PSA Cyber Risk Reports
The United States Federal Bureau of Investigation (FBI) has launched a coordinated effort with Southeast Asian law enforcement to dismantle sophisticated and industrialized scam compounds operating across the region. The agency has boosted cooperation with regional authorities such as the Royal Thai Police and the Cambodian National Police, sharing intelligence and coordinating enforcement actions to …
The United States financial services industry is on elevated alert following warnings that escalating tensions involving Iran could trigger retaliatory cyber activity targeting banks and payment systems. In response, Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI), alongside international partners Australian Cyber Security Centre (ACSC) have issued advisories emphasizing the …
The United States financial services industry is on elevated alert following warnings that escalating tensions involving Iran could trigger retaliatory cyber activity targeting banks and payment systems. In response, Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI), alongside international partners Australian Cyber Security Centre (ACSC) have issued advisories emphasizing the …
A zero-day vulnerability was disclosed in Ivanti Connect Secure, Policy Secure, and ZTA Gateway – enterprise VPN appliances used to protect corporate networks. Identified as CVE-2025-0282, this vulnerability allows a remote, unauthenticated threat actor to bypass security boundaries and achieve full system control. To exploit this vulnerability, a threat actor sends specially crafted web requests …
Cybersecurity researchers are warning of a surge in AI-powered cyberattacks as threat actors increasingly adopt generative AI tools to automate and enhance malicious operations. CyberStrikeAI, an AI security testing platform, has been observed in hacker campaigns to conduct rapid reconnaissance, phishing lures, and develop malicious code. Meanwhile, OpenAI has confirmed that Chinese-linked threat actor groups …
March 5, 2026
A privilege escalation vulnerability was disclosed within the Microsoft Windows Error Reporting (WER) service. Identified as CVE-2026-20817, this flaw exists due to a failure in how Windows checks user permissions during internal background processes. If exploited, a threat actor who already has basic, low-level access to the device can trick the system into granting them …
March 5, 2026
SolarWinds, a major provider of IT infrastructure and network management used by global enterprises, disclosed four vulnerabilities in its Serv-U managed file transfer platform. Identified as CVE-2025-40538, CVE-2025-40539, CVE-2025-40540, and CVE-2025-40541, these allow a threat actor to bypass security checks to execute malicious commands with administrator privileges, granting them total control of a compromised device …
The United States Federal Bureau of Investigation (FBI) has launched a coordinated effort with Southeast Asian law enforcement to dismantle sophisticated and industrialized scam compounds operating across the region. The agency has boosted cooperation with regional authorities such as the Royal Thai Police and the Cambodian National Police, sharing intelligence and coordinating enforcement actions to …
The United States financial services industry is on elevated alert following warnings that escalating tensions involving Iran could trigger retaliatory cyber activity targeting banks and payment systems. In response, Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI), alongside international partners Australian Cyber Security Centre (ACSC) have issued advisories emphasizing the …
The United States financial services industry is on elevated alert following warnings that escalating tensions involving Iran could trigger retaliatory cyber activity targeting banks and payment systems. In response, Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI), alongside international partners Australian Cyber Security Centre (ACSC) have issued advisories emphasizing the …
A zero-day vulnerability was disclosed in Ivanti Connect Secure, Policy Secure, and ZTA Gateway – enterprise VPN appliances used to protect corporate networks. Identified as CVE-2025-0282, this vulnerability allows a remote, unauthenticated threat actor to bypass security boundaries and achieve full system control. To exploit this vulnerability, a threat actor sends specially crafted web requests …
Cybersecurity researchers are warning of a surge in AI-powered cyberattacks as threat actors increasingly adopt generative AI tools to automate and enhance malicious operations. CyberStrikeAI, an AI security testing platform, has been observed in hacker campaigns to conduct rapid reconnaissance, phishing lures, and develop malicious code. Meanwhile, OpenAI has confirmed that Chinese-linked threat actor groups …
March 5, 2026
A privilege escalation vulnerability was disclosed within the Microsoft Windows Error Reporting (WER) service. Identified as CVE-2026-20817, this flaw exists due to a failure in how Windows checks user permissions during internal background processes. If exploited, a threat actor who already has basic, low-level access to the device can trick the system into granting them …
March 5, 2026
SolarWinds, a major provider of IT infrastructure and network management used by global enterprises, disclosed four vulnerabilities in its Serv-U managed file transfer platform. Identified as CVE-2025-40538, CVE-2025-40539, CVE-2025-40540, and CVE-2025-40541, these allow a threat actor to bypass security checks to execute malicious commands with administrator privileges, granting them total control of a compromised device …
CyberSecurity.PH Reports
Read the full report here. Philippines and South East Asia Philippine Presidential Communications Office responding to fake news and misinformation Chinese threat actor hidden inside another Asian telecommunication network for four years Malaysia refuses to pay $10USD million ransom related to airport outages Cybersecurity Threat Landscape Oracle cloud compute data breach confirmed Threat actor claims …
