Cybersecurity News in Asia

RECENT STORIES:

SEGA moves faster with flow-based network monitoring
Just a single malicious email can poison your AI agent’s memory: resea...
VIDA Demonstrates How Passwordless Authentication Can Break the Scam C...
New AI jailbreak techniques expose limits of safety defenses, prompt i...
The cyber incident that is too “isolated” to accentuate to mass media...
Sparsa AI Launches Sovereign Enterprise AI Platform with Global Deploy...
LOGIN REGISTER
CybersecAsia
  • Features
    • Featured

      S E Asia governments targeted by cyber-espionage group

      S E Asia governments targeted by cyber-espionage group

      Tuesday, June 23, 2026, 8:00 AM Asia/Singapore | Features
    • Featured

      Rethinking network and infrastructure design for resilience

      Rethinking network and infrastructure design for resilience

      Thursday, June 18, 2026, 2:17 PM Asia/Singapore | Features
    • Featured

      Bringing cybercriminals to justice in APAC

      Bringing cybercriminals to justice in APAC

      Thursday, June 11, 2026, 10:30 AM Asia/Singapore | Features
  • Opinions
  • Tips
  • Whitepapers
  • AWARDS 2026
  • Directory
  • E-Learning

Select Page

Tips

Securing the AI ecosystem: The next frontier for APAC enterprises

By Kevin O’Leary, Head of Security & Resiliency and Network & Edge, Kyndryl ASEAN | Friday, December 12, 2025, 6:35 AM Asia/Singapore

Securing the AI ecosystem: The next frontier for APAC enterprises

AI adoption has reached an inflection point in enterprise infrastructure, and securing the AI ecosystem is now the new cybersecurity frontier for organizations.

Just as virtualization transformed compute and cloud-redefined networks, AI is now woven into the fabric of enterprise systems.

Yet this rapid integration has created a new class of vulnerabilities across AI infrastructure – spanning models, data pipelines, and orchestration environments. Each component, if unprotected, can become a potential entry point for compromise, demanding a fresh approach to resilience and governance.

Kyndryl’s 2025 Readiness Report underscores the urgency: only 31% of organizations globally say they are “completely ready” to manage external business risks. Even more concerning, 60% of leaders admit they struggle to keep pace with the velocity of technological change.

This readiness gap exposes enterprises to cascading risks — not only from traditional cyberthreats, but from AI-assisted attacks that can adapt, learn, and automate compromise at scale.

The AI-enabled threat landscape

The security community has long accepted that automation benefits both sides of the battlefield. Threat actors are now integrating LLM-driven reconnaissance, adaptive phishing, and model-based intrusion techniques into their toolkits. Adversaries can generate polymorphic malware, automate vulnerability discovery, and even manipulate datasets to evade detection.

Across APAC, Kyndryl and industry partners have observed the emergence of AI-assisted “campaign frameworks” — reusable malicious models capable of generating spear-phishing content, modifying payloads in real time, and orchestrating multi-stage attacks without human intervention.

For defenders, the response must be equally algorithmic. Security operations centers (SOCs) are beginning to integrate AI-driven telemetry correlation, drift detection, and automated containment into their pipelines. However, securing AI itself — the models, training data, inference APIs, and orchestration systems — remains an unfilled gap in most organizations’ architectures.

From compliance to continuous assurance

Securing AI cannot rely on legacy compliance frameworks. Enterprises must embed secure-by-design principles throughout the AI lifecycle — Singapore’s Guidelines on Securing AI Systems (2024) from data acquisition to model decommissioning offer a globally relevant framework that technical leaders across APAC can adapt.

At a minimum, organizations should operationalize six lifecycle controls:

  1. Ownership and Risk Profiling: Assign accountable owners for every model, classify risk by data sensitivity and criticality.
  2. Data & Model Hygiene: Apply encryption, enforce separation between training and production, implement access controls at dataset and model layers.
  3. Adversarial Testing: Conduct “red team” simulations to detect model poisoning, prompt injection, or bias exploitation.
  4. Visibility and Bill of Materials: Maintain a model and software bill of materials (MBOM/SBOM) to trace every dependency and library version.
  5. Runtime Observability: Log inference requests and outputs, monitor anomalies, and flag deviations in model behavior.
  6. Incident Response and Retirement: Integrate AI systems into existing IR playbooks and securely decommission outdated models.

These practices shift AI security from a compliance checklist to an engineering discipline — one grounded in visibility, automation, and iterative assurance.

APAC’s distinct challenge: hybrid complexity

For APAC enterprises, securing AI is further complicated by hybrid architectures. Organizations in Singapore, Malaysia, Indonesia, and the Philippines commonly operate multi-cloud and edge deployments across jurisdictions with varying data sovereignty rules. According to Kyndryl’s Readiness Report, 44% of global leaders are reevaluating data-governance policies, 41% are considering data repatriation, and 65% of organizations have made changes to their cloud strategies in response to new geopolitical pressures.

Each of these shifts expands the AI threat surface: training data stored across jurisdictions, models deployed on the edge, and vendors integrated into supply chains. The result is a mesh of interdependent risks that require consistent governance frameworks and real-time telemetry correlation.

To close these gaps, enterprises must invest in end-to-end observability that connects cloud workloads, data pipelines, and AI endpoints for real-time correlation. Security and governance policies should be codified through Infrastructure as Code and ModelOps, ensuring consistency across hybrid environments. At the same time, zero-trust principles must extend to model APIs and inference layers, while AI-specific threat-intelligence sharing across industries and regions becomes essential to anticipate emerging exploits.

Cyber resilience as a board and engineering imperative

The CISO’s remit is expanding beyond data protection to include model integrity and algorithmic reliability. Modern incident-response plans must now account for scenarios like model drift, prompt leakage, or training-data compromise. The metrics of resilience are evolving, too — from MTTR (Mean Time to Recovery) for systems to MTTM (Mean Time to Mitigate) for AI incidents.

As Singapore’s recent breach of critical infrastructure revealed, cyber resilience must integrate governance, engineering, and operations. Technical teams should partner with compliance, HR, and finance to conduct joint readiness drills — because AI incidents will not respect departmental silos.

The road ahead: building secure AI infrastructures

AI will be embedded into every layer of enterprise infrastructure — from network optimization to predictive maintenance. For APAC organizations, the imperative is clear: secure the models before they secure the market.

In a hyper-connected region defined by diverse regulatory environments and fast-moving digital ecosystems, resilience depends on engineering discipline. The frontier of cybersecurity is no longer just the perimeter or supply chain — it is the model layer itself.

Enterprises that catalog, test, monitor, and govern their AI assets as rigorously as their codebases will be the ones that thrive. Because in the age of intelligent automation, the only sustainable advantage is secure intelligence.

Share:

PreviousFescaro sees rising demand for automotive cybersecurity solutions
NextJust when we thought AI-powered IDEs were invaluable…

Related Posts

When adopting hybrid work arrangements, network security also needs a relook

When adopting hybrid work arrangements, network security also needs a relook

Thursday, August 24, 2023

Illicit crypto activities trend downwards in H1 2024

Illicit crypto activities trend downwards in H1 2024

Friday, September 6, 2024

2019: A year of frantic ransomware evolution

2019: A year of frantic ransomware evolution

Thursday, May 28, 2020

The expanding corporate perimeter calls for more than just NGAV

The expanding corporate perimeter calls for more than just NGAV

Monday, August 23, 2021

Leave a reply Cancel reply

You must be logged in to post a comment.

Voters-draw/RCA-Sponsors

Slide

CybersecAsia Voting Placement

Gamification listing or Participate Now

PARTICIPATE NOW

Vote Now -Placement(Google Ads)

Top-Sidebar-banner

Whitepapers

  • Critical Security Threatsand the Need for ZTNA: How evolving cyberattacks demand a Zero Trust approach

    Critical Security Threatsand the Need for ZTNA: How evolving cyberattacks demand a Zero Trust approach

    Cyber threats have become more frequent and sophisticated, targeting organizations of all sizes across all …Download Whitepaper
  • Zero Trust Made Simple: Why it matters and how to get started

    Zero Trust Made Simple: Why it matters and how to get started

    Data breaches and cyberattacks are no longer limited to large, high-profile organizations.Download Whitepaper
  • Cloud Secure Edge: Remote access, better security

    Cloud Secure Edge: Remote access, better security

    ​SonicWall Cloud Secure Edge™ is a modern, cloud-native Security Service Edge (SSE) solution that addresses …Download Whitepaper
  • Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats

    Closing the Gap in Email Security:How To Stop The 7 Most SinisterAI-Powered Phishing Threats

    Insider threats continue to be a major cybersecurity risk in 2024. Explore more insights on …Download Whitepaper

Middle-sidebar-banner

Case Studies

  • How a Vietnamese D2C retailer built its own secure digital infrastructure

    How a Vietnamese D2C retailer built its own secure digital infrastructure

    Would your organization build your own digital infrastructure – including AI governance and cybersecurity – …Read more
  • Cyber protection for medical clinics in Singapore

    Cyber protection for medical clinics in Singapore

    As Singapore’s healthcare sector becomes increasingly digital and interconnected, clinics are facing heightened cyber risks, …Read more
  • India’s WazirX strengthens governance and digital asset security

    India’s WazirX strengthens governance and digital asset security

    Revamping its custody infrastructure using multi‑party computation tools has improved operational resilience and institutional‑grade safeguardsRead more
  • Bangladesh LGED modernizes communication while addressing data security concerns

    Bangladesh LGED modernizes communication while addressing data security concerns

    To meet emerging data localization/privacy regulations, the government engineering agency deploys a secure, unified digital …Read more

Bottom sidebar

Other News

  • VIDA Demonstrates How Passwordless Authentication Can Break the Scam Chain

    Monday, July 13, 2026
    KUALA LUMPUR, Malaysia, July 13, …Read More »
  • Sparsa AI Launches Sovereign Enterprise AI Platform with Global Deployment at QNET

    Wednesday, July 8, 2026
    The Sparsa AI Enterprise Operating …Read More »
  • Conifers AI Opens Singapore Data Region, Bringing Local Data Residency to Asia-Pacific Security Teams

    Wednesday, July 8, 2026
    With data regions now spanning …Read More »
  • DXC Opens Flagship AI-first Customer Experience Center in Bengaluru

    Tuesday, July 7, 2026
    Strengthens DXC’s India presence with …Read More »
  • D-Link Brings Advanced AI Fall Detection and Privacy Protection to Home Elderly Care with the New DCS-8610 Wi-Fi Camera

    Monday, July 6, 2026
    Advanced technologies traditionally found in …Read More »
  • Our Brands
  • DigiconAsia
  • MartechAsia
  • Home
  • About Us
  • Contact Us
  • Sitemap
  • Privacy & Cookies
  • Terms of Use
  • Advertising & Reprint Policy
  • Media Kit
  • Subscribe
  • Manage Subscriptions
  • Newsletter

Copyright © 2026 CybersecAsia All Rights Reserved.