omniture

Viettel Cyber Security Unmasked Philippine Cyber Risks: Over 315,000 Compromised Credentials in the First Six Months of 2024

Viettel Cyber Security
2024-08-05 10:50 1794

MANILA, Philippines, Aug. 4, 2024 /PRNewswire/ -- In just the first two quarters of 2024, Viettel Threat Intelligence Center, under Viettel Cyber Security, has released a report revealing several emerging cyber threats in the Philippines, affecting individuals and organizations, especially within the government sector. 


315,000 compromised credentials, 17,456 phishing attacks, and numerous vulnerabilities are just some of the alarming statistics about the Philippines' cybersecurity landscape in the first half of 2024 that organizations can not ignore.

Surprisingly, despite the alarming level of danger, many companies remain confident in their ability to stay resilient amidst this evolving cybersecurity landscape. This confidence highlights a gap, suggesting that companies may have misplaced trust in their ability to navigate the threat landscape and are not properly assessing the true scale of the challenges they face.

It's time to confront the problem directly, understand the information security challenges businesses are facing, and prepare effective response plans. All needed information can be found in our report.

Data Breaches are increasing at an alarming rate, especially in the government and education sectors.

Viettel Threat Intelligence recorded over 315,000 compromised credentials in the Philippines in the first half of 2024. The rise of Stealer-as-a-service (SaaS) and Stealer Malware groups have contributed significantly to the increase of compromised credentials. 

Numerous incidents involving the leak of privileged credentials for critical and sensitive systems, such as email systems, single sign-on (SSO) management systems, Active Directory (AD) systems, and internal access VPNs, have raised serious concerns. If this information falls into the wrong hands, it could be used for malicious purposes, such as disrupting operations, stealing sensitive data, or conducting cyberattacks.

In the first half of 2024 witnessed a surge in data breaches and selling on darkweb in the Philippines cyberspace. 

The amount of data breaches has reached over 660 million records, more than 1TB of data and nearly 150GB of KYC data. These are alarming figures regarding the situation of data breaches in the Philippines.

The number of cases of data breaches and selling on dark web is showing an increasing trend, especially in March with 15 incidents:

The government sector has experienced the highest number of data breach incidents, accounting for 26.1% of the total, followed by the education sector with 17.4%. Retail and service businesses have also become targets of attack groups, accounting for a total of 10.9%.

Viettel Threat Intelligence also identified a scenario of attacking virtualized infrastructure, where the attacker gains access to the internal network, escalates privileges, takes control of the vCenter management system, encrypts the entire system, and demands ransom.

Despite ongoing efforts by the Department of Information and Communications Technology (DICT) and various organizations to enhance cybersecurity awareness in the Philippines, many entities continue to struggle. To effectively navigate this high-stakes, complex environment, organizations must stay ahead to ensure robust cybersecurity resilience.

Download the report to get all the information you need about the Philippines' cybersecurity landscape in the first half of 2024 and contact us for support whenever you need.

Download Here

Disclaimer

This report serves the sole purpose of sharing technical information with the information security community and business organizations to raise awareness about information security and to help prevent issues related to network information security risks. Any other allegations regarding the content of this report are not in line with our publishing purpose. The report uses some information gathered during the service provision for customers of Viettel Cyber Security (VCS).

About Us

Viettel Cyber Security is a branch of Viettel Group, conducting in-depth research and development of information security solutions, providing a wide range of cybersecurity services and products to protect your digital assets.

  • Over 150 experts with high international quality certifications: CISSP, CCSP, CHFI, CEH, and more.
  • Outstanding awards in cybersecurity: Crest, PCI DSS, ISO 27001, Cyber Security Excellence, Global Infosec Award.
  • Two consecutive years winning awards at Cyber Defense Magazine Global Infosec Awards, achieving "Best Product" for Managed Security Service 2024.
  • Monitoring network security for customer systems in 12 countries around the world.

Website: https://viettelcybersecurity.com/

Email: vcs.sales@viettel.com.vn 

Find additional information about the report here

Source: Viettel Cyber Security
collection