Saturday , February 15 2025
Malasia flag

New survey by IDC
Malaysia face doubling of ransomware incidents in 2023

In Malaysia, the cybersecurity situation is changing as organizations deal with an increase in cyber threats. A recent survey by IDC shows that phishing is the main concern, with 54% of organizations ranking it as the biggest threat. The top five risks in Malaysia are ransomware, unpatched vulnerabilities, identity theft, and attacks on the Internet of Things (IoT).

ALSO READ:

Xploit_Cr3w and Blind_Virus, champion for BCS CTF contest

Xploit_Cr3w and Blind_Virus are the two champion teams categorically for BCS ICT Fest 2025 arranged jointly by BCS and BUET....
Read More
Xploit_Cr3w and Blind_Virus, champion for BCS CTF contest

Salt Typhoon Exploits Vulnerable Cisco Devices of Telcoms Globally

Between December 2024 and January 2025, Recorded Future's Insikt Group discovered a campaign targeting unpatched Cisco devices used by major...
Read More
Salt Typhoon Exploits Vulnerable Cisco Devices of Telcoms Globally

CISA Releases Advisories For 20 Industrial Control Systems (ICS)

On February 13, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) issued 20 advisories about serious vulnerabilities in Industrial Control...
Read More
CISA Releases Advisories For 20 Industrial Control Systems (ICS)

“Astaroth” Phishing Kit Bypasses 2FA Of Gmail, Yahoo, AOL, M365

The new Astaroth Phishing Kit can bypass two-factor authentication to steal login credentials for Gmail, Yahoo, and Microsoft. It uses...
Read More
“Astaroth” Phishing Kit Bypasses 2FA Of Gmail, Yahoo, AOL, M365

CVE-2023-38831
Malware campaign target Bangladeshi Government Entities: Report

A sophisticated malware campaign is targeting military and government entities in Bangladesh. It uses social engineering to deliver malicious files...
Read More
CVE-2023-38831  Malware campaign target Bangladeshi Government Entities: Report

(CVE-2025-1146
CrowdStrike Fixed High-Severity TLS Vuln in Falcon Sensor

CrowdStrike has issued a security advisory for a serious TLS vulnerability, CVE-2025-1146, in its Falcon Sensor for Linux, Falcon Kubernetes...
Read More
(CVE-2025-1146  CrowdStrike Fixed High-Severity TLS Vuln in Falcon Sensor

CVE-2025-0108 & CVE-2025-0110
Palo Alto Networks Addressed High-Severity PAN-OS Vulns

Palo Alto Networks has issued advisories for two critical vulnerabilities in its PAN-OS. The vulnerabilities, CVE-2025-0108 and CVE-2025-0110, may enable...
Read More
CVE-2025-0108 & CVE-2025-0110  Palo Alto Networks Addressed High-Severity PAN-OS Vulns

Update Now
Ivanti Patches 3 Critical Flaws in Connect Secure and Policy Secure

Ivanti has released security updates for Ivanti Connect Secure (ICS), Ivanti Policy Secure (IPS), and Ivanti Secure Access Client (ISAC)...
Read More
Update Now  Ivanti Patches 3 Critical Flaws in Connect Secure and Policy Secure

This Adtech Company is Powering Surveillance of U.S. Military Personnel

Last year, a joint investigation revealed that a Florida-based data broker, Datastream Group, was selling highly sensitive location data that...
Read More
This Adtech Company is Powering Surveillance of U.S. Military Personnel

Intel Patched 374 Vulnerabilities in multiple products

In 2024, Intel addressed a remarkable 374 vulnerabilities across its software, firmware, and hardware products, distributing bug bounty rewards for...
Read More
Intel Patched 374 Vulnerabilities in multiple products

China to enforce 10 min response time for data breaches

Ransomware incidents in the country have doubled, with over 50% of organizations experiencing a two-fold increase in 2023 compared to the previous year. Fortinet, who commissioned the report, discussed the data from the SecOps report. They highlighted key findings and shed light on the escalating challenges faced by Malaysian organizations in cybersecurity.

The survey highlights the importance of AI and automation in SecOps. According to the report, phishing, malware, SQL injection, insider threats, and IoT vulnerabilities are the main attack vectors.

The survey shows important information about cybersecurity, highlighting how remote work has led to more insider threats. For example, 88% of respondents link the increase in insider threat incidents to remote work, citing reasons such as lack of training, employee negligence, and poor communication.

Only 38% of businesses have dedicated IT resources for security teams, making it harder to strengthen security measures. The impact of emerging technologies like hybrid work, AI, and IT/OT system convergence presents significant challenges. Cloud technology adoption is a major obstacle that increases organizational vulnerability to cyber threats.

During a briefing in Kuala Lumpur on November 13, 2023, Rashish Pandey, Fortinet’s vice president of marketing & communications for Asia and ANZ, stated that as cyberthreats continue to evolve, many organizations are facing diverse cyber threats. He suggested using Fortinet’s security operations solutions with advanced AI to automate incident detection and response.

Pandey promised that they could detect and contain threats in an average time of one hour, investigate and fix issues in an average of 11 minutes, achieve a 597% return on investment, double team productivity, and reduce expected breach costs by US$1.39 million.

48% of organizations in Malaysia feel unprepared for threats and want better cybersecurity. 75% don’t do regular risk assessments, making it hard to detect threats. More than 50% of companies deal with alert fatigue and have about 221 incidents every day.

“Two out of five enterprises grapple with over 500 incidents daily, leading to alert fatigue. The top two alerts faced are suspicious emails (phishing) and malware or virus detections, highlighting the imperative for targeted training on phishing awareness. Additionally, suspicious user behavior, account lockouts, and multiple failed login attempts contribute to alert fatigue,” the report reads.

False positives are a big problem. 62% of alerts are false positives. This shows that there is a need for automation. It is difficult for 98% of respondents to develop the skills needed to handle cyberthreats. This emphasizes the need for improving skills, especially in automation, multi-tasking, and critical thinking.

Check Also

CYFIRMA

FinStealer Malware Targets Indian Bank’s Mobile Users, Stealing Credentials

CYFIRMA analysis reveals a sophisticated malware campaign that exploits a major Indian bank’s brand through …

Leave a Reply

Your email address will not be published. Required fields are marked *