The global AI race is no longer confined to the US and China. Emerging hubs like Abu Dhabi, Paris, Singapore, and São Paulo are transforming the landscape with bold strategies, sovereign investments, and rapid innovation, creating a multipolar future for artificial intelligence.
French retail giant Auchan has confirmed a second major data breach in less than a year, exposing the personal information of several hundred thousand loyalty program members. The attack follows a similar incident in November 2024, raising concerns about the company's cybersecurity posture.
A widespread cyberattack has paralyzed Nevada's state government, forcing the closure of DMV offices, disrupting public services, and triggering a joint state and federal investigation. The attack, has taken down websites and phone lines, with no clear timeline for full restoration.
DDoS attacks on the financial sector, especially in Asia-Pacific, are rising sharply. Banks are the primary targets, with attacks increasing by 154% from 2022 to 2023. Hacktivism and cheap, powerful botnets drive these attacks, posing significant risks to system stability and trust.
The escalating menace of Distributed Denial-of-Service (DDoS) attacks has put the financial sector squarely in the crosshairs of cybercriminals.
Highlighted in the FS-ISAC and Akamai Technologies' report "DDoS: Here to Stay," this worrying trend shows no sign of abating, particularly in the Asia-Pacific region where the financial industry is now the third most targeted for cyberattacks, trailing only behind commerce and gaming.
This designation underscores the broad and increasing risk of cyber threats faced by the sector.
A notable uptick in such cyberattacks, chiefly orchestrated by hacktivists and targeting entities in geopolitically sensitive areas, aims to disrupt the essential online services of these institutions.
The reliance on uninterrupted online presence makes these disruptions more than just inconvenient; they pose a significant threat to the stability and trust in financial systems.
Teresa Walsh, the global head of intelligence at the Financial Services Information Sharing and Analysis Center, underscores the gravity of these threats, noting,
"Even just being offline for a minute can cause huge reputational risks."
This statement highlights the high stakes involved in maintaining continuous online service availability.
In a closer look at the Asia-Pacific region, the report reveals that 11% of DDoS attacks were directed at financial services, with banks suffering the majority of these attacks (91%), a figure that significantly outstrips the global average.
From 2022 to 2023, there was a stark 154% rise in DDoS attacks against the sector, with financial services accounting for 35% of all such attacks globally, thereby eclipsing the gaming industry as the most frequently targeted.
This increase in attacks is linked to the proliferation of more powerful botnets and a surge in hacktivism, often propelled by geopolitical strife.
The report stresses the critical need for robust cybersecurity measures to counteract these threats, particularly those launched via cost-effective DDoS-for-hire services found on the dark web.
Moreover, the report documents a notable rise in both the frequency and intensity of DDoS attacks over 2023, with high-profile banking institutions and those with significant brand recognition being particularly vulnerable.
Despite likely having more sophisticated defence mechanisms, the potential for operational disruption, eroding customer trust, and financial losses remains a significant concern.
Experts from FS-ISAC and Akamai provide insights into the shifting dynamics of DDoS threats.
The document highlights some of the most noteworthy security incidents of 2023, including the largest DDoS attacks that Akamai has encountered across the U.S., Europe, and the APAC region. In a standout moment, Akamai successfully neutralised an unprecedented attack in the APAC area, leveraging the expertise of over 225 front-line responders, a targeted defence capability platform, and advanced DDoS mitigation tactics.
Despite the attack's intensity, peaking at 900.1 Gbps and 158.2 Mbps, it resulted in no collateral damage.
In alignment with Akamai's latest State of the Internet (SOTI) reports for the financial services and commerce sectors, the financial industry continues to be the most targeted sector for web application and API attacks in the APJ region, with commerce following closely behind.
Since the June 2023 analysis, the financial sector has seen attacks surge to over 4.5 billion—a significant rise from 3.7 billion, marking an 18% increase.
Furthermore, since our March 2023 assessment, the commerce sector has witnessed attacks escalate from 1.2 billion to 1.9 billion, indicating a substantial 58% increase. The distribution of attacks within sub-verticals has stayed fairly stable (Figure 1).
Steve Winterfeld, Advisory CISO at Akamai, further explains,
"DDoS attackers use a variety of techniques to annoy, harass, and extort companies. These attacks cost little to launch and can do serious damage to a company’s brand."
This collaborative effort highlights the urgent need for the financial sector to prioritise cybersecurity, enhance defences, and comply with evolving regulations to fend off the persistent threat posed by DDoS attacks.
Cyber incidents in the Asia-Pacific have surged 29% in the past year, with Australia facing major breaches at the University of Western Australia and Qantas. Manufacturing is the top target, deepfakes are on the rise, and experts warn the region is in a digital arms race demanding urgent action.
ASIO’s $12.5 billion espionage warning is more than a tally of stolen secrets. It reveals a national digital crisis. With 24 major spy operations disrupted and identity systems exposed, Australia’s critical infrastructure and social services face a growing risk of collapse from unseen cyber threats.
Singapore is responding to a cyberattack by UNC3886, a China-linked espionage group targeting critical infrastructure. Minister K. Shanmugam confirmed the threat is serious and ongoing, as the CSA leads investigations to protect national services from long-term disruption.
Australia has become one of the first countries to mandate AS IEC 62443 standards by law, transforming healthcare cybersecurity into a legal obligation. The move marks a critical shift toward operational resilience and positions patient safety at the center of cyber strategy.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
