ASEAN Cyberattacks Doubled in 2024 — Manufacturing, Government and Finance Were the Targets

The Facts

Positive Technologies' analysis of cyberthreats across the ASEAN region for 2023 and 2024 produced a finding that has reframed how the region's security community thinks about the attack trajectory: ASEAN didn't just experience more attacks in 2024 — it experienced twice as many as the year before. And 67% of all attacks recorded across the entire two-year analysis period occurred in that single year.

The six most targeted nations — Vietnam, Thailand, the Philippines, Singapore, Indonesia, and Malaysia — reflect the region's digital economy leaders rather than its most vulnerable markets. The attack targeting follows value concentration: where digital economic activity, government data centralisation, and manufacturing supply chain integration are highest, attack frequency is highest.

Sector analysis showed manufacturing as the top target, followed by government institutions and financial services. The manufacturing targeting has a specific logic: ASEAN manufacturing operations are deeply integrated into global supply chains, making compromised Malaysian, Thai, or Indonesian manufacturers potential entry points into Japanese, South Korean, or European corporate networks.

The data theft profile — 34% personal data, 26% trade secrets — reveals attackers' commercial motivations. Personal data feeds the identity theft and fraud ecosystem. Trade secrets feed industrial espionage and competitive intelligence operations that are harder to prosecute but equally damaging to victims.

Technical Deep-Dive

The doubling of attack frequency in a single year is not explained by a single cause. Positive Technologies' analysis identified several contributing factors: the mainstream availability of AI-powered attack tooling (reducing attacker skill requirements), the expansion of attack-as-a-service platforms enabling lower-sophistication actors to launch sophisticated attacks, the expansion of ASEAN organisations' digital attack surfaces through cloud adoption and remote work infrastructure, and the increasing geopolitical tensions across the region that have motivated state-aligned threat actors.

Generative AI has specifically been documented in phishing generation — AI-crafted messages that bypass pattern-based email security filters by generating unique text for each target, mimicking communication styles extracted from publicly available sources. Between 2022 and 2023, deepfake usage in Asia-Pacific surged 1,530%, with continued acceleration into 2024.

The 187-day average breach detection time across ASEAN means that organisations are typically operating with undetected intrusions for over six months. During this dwell time, attackers are conducting reconnaissance, exfiltrating data, and positioning for the eventual visible payload deployment — whether ransomware, destructive attack, or ongoing espionage.

The ASEAN Perspective

USD 3.2 million average breach cost at a 6% annual increase creates an unsustainable trajectory for ASEAN organisations that treat cybersecurity as an IT cost to be minimised rather than a business risk to be managed. For an Indonesian manufacturing company with USD 20-30 million in annual revenue, a single data breach cost equivalent to 10-15% of revenue is existential.

The ASEAN Regional CERT, the ASEAN Cybersecurity Cooperation Strategy, and national CERTs in each major ASEAN economy provide coordination infrastructure. The gap is not strategic frameworks — it is the last-mile implementation of practical security controls at the thousands of ASEAN enterprises that are active targets but lack the in-house security expertise to defend themselves.

RECATOOLS Verdict

The doubling of attacks in a single year is a forcing function. It is no longer reasonable for ASEAN boards and executives to treat cybersecurity as a specialist IT topic that doesn't require leadership attention. The Positive Technologies data transforms cybersecurity from an IT cost line to a business risk item that belongs in every ASEAN boardroom conversation.

Sources

• Positive Technologies ASEAN Cyberthreats Analysis 2023-2024
• Deloitte 2025 Cybersecurity Readiness Index: Thailand, Vietnam, Indonesia, Philippines, Malaysia, Singapore
• Speeda ASEAN Cybersecurity Demand Analysis 2025

FAQ

By how much did ASEAN cyberattacks increase in 2024? Attacks doubled compared to 2023, with 67% of all incidents from the 2023-2024 analysis period occurring in 2024 alone.

Which sectors were most targeted? Manufacturing (first), government institutions (second), and financial services (third) — the three sectors that combine high data value with significant supply chain and critical infrastructure importance.

What data do attackers most commonly steal? Personal data (34% of incidents) and trade secrets (26%), reflecting both the commercial fraud market and industrial espionage motivations.

What is the average ASEAN data breach cost? USD 3.2 million in 2024, a 6% increase from 2023, according to IBM and Deloitte cost analysis.

Why is manufacturing targeted so heavily? ASEAN manufacturers are integrated into global supply chains — compromising a Malaysian electronics manufacturer can provide access to Japanese, South Korean, or European corporate networks downstream.