Connect with us

Tech & Innovation

Brace for more phishing, scams, data breaches, APT attacks in APAC 2024 – Kaspersky

Global cybersecurity company reveals that, in particular, the dangers of phishing, scams, data breaches, and geo politically-motivated cyberattacks are seen to continue targeting organizations and individuals from the region.

Published

on

Driven by the Asia Pacific’s (APAC) rapid digitalization movement and known geopolitical frictions, experts at Kaspersky predict the upcoming cybersecurity threat landscape in the region this year.

Global cybersecurity company reveals that, in particular, the dangers of phishing, scams, data breaches, and geo politically-motivated cyberattacks are seen to continue targeting organizations and individuals from the region.

“Asia Pacific’s digital economy continues to grow exponentially and is expected to keep its momentum in the next five years. With digitalization efforts including adoption of technologies like digital payments, Super Apps, IoT, smart cities, and now generative Artificial Intelligence (AI), cybersecurity will be key to ensuring the resilience of the region’s overall defenses against potentially damaging cyberattacks,” says Vitaly Kamluk, Head of Research Center for Asia Pacific, Global Research and Analysis Team (GReAT) at Kaspersky.

“When it comes to sophisticated Advanced Persistent Threats (APTs), we have seen that cyber espionage remains to be the main objective of Asian groups. We expect this trend to continue in 2024 due to the existing geopolitical tensions in the region,” Kamluk adds.

Kaspersky’s GReAT researchers have also specified the key cyberthreat predictions in 2024 for the key countries and territories in APAC.

South East Asia (Singapore, Philippines, Thailand, Vietnam, Malaysia, Indonesia)

The scale of scam in Southeast Asia

According to a report by the UN, hundreds of thousands of people from Southeast Asia (SEA) were recruited to join online-scam operations such as romance-investment scams, crypto fraud, money laundering and illegal gambling. Recruitment to these criminal operations are mostly done via advertised professional roles such as programmers, marketers or human resource specialists, through what appear to be legitimate and even elaborate procedures. 

Increased usage and trust in digital payment methods, lack of regulations protecting the rights of users online and large numbers of people forced into joining online-scam operations add complexity to this major issue in SEA and in resolving it.

“Law enforcement is working on many of those cases, involving scam and phishing attacks and we have seen successful operations in 2023, such as a joint operation of Australian Federal Police (AFP), and United States Federal Bureau of Investigation (FBI) and Malaysian Police which led to the arrest of 8 individuals behind a syndicate running a phishing-as-a-service campaign online,” says Kamluk.

“Nevertheless, we think that the scale of online scam and phishing attacks in Southeast Asia will only continue growing in the coming years due to technical and legal illiteracy of many people involved in such attacks from operators to victims,” he adds.

Singapore

Major technology safety and security highlights in Singapore in 2023 were related to data breaches and outages.

Financial service outages

In October 2023, DBS, one of the largest Singapore banks, experienced an operational failure due to datacenter outage, which resulted in 2.5 million failed transactions. Although, the reason for failure was not to be associated with a cyberattack at the time, given a prior history of outages, it will have implications on the bank’s strategies and priorities among which shall be increased reliability and safety of the services. As reported by the media, Citibank operations were also affected. While we embrace attention to improving the reliability and security of the infrastructure, it’s still the time of changes, which always opens a window of opportunities for the attackers.

DDoS attacks

Another highlight was related to web service outages of several public hospitals and polyclinics due to a distributed denial-of-service (DDoS) attack: the attackers flooded servers with internet traffic to prevent users from accessing online services. The disruption did not result in a compromise of data or internal networks according to publicly known information. This incident tells us that while the websites demonstrated resilience against potential compromises, they were unfortunately unprepared to a DDoS attack. 

Website defacements

A number of Singapore websites suffered from politically motivated defacement attacks in late 2023. Those attacks affected a historical temple website, a retirement info website, a tourism agency and other businesses located in Singapore.

