FB899
lvbet Know the cyber threats Philippines will face in 2025
Updated:2025-01-15 06:15:53 Views:158

Philippine digitalization has been steadily progressinglvbet, but it will face powerful cyber threats as 2025 begins. 

In its report, Check Point External Risk Management (formerly Cyberint) detailed these risks in “The Philippine Threat Landscape 2024-2025.” 

READ: Shopping scam rate in PH is 36%, highest in 11 Asian countries

Article continues after this advertisement

Take a closer look at the challenges the Pearl of the Orient must surmount to shine in the age of AI.

FEATURED STORIES TECHNOLOGY DITO teams up with ZTE to boost Philippine internet connectivity TECHNOLOGY Smart glasses enter new era with sleeker designs, lower prices TECHNOLOGY TikTok shutdown in the US may take effect on January 19 1. Malware Free stock photo from Unsplash

Malware is the most prevalent cyber threat in the country.

Check Point explains malware infections usually originate from personal devices.

Article continues after this advertisement

Its business client’s employees typically use these devices for work-related activities, exposing corporate systems to more digital attackers. 

Article continues after this advertisement

The multinational software provider specified InfoStealers as one of the most destructive among malware types. 

Article continues after this advertisement

It has become a gateway for unauthorized access to vulnerable portals, facilitating data breaches. 

Also, during the COVID-19 pandemic, companies adopted work-from-home arrangements.

Article continues after this advertisement

This move helped personnel avoid the coronavirus but opened their businesses to Infostealer infections.

2. Social engineering Free stock photo from Unsplash

Check Point lists social engineering as one of the top cyber threats in the Philippines due to its effectiveness.

Cybersecurity firm Kaspersky defines it as “a manipulation technique that exploits human error to gain private information, access or valuables.” 

Nowadays, there are many types of social engineering attacks, but they typically follow this cycle:

Prepare by collecting information on a target individual or group. Infiltrate by establishing a relationship or interaction to build trust. Exploit the victim once the scammer establishes trust and weakness to advance their attack. Disengage once the scammer has completed their scheme.

Social engineering works because it takes advantage of human emotions and behaviors.

Consequently, its cyber threats often have the following forms:

Posing as a trusted brand, government agency or authority figure via phishing Inducing fear or a sense of urgency by telling victims they only have a few moments to grab an opportunity Appealing to greed by promising massive amounts of wealth Appealing to one’s helpfulness or curiosity by tricking generous individuals into clicking spoof links to send aid

Nowadays, artificial intelligence has made these cyber threats more effective.

Learn more about their latest iterations in this Inquirer Tech guide.

3. Phishing and smishing Free stock photo from Unsplash

Cybersecurity firm Cloudflare says phishing involves masquerading as a reputable source to steal sensitive information and funds. 

Smishing is a form of phishing that involves SMS or “texting.”

Check Point acknowledges the National Bureau of Investigation’s efforts in apprehending smishing scammers. 

READ: CICC partners with DLS-CSB to create an anti-smishing tool

The National Bureau of Investigation and Filipinos in general must remain vigilant due to these emerging tactics:

Device and geo-filtering: Recent phishing campaigns use these tactics to ensure they’re only accessible through Philippine IP addresses via mobile devices. Consequently, cybercriminals evade traditional security measures. Smishing via IMSI-Catcher Devices: IMSI-Catcher devices, a.k.a. cell-site simulators or “stingrays,” intercept mobile phone traffic. A recent phishing scheme took advantage of the All Saints’ and Souls’ Day holidays with these gadgets. 4. Social media impersonation Free stock photo from Unsplash

Cybercriminals create fake social media profiles to trick victims with fake promotions and services. 

The Philippines faces more such cyber threats as scammers shun traditional methods for more advanced ones.

Specifically, they can use AI to impersonate celebrities accurately.

For example, they can use an AI chatbot to mimic a singer’s writing style and use another to generate fake images. 

Fortunately, the latest AI scams have flaws you can detect to avoid them immediately.

Learn more about these techniques here.

Traders and analysts remain uncertain about how sharply the Fed will lower its benchmark lending rate from the current 23-year high of between 5.25 and 5.50 percent.

