KUALA LUMPUR: Malaysian businesses are among the most targeted in Southeast Asia for web-based threats, recording 190,556 exploit attempts, averaging over 1,050 attacks a day, in the first half of 2025 (H1’25), according to cybersecurity company Kaspersky.
In a statement today, it said this represents a 16% increase from the same period last year, reflecting a clear upward trend as digital infrastructure continues to expand.
Within Southeast Asia, Malaysia ranks third in terms of exploit volume, behind Indonesia (524,657) and Vietnam (301,800).
Kaspersky noted that exploits are a type of malicious programme designed to take advantage of bugs or vulnerabilities in software or operating systems to gain unauthorised access. When left unpatched, these weak points serve as open doors for cybercriminals.
Kaspersky managing director for Asia Pacific Adrian Hia said a 16% jump in exploit attempts against Malaysian businesses within just six months highlights how relentless these attackers have become.
“As the country’s online economy expands, closing the gap in unpatched systems is not just about avoiding attacks but also fortifying the nation’s digital progress.
“Threat intelligence tells us exactly where attackers are focusing, so Malaysian enterprises can strengthen defences before the damage is done,” he said.
The company also said that, overall, businesses in Malaysia encountered 1.70 million business-to-business web-based threats in the first six months of 2025.
This makes Malaysia the second most targeted country in Southeast Asia, with incidents exceeding Indonesia’s 1.63 million threats and outpaced only by Thailand’s 2.52 million.
“Web-based threats refer to malware programmes that can target users when they are browsing the Internet. These threats are not limited to online activity but ultimately involve the Internet at some stage to inflict harm,” it added. – Bernama