“The bottom line is that the trend for future attacks in Singapore will likely be related to denial of service attacks, politically motivated compromises, defacements, and data leaks. Targeted ransomware threat is still real too, but will adopt the newest trend of pressuring the victim through regulator complaints,” explains Kamluk.

South Korea

Prominent political event and cybersecurity threats

In the upcoming year of 2024, South Korea is poised to hold a significant general election. Historically, major political events such as this have consistently attracted the attention of threat actors, who view them as prime opportunities for launching direct cyberattacks with the intent of disrupting the political proceedings. Furthermore, these threat actors often employ sophisticated social engineering techniques to achieve their goals. Thus, it is our firm belief that this impending major event will serve as a catalyst, intensifying the frequency and complexity of cyberattacks.

Customized Cyber Threats Targeting the Local IT Environment

Over the past several years, alleged state-sponsored threat actors have systematically infiltrated numerous entities within South Korea, employing widely adopted software solutions that are integral to the country’s IT infrastructure. These adversaries adeptly exploited vulnerabilities specific to the local, well-known software and IT ecosystem, thereby facilitating the successful dissemination of their malicious software to their unsuspecting targets. This nefarious activity wreaked havoc across various industries, causing extensive damage.

“As we look ahead to the year 2024, it is evident that these customized threats, meticulously tailored to exploit South Korea’s unique software landscape and IT environment, are poised to persist and pose an ongoing challenge,” adds Kamluk.

China

Telecom fraud activity will decrease, but phishing attacks may increase

In the past year, the Chinese government has been trying to find ways and even seek international cooperation to combat telecom fraud. In this high-pressure environment, the telecom fraud groups, known to be located in northern Myanmar, may soon collapse. 

However, Kaspersky researchers still have seen a wave of phishing attacks from unidentified groups over the past year launching frantic QR code phishing attacks on Chinese citizens, targeting personal credit card information. This group’s operations do not appear to be affected by the situation in northern Myanmar, and based on Kaspersky statistics and observed behavioral patterns, attacks may peak again at the end of the year and early next year. 

APT attacks on high profile targets will become increasingly active

Earlier this year, Chinese authorities reported cyberattacks on various national institutions and organizations. The CVERC reported isolating a spyware artifact named “Second Date”. This advanced cyber-espionage tool can fully control targeted network devices and enable prolonged data theft.

Targets that were compromised include a university developing military-industrial projects and government departments that maintain basic geographic data. In addition, Kaspersky have also noticed that some long-term active APT organizations have launched APT attacks against Chinese nuclear energy companies and unknown targets. 

Given China’s geopolitical prominence, Kaspersky experts expect that the number of APT attacks targeting the country will only increase in the future.

India

India has been traditionally suffering from a number of low skill but high scale scam and fraud cases. Typical threats include the following:

  • Illegal or fake digital loan apps
  • Income tax refund services
  • Real estate fraud
  • Investment scam
  • Ponzi schemes online
  • Job fraud
  • Sextortion

“The rise of technologies and digitalization of the Indian economy, such as increased use of the sophisticated Unified Payments Interface (UPI), the software from the National Payments Corporation of India, will lead to a wave of related scams. Another opportunity for scammers is the ever-rising popularity of cryptocurrencies, which may lead to a new generation of scam apps,” explains Kamluk.

Also, a growing popularity of micro-loan apps has resulted in new schemes to target users in India through unexpected inflated premiums and personal threats. 

In addition, with India’s move towards smart cities, IoT vulnerabilities pose serious security challenges for the country. 

