More than 23 million brute-force attacks target SEA businesses in early 2024: report

by

Azunta Gaviola

-

2 months ago

Be part of the forefront of innovation and reshape the future of retail and e-commerce! Making its highly anticipated return, MARKETECH APAC and UpTech Media partners for the Retail & E-Commerce Innovation Marketing & Tech Summit Malaysia 2025, happening on 22 May 2025 at Sheraton Petaling Jaya and for the Retail &E-Commerce Innovation Marketing & Tech Summit: Philippines 2025 on 25 June 2025 at Shangri-La The Fort, Manila. Don’t miss out!

Singapore – Over 23 million brute-force attacks are targeting businesses in Southeast Asia within the first half of 2024, according to cybersecurity firm Kaspersky. 

Data from the findings reported that a significant total of 23,491,775 Bruteforce.Generic.RDP were detected and foiled by Kaspersky B2B products installed in companies of various sizes in the region from the period of January to June.

Vietnam, Indonesia, and Thailand also recorded the highest number of RDP attacks for the first half of the year, with more than 8.4 million, 5.7 million, and 4.2 million attacks, respectively. 

Meanwhile, Singapore experienced over 1.7 million incidents, the Philippines reported more than 2.2 million, and Malaysia had the lowest number at just above one million.

Remote Desktop Protocol (RDP) is Microsoft’s proprietary protocol, providing a user with a graphical interface to connect to another computer through a network. It is also commonly used by both system administrators and less-technical users to control servers and other PCs remotely.

With these incidents at hand, the company has further advised adequate measures, including using strong and unique passwords, implementing two-factor authentication, not exposing remote desktop/management services to public networks, as well as monitoring access and activity by having visibility over the network to spot any unusual activity. 

In addition, Kaspersky recommended setting up a security operation centre using an SIEM, employing the latest threat intelligence information, considering subscribing to a managed service such as Kaspersky MDR, and using solutions intended to help manage cybersecurity even without having an IT administrator on board.

Yeo Siang Tiong, general manager for Southeast Asia at Kaspersky, also said, “Although it is an old method, organisations must not underestimate a brute-force attack. This threat is still relevant for the region because many organisations deploy weak passwords, making it easier for attackers to succeed.”

“In addition to that, the absence of multi-factor authentication (MFA) on RDP connections as well as misconfigured RDP settings would also increase the possibility of successful execution of a brute-force attack,” added Yeo.

He further noted, “Cybercriminals are leveraging artificial intelligence to enhance the capabilities of brute-force attacks by automating the process of generating and testing passwords, making it faster and more efficient. Implications of corporate network breach are far heavier.”

“Organisations can suffer data breaches, or if systems are compromised, they face operation disruptions. These would greatly impact organisations financially as they face costs of business downtime, recovery efforts, and even regulatory fines,” concluded Yeo.

 

Happening in Singapore on 19-20 February 2025, the ‘What’s NEXT in Marketing: Singapore 2025’ event presents an exceptional opportunity for marketers and industry leaders to talk about the future of marketing and drive success in the Singaporean market! Register now to secure your slot!

The NEXT Awards 2025 has come, and we’re looking for the most innovative marketing campaigns from Indonesia, the Philippines, Malaysia, Singapore and Asia Pacific. Register your interest now and be the first to know when entries open!

Share

RECENT ARTICLES

Genesys, Mitel collaborate to bring advanced AI-driven solutions to support enterprises navigate compliance, enhance CX
Government, development sectors see major decline in cyber incidents in 2024: report
Purpose-driven innovation: Anchanto’s Bely Villacruz on how tech innovators navigate the e-commerce landscape 
BT launches AI-ready ‘Global Fabric’ across Equinix data centres for enhanced cloud connectivity
GoDaddy’s new AI-powered experience solution to help SMEs establish digital presence
Ellipse 3

RELATED ARTICLES

Kaspersky unveils enhanced cybersecurity solutions for combatting OT, critical infrastructure threats_11zon
1_Kaspersky announces latest addition of AI-focused course module to its automated security awareness platform_11zon
4_Kaspersky to launch managed endpoint detection, response solution with Green Radar partnership_11zon
Ellipse 3

FEATURED ARTICLES

1_Huawei unveils smart tech strategies for secure, transparent e-commerce future 
1_Beyond the cart Shoppertainment execs on harnessing the potential of live commerce for unmatched customer experience_11zon
EW2025_(UT)Launch Article_Feature Image_11zon

Subscribe to UpTech Media Newsletter

Video Title Here: The Indonesian on-ground activation status

Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo. Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos.

Video Title Here: The Indonesian on-ground activation status

Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo. Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos.

Video Title Here: The Indonesian on-ground activation status

Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium, totam rem aperiam, eaque ipsa quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt explicabo. Nemo enim ipsam voluptatem quia voluptas sit aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos.