PSA Cyber Risk Reports
The Canadian Armed Forces (CAF) commenced a five-day Military Cyber Security Operations Course (MSOC) for the Armed Forces of the Philippines (AFP) from January 19 to 23, 2026. The joint exercises aim to strengthen the AFP’s foundational skills to detect, assess, and respond to malicious cyber activity targeting military and government networks. The training follows …
The Department of Information and Communications Technology (DICT) is set to launch “Oplan Bantay Padala” a centralized online portal that will allow consumers to file complaints against courier and delivery services for failed, delayed, and problematic deliveries. Once operational, the platform will provide real-time visibility into operators performances, resolution rates, and identify recurring service issues. …
A report by security researchers from Varonis Security revealed an attack method exploiting a vulnerability in Microsoft’s Artificial Intelligence (AI) assistant, Copilot. Dubbed Reprompt, this flaw allows threat actors to exfiltrate data from a Copilot chat history via a malicious link that executes commands within the user’s browser-based chat session. Researchers note that Reprompt “requires …
Threat actors are making use of fake online converter tools and malvertisements (malicious advertisements) to distribute malicious software. By mimicking legitimate services, they establish a false sense of trust, making it difficult for users to distinguish the fake sites from the real ones. Fake Converter Tools | Source: Nextron Systems The Lure: The Malicious Advertisements …
Cybercriminals are now exploiting PayPal’s legitimate business tool to send “verified” invoices that easily bypass email filters. By using the platform’s actual notification system, scammers send emails that appear entirely authentic to both security software and the recipient. The goal is to create a sense of urgency, tricking users into calling a fake support number …
On January 21, 2026, the Cybercrime Investigation and Coordinating Center (CICC) announced the lifting of the ban on Grok, the integrated AI chatbot of X (formerly Twitter) just five days after its initial restriction. The ban has been imposed following concerns on the manipulated non-consensual explicit deepfakes and harmful content involving women and children. The …
January 22, 2026
Cisco Talos researchers report that a China-linked advanced persistent threat (APT) group, tracked as UAT-8837, has been exploiting a critical zero-day vulnerability in the Sitecore content management systems (CMS) to breach critical infrastructure, particularly in North America. These intrusions utilize a sophisticated multi-stage attack chain designed to bypass traditional security filters and establish long-term persistence …
January 13, 2026
The Philippine National Police Anti-Cybercrime Group (PNP-ACG) reported a decrease in recorded cybercrime incidents in 2025 across major scam categories compared to 2024. Authorities attribute the trend to sustained cyber patrolling, digital investigations, and public awareness efforts. PNP-ACG saw “substantially fewer” cybercrime cases from January 1 to December 4, 2025. Among the major scam categories, …
The Canadian Armed Forces (CAF) commenced a five-day Military Cyber Security Operations Course (MSOC) for the Armed Forces of the Philippines (AFP) from January 19 to 23, 2026. The joint exercises aim to strengthen the AFP’s foundational skills to detect, assess, and respond to malicious cyber activity targeting military and government networks. The training follows …
The Department of Information and Communications Technology (DICT) is set to launch “Oplan Bantay Padala” a centralized online portal that will allow consumers to file complaints against courier and delivery services for failed, delayed, and problematic deliveries. Once operational, the platform will provide real-time visibility into operators performances, resolution rates, and identify recurring service issues. …
A report by security researchers from Varonis Security revealed an attack method exploiting a vulnerability in Microsoft’s Artificial Intelligence (AI) assistant, Copilot. Dubbed Reprompt, this flaw allows threat actors to exfiltrate data from a Copilot chat history via a malicious link that executes commands within the user’s browser-based chat session. Researchers note that Reprompt “requires …
Threat actors are making use of fake online converter tools and malvertisements (malicious advertisements) to distribute malicious software. By mimicking legitimate services, they establish a false sense of trust, making it difficult for users to distinguish the fake sites from the real ones. Fake Converter Tools | Source: Nextron Systems The Lure: The Malicious Advertisements …
Cybercriminals are now exploiting PayPal’s legitimate business tool to send “verified” invoices that easily bypass email filters. By using the platform’s actual notification system, scammers send emails that appear entirely authentic to both security software and the recipient. The goal is to create a sense of urgency, tricking users into calling a fake support number …
On January 21, 2026, the Cybercrime Investigation and Coordinating Center (CICC) announced the lifting of the ban on Grok, the integrated AI chatbot of X (formerly Twitter) just five days after its initial restriction. The ban has been imposed following concerns on the manipulated non-consensual explicit deepfakes and harmful content involving women and children. The …
January 22, 2026
Cisco Talos researchers report that a China-linked advanced persistent threat (APT) group, tracked as UAT-8837, has been exploiting a critical zero-day vulnerability in the Sitecore content management systems (CMS) to breach critical infrastructure, particularly in North America. These intrusions utilize a sophisticated multi-stage attack chain designed to bypass traditional security filters and establish long-term persistence …
January 13, 2026
The Philippine National Police Anti-Cybercrime Group (PNP-ACG) reported a decrease in recorded cybercrime incidents in 2025 across major scam categories compared to 2024. Authorities attribute the trend to sustained cyber patrolling, digital investigations, and public awareness efforts. PNP-ACG saw “substantially fewer” cybercrime cases from January 1 to December 4, 2025. Among the major scam categories, …
CyberSecurity.PH Reports
