AI Adoption Is Fueling a Cybercrime Surge Across Asia-Pacific

Ransomware attacks are rising sharply in the region as rapid digitalisation and AI deployment expand vulnerabilities faster than security systems can adapt.

Asia-Pacific is emerging as one of the most targeted regions for cybercrime, with ransomware attacks rising sharply amid accelerating digital transformation. A recent report by cybersecurity firm S-RM and stakeholder advisory firm FGS Global shows that more than 770 organisations in the region were named on ransomware leak sites in the past year, marking a 59% increase year-on-year. Ransomware now accounts for 64% of incidents handled in Asia-Pacific—well above the global average of 45%.

This surge reflects a broader shift in the threat landscape, where attackers are increasingly focusing on regions experiencing rapid economic growth and digital adoption. One of the key drivers behind the rise in cyberattacks is the speed at which businesses across Asia-Pacific are adopting digital tools. From cloud infrastructure to online platforms, companies of all sizes are moving operations online. While this has improved efficiency and scalability, it has also created a wider attack surface for cybercriminals.

Small and medium-sized enterprises (SMEs), in particular, are becoming frequent targets. Many lack the cybersecurity maturity needed to defend against increasingly sophisticated attacks, making them more vulnerable compared to larger organisations. The result is a structural imbalance: digital adoption is accelerating faster than cybersecurity readiness.

AI Is Changing the Nature of Cyber Threats

Artificial intelligence is playing a dual role in this shift. While businesses are adopting AI to improve productivity, attackers are using the same technology to scale and refine cyberattacks. AI enables cybercriminals to automate processes such as reconnaissance, phishing, and system intrusion. As a result, the time required to execute attacks has shortened significantly.

According to the report, ransomware operations that once took weeks can now unfold within hours. This compression of timelines is creating what experts describe as a “speed paradox,” where organisations must respond quickly to incidents without having complete information.

“As organizations rapidly adopt AI to drive efficiency, they are inadvertently handing powerful tools to adversaries,” said Kyle Schwaeble, Head of Incident Response for Asia-Pacific at S-RM.

Ransomware Groups Are Focusing on Asia-Pacific

The report also highlights a growing concentration of ransomware groups targeting the region. Several newer groups—including NightSpire, Dire Wolf, Gentlemen, and Crypto24—have directed a significant portion of their attacks toward Asia-Pacific. At the same time, established groups such as Qilin remain highly active, reflecting a mix of emerging and experienced threat actors operating in the region.

This indicates that Asia-Pacific is no longer a secondary target but a strategic priority for cybercriminal networks. Certain industries are experiencing a higher concentration of attacks. Financial services, for example, accounted for around 20% of ransomware cases in the region.

These sectors are particularly attractive to attackers because they handle sensitive data and critical infrastructure, increasing both the potential financial payoff and the pressure on organisations to respond quickly. At the same time, stricter data protection and privacy regulations across Asia are unintentionally increasing the leverage available to attackers. Threat actors are now using the risk of regulatory penalties as an additional pressure tactic, threatening to expose stolen data if ransom demands are not met.

The Growing Complexity of Cyber Incidents

Cyberattacks in Asia-Pacific are no longer purely technical incidents—they are becoming multi-dimensional crises.

Companies must now manage:

• Operational disruption caused by system shutdowns
• Regulatory consequences tied to data breaches
• Reputational damage among customers and stakeholders

“For APAC boards, ransomware is now a multi-dimensional crisis that can cripple operations and erode trust,” said Ben Richardson, Head of Asia at FGS Global.

This shift is forcing organisations to rethink cybersecurity not just as an IT function, but as a broader business risk. The rapid increase in cyber incidents highlights a widening gap between innovation and security. On one hand, businesses are adopting AI and digital tools to remain competitive. On the other, cybersecurity frameworks are struggling to keep pace with the speed and scale of these changes.

Several factors are contributing to this gap:

• Uneven cybersecurity maturity across organisations
• Limited awareness and preparedness among SMEs
• Increasing sophistication and organisation of cybercriminal groups

As a result, attackers are able to exploit vulnerabilities faster than they can be addressed.

A Shift Toward Resilience, Not Just Prevention

Experts suggest that companies need to move beyond traditional defensive strategies. Rather than focusing solely on preventing attacks, organisations are increasingly being encouraged to build resilience—ensuring they can respond to and recover from incidents quickly.

This includes:

• Regular testing of response procedures
• Strengthening basic cybersecurity controls
• Preparing communication strategies for crisis situations

“Businesses must evolve their defences and ensure they can respond and recover faster,” said Lester Lim, Regional Head of Cyber Security at S-RM.

The surge in cybercrime across Asia-Pacific underscores a critical challenge facing the region: balancing rapid technological adoption with effective risk management.

AI and digital transformation are driving economic growth, but they are also reshaping the threat landscape in ways that many organisations are not fully prepared for.

As cyberattacks become faster, more sophisticated, and more targeted, the focus is shifting from prevention alone to managing risk in an environment where breaches are increasingly inevitable.

For businesses across Asia-Pacific, the message is becoming clear:
the pace of innovation must be matched by an equally strong commitment to cybersecurity.

Quick Takeaways

• Cybercrime is rising rapidly in Asia-Pacific, with ransomware cases up 59% year-on-year and accounting for 64% of incidents, significantly above the global average.
• The surge is driven by rapid digitalisation, which is expanding the attack surface faster than organisations can secure it.
• AI is accelerating cyberattacks, enabling hackers to automate intrusion and execute ransomware operations in hours instead of weeks.
• Asia-Pacific has become a strategic target for ransomware groups, with both new and established actors focusing heavily on the region.
• SMEs are particularly vulnerable, often lacking the cybersecurity maturity needed to defend against evolving threats.
• Stricter data privacy regulations are increasing pressure, as attackers exploit the risk of regulatory penalties to demand higher ransoms.
• Cyberattacks are evolving into multi-dimensional business crises, affecting operations, compliance, and reputation simultaneously.
• The key challenge is a widening gap between AI-driven innovation and cybersecurity readiness, making resilience—not just prevention—critical.