For organizations in APAC, Kaspersky shares the tips below to keep safe from these upcoming threats in 2024:

  • Always keep software updated on all the devices you use to prevent attackers from infiltrating your network by exploiting vulnerabilities. 
  • Establish the practice of using strong passwords to access corporate services. Use multi-factor authentication for access to remote services.
  • Choose a proven endpoint security solution such as Kaspersky Endpoint Security for Business that is equipped with behavior-based detection and anomaly control capabilities for effective protection against known and unknown threats. 
  • Use a dedicated set for effective endpoint protection, threat detection and response products to timely detect and remediate even new and evasive threats. Kaspersky Optimum Security the essential set of endpoint protection empowered with EDR and MDR.
  • Use the latest Threat Intelligence information to stay aware of actual TTPs used by threat actors.

BizNews

Should celebrities and influencers turn off their social media comments? Study suggests they are less persuasive, likable when they do

Celebrities and influencers like Addison Rae, Hailey Bieber, Justin Timberlake, and even Oprah have, on various occasions, disabled access to their social media comments in response to negative sentiment. Is this misguided?

Published

on

Researchers from University of Alabama and Vanderbilt University published a new Journal of Marketing study that examines the negative consequences that celebrities and influences incur when they disable social media comments.

The study, forthcoming in the Journal of Marketing, is titled “No Comments (From You): Understanding the Interpersonal and Professional Consequences of Disabling Social Media Comments” and is authored by Michelle Daniels and Freeman Wu.

Celebrities and influencers like Addison Rae, Hailey Bieber, Justin Timberlake, and even Oprah have, on various occasions, disabled access to their social media comments in response to negative sentiment. Is this misguided?

The answer is yes, according to new research published in the Journal of Marketing. The study finds that influencers who disable social media comments are less persuasive and less likable than those who do not, even when the displayed comments are mostly negative in their content.

Celebrities and influencers are more than just public figures in today’s digital age. They often serve as a bridge connecting brands and consumers by integrating their personal narratives into sponsored brand content. Despite their popularity, influencers receive plenty of criticism and they often disable comments on social media as a first line of defense against negative feedback. However, this behavior can negatively impact how consumers judge influencers and respond to their promotional content.

Online influencers have the ability to interact with their followers in a relatively intimate and informal manner, which makes them seem sincere and approachable. Such positive assessments are often a product of how influencers engage with their viewers or followers, including directly addressing them in their posts and treating them more as friends than as consumers. While these behaviors can dramatically increase consumer engagement, this level of approachability can also come at a cost.

As consumers become accustomed to influencers’ accessibility, they may feel emboldened to share feedback that is critical. The constant stream of followers’ feedback can be overwhelming and even detrimental to influencers’ mental health. As a result, many influencers have chosen to turn off their comment sections at various points, likely to avoid unwanted feedback. This research reveals the negative downstream consequences of this seemingly well-intentioned behavior.

The Cost of Disengagement

As Daniels explains, “we discover that when influencers disable comments, they are perceived as less receptive to consumer feedback, or what we term ‘consumer voice.’ Consequently, they are judged as less sincere and ultimately incur both interpersonal and professional consequences. In other words, disabling comments can undermine a key influencer asset, their perceived receptiveness to consumer voice and their ability to connect and engage with their followers.”

In fact, turning off comments is more costly for an influencer’s reputation than leaving them on, even when the displayed comments are mostly negative in nature, like those you might find flooding an apology post. This effect occurs because influencers who leave their comments enabled appear to be interested in hearing from the public and learning from their actions while those who turn them off signal their dismissiveness of others’ opinions.

Under certain situations, consumers understand an influencer’s decision to disable comments. If, for example, an influencer is perceived as taking reasonable measures to protect themselves during times of emotional turmoil and distress (e.g., grief and mental health struggles), the backlash against disabling comments is weakened. “However, it is critical to note that it is consumers, rather than the influencers, who decide what are considered reasonable forms of self-protection,” says Wu. So, while consumers might empathize with an influencer’s decision to disable comments if their beloved pet had recently died, they may be less empathetic to influencers who disable comments to avoid negative feedback after apologizing for a transgression.

