AI raises cybersecurity concerns in Asia Pacific region

Cloudflare has released a new study revealing significant concerns among cybersecurity leaders regarding the influence of artificial intelligence (AI) on data breaches in the Asia Pacific region.

The "Navigating the New Security Landscape: Asia Pacific Cybersecurity Readiness Survey" indicates that 41% of respondents reported experiencing a data breach within the last year, with 47% facing more than 10 such incidents. It was found that industries such as construction, real estate, travel, tourism, and financial services bore the brunt of these breaches. Furthermore, customer data, user access credentials, and financial data emerged as the most targeted by threat actors, and 87% of participants expressed concerns about AI enhancing the sophistication and severity of data breaches.

AI is perceived by many to be a double-edged sword; while improving operational efficiency, it may also be exploited by cybercriminals. Half of the survey participants expect AI to be used to bypass security measures like passwords or encryption, and 47% believe it could enhance phishing and social engineering tactics. Additionally, 44% predict an advancement in Distributed Denial-of-Service (DDoS) attacks due to AI, and 40% anticipate AI will facilitate the creation of deepfakes and privacy breaches.

With AI's growing impact, 70% of the respondents noted changes in operational strategies, particularly in areas such as governance, cybersecurity strategy, and vendor dealings. Security leaders are preparing to combat AI-driven threats by integrating AI-related security measures. Among the priorities are hiring AI analysts, investing in threat detection systems, and strengthening Security Information and Event Management (SIEM) systems, with 66% of respondents already engaging vendors for AI solutions.

Ransomware continues to pose a significant threat, with the research highlighting that 62% of affected organisations in the Asia Pacific region paid a ransom. This is despite 70% having previously committed publicly not to do so. A common entry point for ransomware was via compromised Remote Desktop Protocols or VPN servers. Varied responses were observed across countries, with India and Hong Kong exhibiting a higher likelihood of paying ransoms, contrasting with lower willingness found in South Korea, Japan, and New Zealand.

"Cybersecurity leaders face growing pressure from cyberattacks, stricter regulations, and limited resources. To protect their organisations, they must constantly assess talent, budgets, and solutions," stated Grant Bourzikas, Cloudflare's Chief Security Officer.

Regulatory demands are also notable. The study revealed that 43% allocate more than 5% of their IT budget towards regulatory compliance efforts. Additionally, 48% spend over 10% of their working week meeting such requirements. Despite these burdens, benefits include enhanced privacy and security measures, technological integrity, and improved brand reputation.

The survey conducted in June 2024, involved 3,844 cybersecurity leaders from various sectors across Asia Pacific, capturing perspectives on evolving cybersecurity challenges and strategies.