As the Philippines enters 2025, the rapid growth of its digital economy has made it a lucrative target for cybercriminals. Recent data from the Kaspersky Security Network (KSN) reveals that between October and December 2024, over 26.8 percent of Filipino users faced web-borne cyberattacks, placing the country 17th globally for web-related threats. These statistics underscore the urgent need for robust cybersecurity measures to protect businesses, individuals, and communities from evolving threats.
Adrian Hia, Kaspersky’s Managing Director for Asia Pacific, emphasized the urgency of strengthening the country’s defenses, particularly in light of a shortage of cybersecurity experts.
“This year is a chance for Filipinos to take charge of their online safety by building stronger defenses and staying one step ahead of cybercriminals. At the same time, we must focus on nurturing and developing local talent in cybersecurity to address this critical gap,” Hia further said.
According to a report from the Department of Information and Communications Technology (DICT), low salaries have discouraged cybersecurity professionals from joining the government, contributing to a nationwide shortage of experts needed to address growing cyber threats. The further noted that as of 2022, there are only 200 cybersecurity professionals in the Philippines compared to Singapore’s 2,000 experts.
During the fourth quarter of the year, web-borne attacks were primarily spread through methods such as exploiting browser vulnerabilities and employing sophisticated social engineering tactics. Kaspersky reports that file-less malware, which leaves no static trace on a victim’s device, is becoming increasingly prevalent.
At the same time, local threats—those spread through offline methods like USB drives—affected 19.3 percent of users in the Philippines, highlighting the dual challenge posed by both online and offline cyber threats.
Meanwhile, as the Philippines faces increasing cyber threats, Kaspersky recommends the following steps to strengthen cybersecurity:
For Enterprises:
- Keep software updated and promptly install patches to address vulnerabilities.
- Regularly back up critical data and ensure it’s accessible in emergencies.
- Avoid exposing remote desktop/management services to public networks without strong passwords, two-factor authentication, and firewall rules.
- Monitor network activity for unusual behavior and limit user access based on necessity.
- Establish a Security Operations Center (SOC) with tools like Kaspersky’s Unified Monitoring and Analysis Platform for real-time incident management.
- Educate employees with Kaspersky’s Automated Security Awareness Platform and upskill cybersecurity teams with advanced training.
For Consumers:
- Use strong, unique passwords and enable two-factor authentication for all accounts.
- Avoid clicking on suspicious links or sharing personal information unless the website is verified.
- Limit public Wi-Fi use or utilize a VPN for encrypted connections.
- Install a reliable security solution, such as Kaspersky Premium, to protect against phishing, fraud, and malware.
By adopting these measures, businesses and individuals can stay one step ahead of cybercriminals while fostering a safer digital environment.
By equipping individuals and organizations with knowledge and advanced tools, Kaspersky aims to foster a culture of cyber resilience in the Philippines.