Wall Street had a tepid day, with many investors keeping their powder dry until the Fed’s decision and boss Jerome Powell’s post-meeting statement later Wednesday.

5. Supply chain attacks Free stock photo from Unsplash

Cybersecurity company CrowdStrike says supply chain attacks “target a trusted third-party vendor who offers services or software vital to the supply chain.” 

They can inject malicious code into an application or compromise physical components to infect all users. 

Also, supply chain attacks can be stepping stones to accessing larger trading partners.

For example, hackers accessed the US supermarket chain Target’s HVAC contractor to enter its systems.

Cyberint Supply Chain Intelligence identified eight third-party vendor breaches that affected Filipino clients in 2024.

Most of these attacks targeted the Finance and Energy sectors, causing data leaks from unsecured systems and credential exposures. 

6. Ransomware Free stock photo from Unsplash

Ransomware locks a computer’s files until a victim pays a huge sum to a hacker. 

The Check Point report says the Philippines experienced fewer ransomware attacks in 2024 compared to 2023. 

It attributes the decline to limited resources for local threat actors who rely on open-source tools. 

Moreover, ransomware campaigns prefer larger countries and organizations for higher payouts and prestige. 

Nevertheless, the Philippines must bolster its defenses against cyber threats as it ramps up digitalization.

The Philippine cybersecurity landscape Free stock photo from Unsplash

“The Philippine Threat Landscape 2024-2025” report breaks down the Filipino cyber attacks in 2024 via sector: 

Banking and financial services: 66% Media and entertainment: 11% Technology and IT: 8% Real estate: 6% Retail and consumer goods: 5% Healthcare: 2% Energy and Industrial: 1% Hospitality: 0.6% Shared services: 0.4%

Hackers and scammers purchase malicious tools and services from underground marketplaces.

In 2024, Cyberint recorded a 100% increase in underground marketplace activity on Telegram related to the Philippines. 

They have been purchasing the following illicit items to execute cyber threats in the country:

“FULLZ” or “Full Information” from phishing and other scams that support more malicious campaigns. Exploit Tools and Attackware like webshells, RDP and SSH tools for exploiting vulnerabilities Malware and Malware-as-a-Service, which typically have lower costs for aspiring cyber criminals. Email and SMS tools like bulk SMS services, email blasting tools and cPanel access bundled with phone numbers OTPs and e-SIMS Fake Documents for social engineering attacks, such as fake bank statements, invoices and IDs Money Laundering Services that facilitate hiding and transferring illicit funds via mule accounts, remittance accounts or digital wallets

In 2025, the Philippines will face more advanced versions of the cyber threats above. These include more sophisticated supply chain attacks and social engineering techniques.

online jackpot

Moreover, geopolitical tensions with China will likely increase state-sponsored attacks on the country. 

These powerful cyberattacks started early this year as the Office of the President experienced a digital breach. 

READ: How the Philippines defends against cyberattacks

The Philippines needs the latest tools to secure its digital future.

Your subscription could not be saved. Please try again. Your subscription has been successful.

Subscribe to our daily newsletter

SIGN ME UP

By providing an email address. I agree to the Terms of Use and acknowledge that I have read the Privacy Policy.

Protect yourselflvbet, your family and your company from cyberattacks by learning the best practices at Inquirer Tech.

TOPICS: technology READ NEXT Wadhwani Foundation boosts Pinoy school-to-work journey with AI NVIDIA Project DIGITS puts an AI supercomputer at your fingertips EDITORS' PICK Marcos extends sympathy to LA wildfire victims: Stay safe, vigilant Sinulog 2025: 305 vessels set to join Fluvial Procession Jericho Rosales is proud of rumored GF Janine Gutierrez and her work ethics PBA: Ginebra surges in 2nd half to shut down Blackwater 9⁰C-level temperature seen for Baguio, upland Luzon in February Moderate to intense rainfall alert up in areas in Luzon and Visayas MOST READ Greenhills Shopping Center stays on US watch list UAAP: Casiey Dongallo, Jelai Gajero leave UE, transfer to UP 'Pepsi Paloma' script handed by emissary to Vic Sotto's 'sibling who's a senator' Rep. Castro says INC rally a move to shield VP Sara Duterte Follow @FMangosingINQ on Twitter --> View comments
LINKS: