Ransomware Is Top Menace For Southeast Asia Enterprises

Digital hackers seek business in Southeast Asia. Global cyber security company Kaspersky predicts that this trend will continue this year and beyond, albeit in a more sophisticated and targeted manner.

Ransomware is a type of malware that locks a person's computer and mobile device or encrypts a person's electronic files. In order to get the "decryption" key or get your data back, cyber criminals look for the ransom behind the attack.

The first ransomware attack was in 2011. Since 2016, the attackers behind this threat have moved from consumers to large enterprises. Some of the major incidents include the Wannacry Ransomware, which cost $4 billion.

Due to the high ROI, ransomware groups continue to attack businesses around the world, including businesses in PUA.

According to new data from Kaspersky Lab, Kaspersky Lab's business solutions blocked a total of 304,904 ransomware attacks last year.

Indonesia recorded the highest number of Kaspersky B2B Solutions breaches (131,779), followed by Thailand (82,438) and Vietnam (57,389). A total of 21,076 ransomware attacks were reported in the Philippines. Malaysia had 11,750 and Singapore 472.

Kaspersky Lab revealed that telemetry is also the most common type of ransomware targeting businesses in the Philippines.

· Trojan-Ransom.Win32.Crypren

· Trojan-Ransom.Win32.Wanna

· Stop Trojan-Ransom.Win32

· Trojan-Ransom.Win32.Gen

· Trojan-Ransom.Win32.Agent

“One of our recent studies found that three out of five businesses here are victims of ransomware attacks. Some were victims at least once and twice. Our 2022 data shows that this threat will continue to be a threat to businesses in SEE as it makes good money for cybercriminals, some business leaders say ransomware is only transmitted through the media, and corporate security teams are literally overburdened and understaffed. is it. Answer it,” said Yeo Siang Tiong, General Manager, Southeast Asia.

A shortage of cybersecurity professionals is hurting local businesses. A study has identified an urgent shortage of 2.1 million local security personnel across the wider Asia-Pacific region.

Additionally, only 5% of business leaders say they have in-house threat response capabilities or have an IT team or service provider dedicated to detecting ransomware attacks.

This explains why most (94%) need outside help when an incident occurs.

We're sounding the alarm about ransomware targeting businesses in Southeast Asia, but we're also hearing that IT security teams and business managers need help building their cybersecurity capabilities. With the emergence of the new Ransomware 3.0 trend – a more dangerous version of this threat – a cybersecurity professional is needed that goes beyond your typical endpoint solutions. This can be done by equipping your security services with expert problem detection and response tools such as Kaspersky XDR (Extended Detection and Response),” he adds.

Kaspersky Lab XDR is a comprehensive portfolio built on the three pillars of any successful critical threat strategy.

In particular, security teams should:

Be Prepared: Cybersecurity is an area of ​​expertise where even a skilled worker can legally compromise their devices. Defending against multi-vector attacks and other complex incidents requires an integrated, unified platform that provides complete transparency, eliminates disruptive differences, and prevents "alert fatigue" and other routines during incident response.

Note. The advanced capabilities of mature IT organizations should never be taken for granted. After all, the scope of cybercrime is constantly changing and expanding. Using cyber threat analytics gives you an overview of the cyber threats targeting your organization at different levels, allowing you to stay ahead of cyber criminals. With the ever-changing threat landscape, it is imperative that IT security professionals update their cybersecurity skills to prevent even the most sophisticated threats or attacks.

Escalation: When a complex incident or APT is discovered, even the most advanced IT security analysts must seek external support for other analyses, security assessments, managed threat identification, and incident response. Although complex events from APTs are often targeted, they typically target only one victim. External expertise can provide a holistic global view of the potential trajectory of the APT and provide critical avenues for deriving actionable recommendations from the system.

Kaspersky Lab's XDR platform is a perfectly matched combination of technology, advanced risk analytics, staff skills, training and services supported by the best cyber security experts. The company's holistic approach empowers enterprise cybersecurity teams with comprehensive threat detection, effective investigation, proactive threat detection and rapid, fully centralized response to modern threats such as ransomware.

It is a multi-layered security technology platform with cybersecurity solutions and services that fits organizations of all sizes and uses a proactive approach to integrate hidden security tools into an integrated, unified threat detection and response platform.

Interested businesses can learn more at go.kaspersky.com/expert or at sea.sales@kaspersky.com.

Comodo Threat Intelligence Lab - Weekly Update June 21, 2017