Check Point Software Technologies Ltd. found that organizations in the Philippines have become prime targets for cyber attack over the last 6 months. On average, a single organization in the Philippines experiences 4,003 attacks per week, significantly higher than the APAC average of 2,870 attacks per week.
The manufacturing industry is particularly vulnerable, with an alarming average of 9,146 attacks per week per organization in Philippines, starkly contrasting with the APAC average of 2,632. The manufacturing sector is the second economic driver of the Philippines economy, contributing around 3.78 trillion pesos, and responsible for 17.9% of the country’s GDP. This significant economic contribution makes it an attractive target for cybercriminals seeking financial gain. Similarly, Philippines’ finance and banking sector also experienced higher cyber attacks compared to APAC, with an average of 2,968 per week per organisation compared to the APAC average of 2,170.
Among the vulnerabilities affecting organizations in the Philippines, information disclosure has the highest impact. This vulnerability, which affects 70% of Philippines’ organizations, exposes sensitive data such as usernames, passwords, and encryption keys making businesses particularly susceptible to exploitation.
Top Malware Threats in the Philippines
The report also highlights the top 5 malware threats plaguing the Philippines:
- Androxgh0st (12.7%) – A cross-platform botnet targeting Windows, Mac, and Linux systems, known for stealing sensitive credentials such as Twilio accounts and AWS keys.
- Lumma (11%) – An information-stealer operating as a Malware-as-a-Service (MaaS) since 2022, focusing on browser credentials and cryptocurrency account theft.
- Asyncrat (7.7%) – A Windows-targeting Trojan used for remote command execution and data theft.
- Floxif (7.3%) – An info-stealer/backdoor malware previously used in large-scale campaigns like the CCleaner compromise.
- Necro (6.3%) – An Android Trojan Dropper capable of downloading malware, displaying intrusive ads, and subscribing users to paid services.
The cyber security landscape in the Philippines is concerning, with organisations facing a significant number of cyberattacks. High profile cases such as the attempt to break into the President’s and Government’s email system in February 2024 and the more recent announcement in September 2024 by the Department of Foreign Affairs (DFA) of the Philippines on the alleged data breach at APO Production Unit, a government-owned and controlled corporation (GOCC) in charge of printing passports, may lead to potential long term consequences such as identity theft and fraud for 28 million passport holders, if their personal data lands in the wrong hands.
“Cyberattacks in the Philippines are escalating both in frequency and sophistication, placing immense pressure on organizations to stay ahead of evolving threats,” said Teong Eng Guan, Regional Director, Southeast Asia & Korea, at Check Point Software Technologies. “From targeted malware campaigns to AI-driven threats, the stakes are higher than ever. Organizations must adopt a proactive, AI-powered cyber security approach to defend against today’s threats and protect their critical data and systems effectively.”
The findings serve as a stark reminder that the cyber threat landscape is evolving rapidly, with malicious actors increasingly leveraging AI and automation to execute complex attacks. To combat this growing challenge, Check Point Software urges organizations in the Philippines to implement prevention-first, AI-driven cyber security strategies.
