Blackpanda, a leading digital forensics and cyber security firm in Asia, has released its first proprietary study analyzing cyber security vulnerabilities in SME companies in the Asia Pacific region. The study uses an in-house external attack surface management scan to identify top vulnerabilities, recommending swift resolution to prevent potential attacks by attackers.
The study identifies three major security threats: compromised assets, exposed web services, and known software vulnerabilities. Email breaches in the high-risk category, which constitute 71.68% of the total risk level, are the most extensive, posing a significant risk of information leakage and phishing attacks. Exposed web services, which make up 69.92% of high-risk issues, are vulnerable to web-based attacks, disrupting operations and compromising customer data. Known software vulnerabilities, accounting for 59.96% of system security issues, are a crucial focus area, requiring action to prevent data breaches.
Gene Yu, CEO of Blackpanda Group, commented, “The majority of the cyber incidents we encounter can be traced back to fundamental vulnerabilities that remain unpatched. Just as a burglar can easily enter through an unlocked door or opened window, cyber attackers exploit these open vulnerabilities to breach systems. As part of our commitment at Blackpanda, and through our Pandamatics Underwriting arm, we are not only focused on responding to these emergencies but also on significantly reducing the occurrence of such attacks across the entire market. This data isn’t just a collection of statistics; it’s a roadmap showing us where the industry needs to direct its attention and resources to fortify its defences effectively.”
The study identifies three major security threats: compromised assets, exposed web services, and known software vulnerabilities. Email breaches in the high-risk category, which constitute 71.68% of the total risk level, are the most extensive, posing a significant risk of information leakage and phishing attacks. Exposed web services, which make up 69.92% of high-risk issues, are vulnerable to web-based attacks, disrupting operations and compromising customer data. Known software vulnerabilities, accounting for 59.96% of system security issues, are a crucial focus area, requiring action to prevent data breaches.
Blackpanda’s comprehensive study not only maps out current vulnerabilities but also provides tailored recommendations for businesses to enhance their security architectures. By implementing the suggested strategies, companies and national agencies can significantly mitigate the risk of cyber attacks, protecting their data and operations against increasingly sophisticated threats.
“IR-1 equips our clients with robust tools and resources essential for both preventing and mitigating cyberattacks,” explains Evelyn del Monte, Blackpanda’s Managing Director for Philippines. “We are not resting on our laurels; rather, we have several significant upgrades scheduled for this year. Our subscribers can look forward to rolling out even more advanced, technology-driven solutions tailored to their needs.”
In the Philippines, Blackpanda’s channel network partners are: Exclusive Networks (EN), and iSecure Network (ISN).