Social engineering is among Asia’s most significant cybersecurity threats. Social engineering includes phishing, fake software updates, tech support scams, and Trojans. Phishing is one of the most common social engineering tactics, with 5.5 out of every 1,000 individuals working in Asia clicking on a phishing link monthly. This rate is slightly higher than the global average and even higher than nearby Australia. The victims click on links in various places, including email, messaging apps, social media, ads, and search engine results. The most common phishing target is cloud apps, which account for 28% of the clicks, followed by banking, telco, social media, and shopping.
Adversaries target cloud apps for a variety of reasons. For example, when the app is a productivity suite like Microsoft 365, the attacker could either steal data the victim can access or leverage the compromised account to target other victims. Some groups functioning as initial access brokers even sell access to compromised cloud apps on illicit marketplaces. Other apps like DocuSign are often mimicked for financial fraud to trick the victim into providing sensitive information, like credit card or bank account details. Together, Microsoft and DocuSign account for 64% of the cloud phishing links clicked in Asia.