Lessons for Influencers and Brands

These findings highlight the importance of understanding the delicate balance between establishing personal boundaries and managing audience expectations. While it is necessary for influencers to protect their mental health, how they decide to communicate this desire and manage their social media interactions play a significant role in shaping relationships with their viewership.

Global spending on influencer marketing campaigns reached $34.1 billion in 2023 and is projected to surpass $47.8 billion by the end of 2027. Therefore, seemingly innocuous online activities could have important professional ramifications for influencers’ brand partnerships. The decision to disable social media comments can reduce influencer persuasiveness, which emphasizes the importance of ensuring communication between brands and influencers to optimize their strategic partnerships. The study encourages thoughtful consideration of how best to manage one’s online interactions and highlights the need to clearly communicate a legitimate reason for disabling comments to avoid sending the wrong signals to viewers.

Continue Reading

BizNews

PLDT Global and DMW boosts biz of online rice cake vendor

 PLDT Global’s partnership with the DMW to help ensure the well-being of OFWs and their families is a fundamental part of the much broader PLDT commitment to serve and lift the quality of life of Filipinos everywhere.

Published

on

By

For 37-year-old Caviteña Annalyn Fernan, selling suman (rice cake) and other native delicacies online is her lifeline and way forward. The beneficiary of an overseas Filipino worker in Saudi Arabia who passed away last year, Fernan now has the sole responsibility of earning to support the needs of her family.

During the pandemic, Fernan’s senior mother thought of starting their suman business, which continues to do well even today. To boost their sales, Fernan uses her phone and the internet to market their products on social media and receive more orders online.

 “We get orders from our community, and we even receive orders from other OFWs overseas who see my posts online,” she shared. “That’s why having a reliable internet connection is important to me.”

 A mother of two, Fernan also devotes her time to growing her loading and bills payment business, which was part of the OFW Family Livelihood Program jointly awarded by the Department of Migrant Workers (DMW) and PLDT Global Corporation (PLDT Global) earlier this year. The livelihood program also awarded Fernan a Smart Ka-Partner retailer package, including a smartphone and marketing materials and signages to help her increase her sales.

“The money I earn from the business helps us in our daily needs, that’s why I’m grateful,” she said. “To PLDT Global, I am thankful that they are partners with the DMW and they are able to help make our lives easier.”

Fernan was also visited by the DMW and PLDT Global, led by DMW Assistant Secretary for Reintegration Venecio V. Legaspi (third from the right) and PLDT Global Vice President for Strategic Partnerships Jojo Quiamas (third from the left), deeply moving the entrepreneur.

 She also expressed her thanks to the DMW. “They stayed with us until the very end. In fact, they are still here to assist, support, and visit us. I hope they will be able to help more OFW families like us,” Fernan shared emotionally.

 “This is a testament to our commitment to helping not only OFWs, but their families as well by supporting and empowering them through various programs with our partners like PLDT Global,” said DMW Secretary Hans Cacdac.  

 Aside from the livelihood program, PLDT Global also held digital literacy programs for OFWs. Just last year, with the help of the PLDT-Smart Foundation and other partners in the organization, PLDT Global provided upskilling grants, gadgets, and training for cacao farming to reintegrated OFWs. They also gave LearnSmart kits to the children of an OFW in Qatar.

 “We hope that through the unified efforts of PLDT Global and the DMW we can continue to uplift the lives of Filipinos and help them realize their fullest potential,” said Albert V. Villa-Real, President and CEO at PLDT Global.

PLDT Global continues to bridge the digital gap by bringing digital services to Filipinos around the world through products and services, particularly through TINBO — the one-stop marketplace that enables Filipinos living overseas to buy load, pay bills, send food vouchers, e-gifts, healthcare PINs from mWell, and even gaming PINs for their families in the Philippines. Through TINBO, OFWs can also acquire a Smart virtual number (SVN), enabling them to receive important OTPs from their e-wallets and e-banks in the Philippines. TINBO also provides overseas Filipinos access to a convenient and secured online bills payment platform for their Philippine utilities, and other digital services while outside the Philippines.

