In 2024, Kaspersky's corporate security solutions successfully blocked more than half a million visits to financial fraud links on corporate devices in the region.
Financial Phishing is a form of attack that targets banks, payment systems and online retailers directly. Thereby, attackers design fake websites with interfaces simulating reputable payment platforms, with the purpose of luring users to reveal financial information.
Mr. Yeo Siang Tiong, General Director of Kaspersky Southeast Asia, commented: Based on the number of attacks on corporate devices detected by Kaspersky's solution, we see that the cybersecurity situation in Southeast Asia is at an alarming level.
With the digital economy expected to reach 1,000 billion USD by 2030, this area will become a "hot spot" for cybercriminals to make the most of digital transformation speed and carry out illegal activities. Therefore, businesses in Southeast Asia need to be especially careful and vigilant.
According to cybersecurity experts from Kaspersky, from January to December 2024, they recorded and prevented a total of 534,759 financial fraud cases targeting businesses in Southeast Asia.
These attacks, targeting small businesses to large corporations, are carried out mainly via email, fake websites, messaging apps, social networks and many other forms.
In 2024, Thailand recorded the highest number of financial fraud attacks targeting businesses in the region with 247,560 cases, followed by Indonesia with 85,908 cases and Malaysia with 64,779 cases.
Enterprises in Vietnam also face 59,450 attacks, while Singapore and the Philippines recorded fewer cases, with nearly 38,000 cases.
To minimize the risk of falling victim to scams, cybersecurity experts offer the following recommendations:
For individual users:
- Only open the email and click on the link from a trusted sender.
- If you receive an email from a valid address but the content shows suspicious signs, contact the sender via another contact method to verify.
- Check the spelling in the website's website carefully if you suspect it is a scam page. Scammers often use confusing characters, such as changing "2" to "I" or "3" to "O".
- Use reputable security solutions when accessing the Internet. These solutions have the ability to access global data sources on threats, helping to effectively detect and prevent fraud and junk letter campaigns.
For businesses:
- Organize periodic cybersecurity training courses for employees, so that they can recognize and detect early the techniques and scams of cybercriminals.
- Establish the first protective layer right at the business's email portal. This helps prevent malicious links and attachments, even when employees still receive thu.
- Deploy strong and flexible security solutions, integrate anti-fraud technology on all working devices to ensure maximum safety.
