INTERPOL has published a new cybercrime report covering January 2024 through March 2025 that paints a stark picture of the Asia-Pacific threat landscape. The findings document a "dramatic increase" in cybercrime across Asia and the South Pacific, driven by rapid digitalization, expanding internet penetration, and the weaponization of artificial intelligence by organized crime syndicates.
Key Statistics
The numbers tell a sobering story:
- Phishing is the most prevalent threat — roughly one-third of regional countries reported more than 10,000 cases each. The Asia-Pacific click rate stands at 5.5 per 1,000 individuals monthly, nearly double the global average of 2.9.
- Ransomware attacks exceeded 135,000 in 2024, with real estate, manufacturing, and financial services as the hardest-hit sectors.
- DDoS attacks surged 92% year-over-year.
- System intrusions accounted for approximately 80% of all data breaches.
- Banking trojans and infostealers — including RedLine, Lumma, LokiBot, Negasteal, and ZBot — rank as the second most prevalent threat category.
AI-Powered Scams and Deepfakes
Perhaps the most alarming trend in the report is the rise of AI-generated deepfakes deployed by transnational crime organizations. Syndicates based in Cambodia, Laos, Myanmar, and the Philippines are using AI tools to run:
- Romance-baiting scams (sometimes called "pig butchering") using synthetic personas
- Executive impersonation attacks targeting businesses via deepfake audio and video
Combined, these AI-augmented fraud operations contribute to an estimated $37 billion in regional cybercrime losses.
Threat Actor Landscape
Transnational criminal networks in Southeast Asia continue to professionalize their operations, recruiting technical talent and running what are effectively "scam compounds" — large-scale facilities where individuals are coerced or trafficked into committing cyber fraud. The technical barriers to entry have dropped significantly as AI tools lower the cost of creating convincing social engineering assets.
INTERPOL's Recommendations
To counter the trend, INTERPOL recommends:
- Joint cross-border operations between regional law enforcement agencies
- Collaborative investigations targeting criminal infrastructure
- Specialized cybercrime training for law enforcement personnel
- Improved cyber-resilience policies at the national and organizational level
What This Means for Organizations
For security teams, this report is a call to action on several fronts:
- Phishing simulation programs should account for the rising sophistication of AI-crafted lures.
- Executive impersonation defenses — voice verification protocols, out-of-band confirmation for wire transfers, and deepfake awareness training — are no longer optional.
- Ransomware incident response plans should be tested and updated given the volume of attacks in the region.
- Infostealer detections should be prioritized given the prevalence of RedLine, Lumma, and similar families.
The Asia-Pacific surge is not isolated — these threat actors and their techniques frequently target organizations globally. The tools being refined in Asia-Pacific today tend to spread worldwide within months.