The Philippines’ global ranking for local threats rose from 76th to 66th, highlighting the need for stronger cybersecurity measures, according to global cybersecurity and digital privacy company Kaspersky.
The latest Kaspersky Security Network (KSN) showed that the Philippines recorded 17,706,118 local threat incidents, affecting 36.8% of users. This translates to an average of approximately 48,500 local threats per day in 2024.
Local threats refer to malware transmitted through removable USB drives, external hard drives, and other offline methods. In 2023, Kaspersky detected 22,731,157 local threats, also affecting 36.8% of users, but ranking the country lower at 76th place worldwide.
Adrian Hia, Kaspersky’s Managing Director for Asia Pacific, said the rise in the Philippines’ global ranking for local threats is a reminder that cybersecurity is a continuous effort.
“While it’s encouraging to see fewer local infections, cybercriminals are constantly evolving, leveraging foreign servers and more advanced attack methods. This highlights the need for both organizations and individuals to remain proactive in strengthening their cybersecurity defenses,” Hia further said.
KSN data shows that worms and file viruses account for the majority of local attacks. It is seen that malware attacks happen via removable devices like USBs.
“In 2024, we found a new trend where a secure USB drive was compromised by a malicious code which was not only programmed to steal data, but acted as a USB worm infecting other USB drives. This proves that what we think of as a safe offline option to share data can also be compromised easily. To protect against such attacks, users not only need to deploy antivirus solutions but also have a firewall and control over their USB drives, CDs and DVDs,” he added.
While local infections have declined, cybercriminals are increasingly using servers from foreign locations to execute attacks. In 2024, the top sources were the Netherlands (39.52%), United States (26.15%), Germany (2.71%), France (2.61%), and Russia (1.74%).
As cybercriminals continue to evolve their tactics, Kaspersky emphasizes the importance of a multi-layered security approach, combining endpoint protection, threat intelligence, and proactive detection to defend against both local malware infections and attacks from international cybercriminal networks. To further enhance protection, individuals and businesses may also consider these additional security measures:
For Individuals:
- Regularly scan and secure removable devices (USBs, external drives) to prevent malware infections.
- Avoid connecting unknown or untrusted external storage devices to personal or work computers.
- Use Kaspersky Internet Security or Kaspersky Total Security to detect and block offline and online threats.
- Use strong cybersecurity solutions that offer real-time protection against phishing, malware, and ransomware.
For Organizations:
- Implement strict access controls for USB devices and external storage.
- Deploy Kaspersky Endpoint Security for Business to protect workstations from local and remote threats.
- Use Kaspersky Threat Intelligence Portal to stay updated on emerging attack patterns and threat sources.
- Ensure all software and systems are regularly updated to prevent attackers from exploiting vulnerabilities.
- Implement strong password policies and enable multi-factor authentication for remote access.