Read the full report here. Cybersecurity Threat Landscape Multiple APT groups using Windows shortcut exploit with no Microsoft fix available Compromised GitHub Action leads to further GitHub Action compromises Authentic looking Adobe OAuth and DocuSign OAuth targeting Microsoft 365 accounts Cybersecurity Vulnerabilities Apache Tomcat remote code execution (CVSS 9.8) PHP remote code execution vulnerability exploited …
Read the full report here. Philippines and South East Asia Philippine Army confirms hack by threat-actor Exodus Security Chinese Lotus Panda threat-group targeting APAC organizations with Sagerunex variants Threat actors impersonating Taiwan Taxation authority to deploy malware Solo hacker responsible for 90x high-profile data leaks arrested in Thailand Cybersecurity Threat Landscape FBI confirms Lazarus threat-group …
Read the full report here. Philippines and South East Asia 7,000 people rescued from Myanmar scam-centres Google stops malicious apps with ‘AI-Powered Threat Detection’ and continuous scanning Cybersecurity Threat Landscape Threat actors tricking users into linking devices to access Signal, WhatsApp and Telegram messages China sponsored Salt Typhoon threat actors continue to breach telecom organizations …
Cybersecurity.PH recently published a report providing an in-depth analysis on the risks and vulnerabilities associated with AI technologies like DeepSeek. It explores various security concerns including browser-based tracking, user data collection, and the potential for AI model manipulation. While DeepSeek serves as the focal point, the report emphasizes that similar vulnerabilities exist across many AI …
Read the full report here. Artificial Intelligence AI Technologies Philippines and South East Asia China-linked threat actor “PlushDaemon” targets victims in South East Asia with malicious VPN installers Fake wedding invites, parcel delivery notifications, and government job offers used to spread Android malware Thai police arrest woman linked to $182m romance scam Cybersecurity Threat Landscape …
January 23, 2025
Cybersecurity.PH just released a new update! Check out the full report HERE. Philippines NBI clearance data claimed to be compromised Philippines arrests Chinese national for spying on critical infrastructure Cybersecurity Threat Landscape VPN credentials of 15,000 FortiGate appliances posted on dark-web forum Mustang Panda’s PlugX malware removed from 4,200 computers in the US Phishing-as-a-service “Sneaky …
January 9, 2025
Read the full report HERE. Philippines Chinese cyber threat actors targeting Philippine Executive Branch, stealing military data Cybersecurity Threat Landscape United States Treasury OFAC breached by Chinese threat-actors via third-party vendor 30+ Chrome plugins hacked, exposing millions of users to credential theft Tools released to abuse Windows server LDAP bug causes crashes and reboots Cybersecurity …
Read the full report here. Philippines and South East Asia Philippine Presidential Communications Office responding to fake news and misinformation Chinese threat actor hidden inside another Asian telecommunication network for four years Malaysia refuses to pay $10USD million ransom related to airport outages Cybersecurity Threat Landscape Oracle cloud compute data breach confirmed Threat actor claims …
Read the full report here. Cybersecurity Threat Landscape Multiple APT groups using Windows shortcut exploit with no Microsoft fix available Compromised GitHub Action leads to further GitHub Action compromises Authentic looking Adobe OAuth and DocuSign OAuth targeting Microsoft 365 accounts Cybersecurity Vulnerabilities Apache Tomcat remote code execution (CVSS 9.8) PHP remote code execution vulnerability exploited …
Read the full report here. Philippines and South East Asia Philippine Army confirms hack by threat-actor Exodus Security Chinese Lotus Panda threat-group targeting APAC organizations with Sagerunex variants Threat actors impersonating Taiwan Taxation authority to deploy malware Solo hacker responsible for 90x high-profile data leaks arrested in Thailand Cybersecurity Threat Landscape FBI confirms Lazarus threat-group …
Read the full report here. Philippines and South East Asia 7,000 people rescued from Myanmar scam-centres Google stops malicious apps with ‘AI-Powered Threat Detection’ and continuous scanning Cybersecurity Threat Landscape Threat actors tricking users into linking devices to access Signal, WhatsApp and Telegram messages China sponsored Salt Typhoon threat actors continue to breach telecom organizations …
Cybersecurity.PH recently published a report providing an in-depth analysis on the risks and vulnerabilities associated with AI technologies like DeepSeek. It explores various security concerns including browser-based tracking, user data collection, and the potential for AI model manipulation. While DeepSeek serves as the focal point, the report emphasizes that similar vulnerabilities exist across many AI …
Read the full report here. Artificial Intelligence AI Technologies Philippines and South East Asia China-linked threat actor “PlushDaemon” targets victims in South East Asia with malicious VPN installers Fake wedding invites, parcel delivery notifications, and government job offers used to spread Android malware Thai police arrest woman linked to $182m romance scam Cybersecurity Threat Landscape …
January 23, 2025
Cybersecurity.PH just released a new update! Check out the full report HERE. Philippines NBI clearance data claimed to be compromised Philippines arrests Chinese national for spying on critical infrastructure Cybersecurity Threat Landscape VPN credentials of 15,000 FortiGate appliances posted on dark-web forum Mustang Panda’s PlugX malware removed from 4,200 computers in the US Phishing-as-a-service “Sneaky …
January 9, 2025
Read the full report HERE. Philippines Chinese cyber threat actors targeting Philippine Executive Branch, stealing military data Cybersecurity Threat Landscape United States Treasury OFAC breached by Chinese threat-actors via third-party vendor 30+ Chrome plugins hacked, exposing millions of users to credential theft Tools released to abuse Windows server LDAP bug causes crashes and reboots Cybersecurity …
