Kaspersky: Philippines ranked 4th worldwide with most number of web threats


In a global ranking where the lower a number means bigger problems for a country, the Philippines ranked 4th with the most number of web threats ranging from web attacks, remote desktop protocol (RDP) attacks, and mobile malware in 2021 according to Kaspersky. Data from the last five (05) years show that end-users in the country, and elsewhere in the globe, are facing an increasing number of web threats with some 14 million of these threats detected by Kaspersky products from their users in the Philippines for the first half of 2022 alone.

According to Kaspersky, the unique cybersecurity landscape of the Philippines, and how it is dealing with cyberattacks are signs that the country is now in the intermediate stage of cybersecurity readiness. Intermediate-level countries are those that have identified cyberattacks as areas they need to look into and have attempted to make some inroads. The goal is to have the country move to the Advanced stage where we hope to see it doing more in terms of development,

“Looking at the Philippines’ unique cybersecurity landscape and how it is dealing with cyberattacks, it appears that the country is now in the intermediate stage of cybersecurity readiness. Intermediate-level countries are those that have identified cyberattacks as areas they need to look into and have attempted to make some inroads. The goal is to have the country move to the Advanced stage where we hope to see it doing more in terms of development,” according to Genie Gan, Head of Public Affairs and Government Relations for Asia Pacific & Middle East, Turkey and Africa at Kaspersky during an in-person media briefing in Makati City held last 06 July 2022 — a Philippine first for the multinational cybersecurity company since the onset of the ongoing pandemic.

Kaspersky Security Network (KSN) data show that web threat attempts against Filipino users of Kaspersky software grew 432.75% from 9,487,775 in 2017 to 50,544,908 in 2021. With the pandemic-borne shift towards remote working, the overall RDP attacks versus local businesses rose by 141% from 2019 (2,549,698) to 2021 (6,150,891). RDP enables computers running Windows on the same corporate network to be linked together and accessed remotely, even when employees are at home.

Mobile malware attacks may have dropped sharply in the Philippines from 2019 to 2021 by 69% but according to Kaspersky, there are indications that Trojans are injected into third-party ad modules and new Trojans are being discovered — proof that cybercriminals have become creative and sophisticated in their approach.

Executives from Kaspersky urge the Philippine government to collaborate with its neighbors and private companies to further build its cyber-resiliency even though some legal policies and regulatory frameworks on cybersecurity may already be in place, gave the following recommendations:

  1. Continuous promotion of security awareness and digital education for its more than 76 million users;
  2. Growing its pool of cybersecurity talents;
  3. Public-private partnerships;
  4. Regional and international cooperation between countries and industries.

Gan added that while the cybersecurity landscape in the Philippines is distinct from the rest of SEA, it is still interconnected with its regional neighbors in so many ways, “This is why we encourage the government regulators to begin boosting its cyber capacity-building and cooperation efforts. These two are basically the building blocks of cybersecurity.”

Based on Kaspersky’s experience, an effective formula includes constant improvement of security awareness, to include engagement with the wider cybersecurity community and stakeholders including cybersecurity providers to validate and verify the trustworthiness of their products, internal processes and businesses — an important pillar held by Kaspersky and implemented within the overall framework of its pioneering Global Transparency Initiative (GTI).

One of the GTI’s cornerstones included the opening of a network of Transparency Centers in Zurich (Switzerland), Madrid (Spain), Kuala Lumpur (Malaysia), São Paulo (Brazil), Singapore, Tokyo (Japan), and Woburn, Massachusetts (the United States). This global network of Transparency Centers serves as facilities for trusted partners and government stakeholders, responsible for cybersecurity, to review the company’s code, software updates, and threat detection rules. The Transparency Centers are fully operational and available for on-site (physical) and remote access.

With guidance from the company experts, visitors at the Transparency Center can conduct transparency review sessions in three different modes:

  • Blue Piste — an overview of Kaspersky’s security and transparency best practices and product portfolio.
  • Red Piste — a review of the most critical parts of Kaspersky’s source code by a client or regulatory stakeholder.
  • Black Piste — the deepest and most comprehensive review of the most critical parts of Kaspersky’s source code.

The GTI also paved the way for the creation of Kaspersky’s Cyber Capacity Building Program to help government organizations, academia, and companies around the world develop mechanisms and skills for security assessment of ICT products they use. Requesting access is as easy as sending an email to [email protected].

Kaspersky also advised that countries like the Philippines continually promote skills training and enhanced collaboration to support incident response capabilities and ensure the safety and well-being of their citizens.

“Cyber threats are here to stay as it is parallel with the digitalization drive in the Philippines. A latest study even projected a five trillion peso digital economy in 2030, a huge opportunity that will be realized best if digitalization efforts are built upon trusted and transparent cybersecurity foundations. Organizations, industries, and governments will always be lucrative targets for cybercriminals but through collaborative multi-stakeholder efforts, we can explore strategies and expand our cybersecurity implementation as we enhance our confidence and trust in technology. When a country achieves cyber-resiliency, the digital future no longer becomes a scary unknown realm but a place with endless opportunities for growth,” said Yeo Siang Tiong, General Manager for Southeast Asia at Kaspersky.