of the Association of Certified Fraud Examiners sleepless?
This case study examines how many anti-fraud professionals reported feeling underprepared to counter rising AI-driven …Read more
Meeting the business resilience challenges of digital transformation
Data proves to be key to driving secure and sustainable digital transformation in Southeast Asia.Read more

Bottom sidebar

Other News

Blackpanda Japan Announces Strategic Partnership with SoftBank to Strengthen Cyber Incident Response in Japan
Wednesday, February 11, 2026
SINGAPORE, Feb. 10, 2026 /PRNewswire/ …Read More »
Cohesity Collaborates with Google Cloud to Deliver Secure Sandbox Capabilities and Comprehensive Threat Insights Designed to Eliminate Hidden Malware
Saturday, February 7, 2026
Embedded Google Threat Intelligence capabilities, …Read More »
Shield AI, Republic of Singapore Air Force, and Defence Science and Technology Agency Expand Partnership to Progressively Field Autonomy Capabilities
Thursday, February 5, 2026
SINGAPORE, Feb. 5, 2026 /PRNewswire/ …Read More »
ICAC Commissioner attends APEC anti-corruption meetings in Guangzhou to foster collaborations in the Asia Pacific region
Thursday, February 5, 2026
HONG KONG, Feb. 4, 2026 …Read More »
VIVOTEK Enhances VORTEX with Generative AI and Safety Detection
Tuesday, February 3, 2026
Expanding the cloud security ecosystem …Read More »

Featured

Where are financial fraud and AML regulations heading in S E Asia?

Featured

How AI is reshaping dating in Asia

Featured