Cybersecurity firm Kaspersky detected and blocked more than 18 million web-based attacks targeting businesses across Southeast Asia in 2025, with Singapore recording over 1.3 million incidents over the same period.

The data underscores the persistent threat posed by internet-delivered attack vectors, which include compromised websites, malicious downloads, and other online methods capable of granting threat actors unauthorised access to enterprise systems.

Vietnam and Malaysia lead regional volume

Vietnam registered the highest volume of web-based threats in the region with 8.4 million detections, followed by Malaysia with 3.4 million and Indonesia with 3 million. Thailand and Singapore each exceeded 1 million detections for the year.

Despite the scale of detections, Kaspersky noted that the overall volume of web threats across the region has declined year-on-year. The firm pointed to improving cybersecurity postures in markets like Singapore and Vietnam as a contributing factor, with greater enterprise investment in defences making threat activity more visible and interceptable.

“While the number of web threats we detected and blocked against business users in SEA are quantitatively on a decline, we observe a surge of this type of threat targeting organisations in Singapore and in Vietnam,” said Adrian Hia, Managing Director for Asia Pacific at Kaspersky. “These two countries have one thing in common — policies and behaviours towards cybersecurity in enterprise environment are on the rise.”

Growing attack surface in a digital economy

The findings come as SEA’s digital economy continues to expand. The World Economic Forum values the region’s digital economy at approximately US$300 billion, with projections pointing to US$1 trillion by 2030. Kaspersky argues that as enterprises deepen digital participation across economic activities, the attack surface for web-based threats will continue to widen.

“As attacks on enterprise environments continue to evolve in quantity and complexity, I am confident that cybersecurity solutions and services will be among the key technological investments that will be prioritised here this year and beyond,” Hia added.

Recommended enterprise defences

Kaspersky recommends organisations keep operating systems, browsers, and applications updated, enforce strong authentication practices including two-factor authentication, and leverage managed detection and response services for continuous monitoring. The firm also highlighted extended detection and response platforms and security operations centre consulting as key tools for organisations looking to strengthen posture against evolving web threats.