 PLDT Global’s partnership with the DMW to help ensure the well-being of OFWs and their families is a fundamental part of the much broader PLDT commitment to serve and lift the quality of life of Filipinos everywhere.

Continue Reading

BizNews

Smartphones negatively impact charitable giving, revealing need for nonprofits to adapt messaging

Donating requires people to focus on and empathize with others, but that can be sabotaged by smartphones inducing self-focus.

Published

on

Charities seeking opportunities for growth have experienced a recent surge in online giving, growing by 42 percent since 2019, according to the most recent Charitable Giving Report from the Blackbaud Institute.

Mobile giving, in particular, has gained popularity, with 28 percent of all online contributions coming from smartphones in 2021 — a percentage that has more than tripled since 2014.

Not all online giving is equal, however. New research from the University of Notre Dame reveals a “mobile giving gap,” which demonstrates that consumers are less likely to donate to charities when using smartphones than when using PCs.

The mobile giving gap: The negative impact of smartphones on donation behavior,” recently published online by the Journal of Consumer Psychology, was authored by Kristen Ferguson, assistant professor of marketing at Notre Dame’s Mendoza College of Business, along with Stefan Hock and Kelly Herd from the University of Connecticut.

Charities have long recognized the benefits of appealing to consumers in a variety of ways, including door-to-door, direct mailers, personal phone calls and, more recently, through virtual reality. Because of the major differences in these methods, charities often adapt their appeals to align with the solicitation style.

The study shows the need to further fine-tune their strategies.

“Although charities are willing to adapt their appeals to these different channels, they have not yet recognized the importance of adapting their online appeals across device types,” Ferguson said.

Organizations typically use identical appeals across device types, according to a review of the donation pages of the Forbes Top 100 Charities.

Previous research identified a “mobile mindset,” recognizing that consumers process information and behave differently on their smartphones than when on their laptops or desktop computers.

This study looks more closely at this phenomenon, in part through a collaboration with German charity Aktion Deutschland Hilft, an alliance of German humanitarian aid agencies.

“Our research describes critical attributes of a mobile mindset, in which consumers are more self-focused and less ‘other-focused’ on their smartphones than on their PCs,” Ferguson said. “This is because they constantly have their smartphones with them and view the devices as a part of the self, so are more likely to think about themselves rather than others when using them.”

Donating requires people to focus on and empathize with others, but that can be sabotaged by smartphones inducing self-focus.

“Charities would be best served by working to induce other-focus for smartphone users,” Ferguson said. “Specifically, those appeals would highlight the fact that the main beneficiary of support is another individual or group.”

An ad highlighting others may specify that the donor can “help those less fortunate,” “help make the community a better place for everyone” or “imagine how your donation will enhance the lives of those affected by cancer.”

“When donation appeals explicitly highlight the needs of others, people using smartphones will become less focused on their own and more conscious of others’ needs, which will dissipate the mobile giving gap,” Ferguson said.

Companies, including many nonprofits, spend more than $224 billion annually on Google Ads, according to Statista. In fact, highlighting the value of this platform for nonprofits, Google Ads offers eligible nonprofits $120,000 of free Google ads per year. Since 2003, the Google Ads Grants program has provided $10 billion in free advertising to more than 115,000 nonprofits across 51 countries, according to Nonprofits Source.

Charities can better leverage this opportunity by developing ads that directly target consumers on either smartphones or PCs.

Although mobile giving may appear to be on the rise, the uptick is likely driven by increases in overall smartphone ownership, the researchers said. This study suggests charities are leaving money on the table by using a one-size-fits-all strategy for all forms of online giving.

“Charities see value in measuring mobile giving as a separate category of online giving, but they still don’t see the importance of adapting their donation appeals across device types,” Ferguson said. “Our work shows why and how to change that.”

Continue Reading
Advertisement
Advertisement

Like us on Facebook

Trending