A recent Abnormal Security report found that the Asia-Pacific (APAC) region has faced a rise in email-based threats. The findings reveal a marked increase in advanced email attacks, including phishing and business email compromise (BEC), targeting organizations across Australia, New Zealand, Japan and Singapore between January 2023 and December 2024.
According to the data, between 2023 and 2024, the median monthly rate of advanced email attacks in the APAC region surged by 26.9%, climbing from 472 attacks per 1,000 mailboxes to 600. Notably, attack volumes increased quarter on quarter in 2024, with a 16% rise between Q1 and Q2 and a 20% escalation from Q2 to Q3.
Out of all advanced email attacks, phishing – often the entry point for larger, more sophisticated attacks – rose most significantly across the APAC region, with a 30.5% year-over-year increase in incidents. The impact varied regionally, with phishing attacks in Japan and Singapore spiking by 37%, while Australia and New Zealand experienced a slightly smaller but still significant 30% increase.
While phishing attacks dominated in volume, BEC attacks also grew by 6% year-over-year in the APAC region. Despite seeing a significantly lower growth rate as compared to phishing, the rising prevalence of BEC is notable. Known for their precision and high financial impact – with average losses exceeding $137,000 per successful attack, and global losses totaling $2.9 billion in 2023 – growing rates of BEC underscore a critical need for robust defenses.
Unlike phishing, BEC attacks rely on social engineering rather than technical exploits, often evading traditional security measures. This makes employees the last line of defense, emphasizing the need for advanced solutions that neutralize these threats in real-time.
https://www.securitymagazine.com/articles/101315-phishing-rose-305-year-over-year-in-apac-region