Read the full report here. Philippines and South East Asia Philippine Presidential Communications Office responding to fake news and misinformation Chinese threat actor hidden inside another Asian telecommunication network for four years Malaysia refuses to pay $10USD million ransom related to airport outages Cybersecurity Threat Landscape Oracle cloud compute data breach confirmed Threat actor claims …
Read the full report here. Cybersecurity Threat Landscape Multiple APT groups using Windows shortcut exploit with no Microsoft fix available Compromised GitHub Action leads to further GitHub Action compromises Authentic looking Adobe OAuth and DocuSign OAuth targeting Microsoft 365 accounts Cybersecurity Vulnerabilities Apache Tomcat remote code execution (CVSS 9.8) PHP remote code execution vulnerability exploited …
Read the full report here. Philippines and South East Asia Philippine Army confirms hack by threat-actor Exodus Security Chinese Lotus Panda threat-group targeting APAC organizations with Sagerunex variants Threat actors impersonating Taiwan Taxation authority to deploy malware Solo hacker responsible for 90x high-profile data leaks arrested in Thailand Cybersecurity Threat Landscape FBI confirms Lazarus threat-group …
Read the full report here. Philippines and South East Asia 7,000 people rescued from Myanmar scam-centres Google stops malicious apps with ‘AI-Powered Threat Detection’ and continuous scanning Cybersecurity Threat Landscape Threat actors tricking users into linking devices to access Signal, WhatsApp and Telegram messages China sponsored Salt Typhoon threat actors continue to breach telecom organizations …
Cybersecurity.PH recently published a report providing an in-depth analysis on the risks and vulnerabilities associated with AI technologies like DeepSeek. It explores various security concerns including browser-based tracking, user data collection, and the potential for AI model manipulation. While DeepSeek serves as the focal point, the report emphasizes that similar vulnerabilities exist across many AI …
Read the full report here. Artificial Intelligence AI Technologies Philippines and South East Asia China-linked threat actor “PlushDaemon” targets victims in South East Asia with malicious VPN installers Fake wedding invites, parcel delivery notifications, and government job offers used to spread Android malware Thai police arrest woman linked to $182m romance scam Cybersecurity Threat Landscape …
January 23, 2025
Cybersecurity.PH just released a new update! Check out the full report HERE. Philippines NBI clearance data claimed to be compromised Philippines arrests Chinese national for spying on critical infrastructure Cybersecurity Threat Landscape VPN credentials of 15,000 FortiGate appliances posted on dark-web forum Mustang Panda’s PlugX malware removed from 4,200 computers in the US Phishing-as-a-service “Sneaky …
January 9, 2025
Read the full report HERE. Philippines Chinese cyber threat actors targeting Philippine Executive Branch, stealing military data Cybersecurity Threat Landscape United States Treasury OFAC breached by Chinese threat-actors via third-party vendor 30+ Chrome plugins hacked, exposing millions of users to credential theft Tools released to abuse Windows server LDAP bug causes crashes and reboots Cybersecurity …
Read the full report here. Philippines and South East Asia Philippine Presidential Communications Office responding to fake news and misinformation Chinese threat actor hidden inside another Asian telecommunication network for four years Malaysia refuses to pay $10USD million ransom related to airport outages Cybersecurity Threat Landscape Oracle cloud compute data breach confirmed Threat actor claims …
Read the full report here. Cybersecurity Threat Landscape Multiple APT groups using Windows shortcut exploit with no Microsoft fix available Compromised GitHub Action leads to further GitHub Action compromises Authentic looking Adobe OAuth and DocuSign OAuth targeting Microsoft 365 accounts Cybersecurity Vulnerabilities Apache Tomcat remote code execution (CVSS 9.8) PHP remote code execution vulnerability exploited …
Read the full report here. Philippines and South East Asia Philippine Army confirms hack by threat-actor Exodus Security Chinese Lotus Panda threat-group targeting APAC organizations with Sagerunex variants Threat actors impersonating Taiwan Taxation authority to deploy malware Solo hacker responsible for 90x high-profile data leaks arrested in Thailand Cybersecurity Threat Landscape FBI confirms Lazarus threat-group …
Read the full report here. Philippines and South East Asia 7,000 people rescued from Myanmar scam-centres Google stops malicious apps with ‘AI-Powered Threat Detection’ and continuous scanning Cybersecurity Threat Landscape Threat actors tricking users into linking devices to access Signal, WhatsApp and Telegram messages China sponsored Salt Typhoon threat actors continue to breach telecom organizations …
Cybersecurity.PH recently published a report providing an in-depth analysis on the risks and vulnerabilities associated with AI technologies like DeepSeek. It explores various security concerns including browser-based tracking, user data collection, and the potential for AI model manipulation. While DeepSeek serves as the focal point, the report emphasizes that similar vulnerabilities exist across many AI …
Read the full report here. Artificial Intelligence AI Technologies Philippines and South East Asia China-linked threat actor “PlushDaemon” targets victims in South East Asia with malicious VPN installers Fake wedding invites, parcel delivery notifications, and government job offers used to spread Android malware Thai police arrest woman linked to $182m romance scam Cybersecurity Threat Landscape …
January 23, 2025
Cybersecurity.PH just released a new update! Check out the full report HERE. Philippines NBI clearance data claimed to be compromised Philippines arrests Chinese national for spying on critical infrastructure Cybersecurity Threat Landscape VPN credentials of 15,000 FortiGate appliances posted on dark-web forum Mustang Panda’s PlugX malware removed from 4,200 computers in the US Phishing-as-a-service “Sneaky …
January 9, 2025
Read the full report HERE. Philippines Chinese cyber threat actors targeting Philippine Executive Branch, stealing military data Cybersecurity Threat Landscape United States Treasury OFAC breached by Chinese threat-actors via third-party vendor 30+ Chrome plugins hacked, exposing millions of users to credential theft Tools released to abuse Windows server LDAP bug causes crashes and reboots Cybersecurity …
