Palo Alto Networks Survey: Less disruptive cyberattacks in Thailand compared to ASEAN

 

• Within the businesses that were confident  to track any cybersecurity breach 22% claim the number of disruptive attacks has increased by more than 50% - the lowest in Asean

• Top cybersecurity challenges faced by Thai organisations are increasing in risk of unsecured IoT devices (54%), need to procure a wider array of cybersecurity solutions (47%), and third party digital transactions (47%)
• 43% of organisations in Thailand are adjusting their cybersecurity strategy to secure their IoT/OT

 

Following a media briefing, Palo Alto Networks (NASDAQ: PANW), the global cybersecurity leader, unveiled the 2023 State of cybersecurity ASEAN report.  The study found that Thailand experienced the least number of disruptive attacks in Southeast Asia in the past year, with 22% of organisations experiencing a 50% or more increase in incidents. Securing operations technology (OT), especially for critical infrastructures, remains a top concern as essential services have seen higher disruptive attacks compared to other sectors.

 

Top cybersecurity concerns

 

The types of attacks Thai organisations are most concerned with are malware (57%), account takeover (57%), and password attacks (53%). With the increasing reliance on cloud-based services and applications, local businesses cited that they are most challenged in cybersecurity due to increasing = risk of unsecured IoT devices (54%), need to procure a wider array of cybersecurity solutions (47%), and third party digital transactions (47%).

 

However, compared to other countries across ASEAN, Thailand is lower in terms of cybersecurity risk exposure and has more upskilling. Only 37% of organisations in Thailand perceive a high or very high  risk of cyber threats, the lowest across ASEAN. Within the businesses that were confident  to track any cybersecurity breach 22% claim the number of disruptive attacks has increased by more than 50%.

 

Across ASEAN, confidence in security measures is reflected across industry sectors in the region. However, it is particularly apparent in the Services (Banking and Financial) as well as Transport and Logistics sectors.

 

Meanwhile, overall confidence is relatively high at  87%. Thailand is the leader in terms of basic cybersecurity skills with 78% of businesses providing formal training to their employees.

 

Cybersecurity also continues to be a top priority for businesses in Thailand. Similar to last year, 38% of local organisations shared that cybersecurity is discussed at a board level monthly. Furthermore, 49% of Thai businesses have increased their cybersecurity budget due to optimising operations (54%), new or changing regulations that require data privacy laws (44%), increasing digitization (37%) and changing threat landscape (37%)

 

“The confidence in their security measures indicates that businesses have and are continuing to build resilience against evolving cyber attacks. Thailand has a lower number of disruptive attacks, which correlates to a lower increase of cybersecurity budgets. Organisations in Thailand have come a long way in incidence response and the results of the investments are evident. However, cybersecurity still needs to be at the top of the minds of management, as threat actors continue to evolve in their tactics and sophistication,” said Dr. Tatchapol Poshyanond, Country Director, Thailand and Indochina, Palo Alto Networks.

 

Cybersecurity strategies

 

The top three key cybersecurity strategies being considered in Thailand include Securing IoT/OT (43%), Revamping Threat Detection and Correlation systems/platform (40%), Identity and access management (38%) and Security orchestration, automation, and response (SOAR) strategy for the SOC  (38%)

 

AI integration is the top technology businesses are adopting soon, both across SEA and specifically in Thailand (56%). Telco/Tech/Communications businesses are most interested in AI adoption across the region and is expected to grow at a faster pace in the coming years.

 

“Attack surfaces continue to expand with digital transformation. This is particularly apparent in industries such as the Banking and Financial sector, for which digital transformation is always expected, and competition is fierce.  Organisations in Thailand, including those in the Banking and Financial industry, need to build robust IT infrastructure in order to ensure their readiness to tackle various security vulnerabilities,”  said Dr Tatchapol.