The Asia-Pacific region is bracing for an onslaught of advanced cyber threats in 2025. Deepfakes and “harvest now, decrypt later” quantum attacks are emerging as top concerns, signaling a turbulent year for cybersecurity.
Deepfakes Fuel Disinformation and Fraud
Recent incidents across APAC highlight the disruptive potential of deepfakes. Manipulated media have been weaponized to sow discord and manipulate public opinion, especially during elections. In India, deepfakes spurred misinformation campaigns; in Indonesia, they exacerbated geopolitical tensions; and in Hong Kong, a finance professional fell prey to a deepfake scam, resulting in a $25 million loss.
Simon Green, President of Asia, Pacific, and Japan at Palo Alto Networks, warns that audio and video deepfakes will become a more frequent tool in cybercriminal arsenals. “The technology for credible voice cloning is now more accessible, making audio deepfakes particularly dangerous,” Green explains. Businesses and political entities alike need to strengthen their defenses against this rising threat.
Quantum Computing Drives New Attack Vectors
Quantum computing, once a distant possibility, is now a looming reality, especially in APAC, the fastest-growing quantum market globally. The region is hosting significant projects by tech giants like IBM, Microsoft, and Alibaba, as well as national initiatives like India’s US-funded Quantum Technologies & Applications Mission.
This growth has also spurred an increase in “harvest now, decrypt later” attacks. These involve adversaries stockpiling encrypted data today with plans to decrypt it once quantum capabilities can break current encryption standards. Sensitive data that must remain secure for decades, such as government communications or intellectual property, is particularly at risk.
Clement Lee of Check Point Software Technologies calls this development a “game-changer for critical infrastructure.” As a countermeasure, organizations are adopting quantum-resistant cryptography and strengthening their encryption frameworks.
The APAC Cybersecurity Response
Faced with these evolving threats, organizations are focusing on three primary areas:
- AI-Driven Defenses: To combat AI-powered attacks like adaptive malware and deepfakes, businesses are investing in equally advanced security tools. Solutions include systems capable of detecting subtle inconsistencies in media files or analyzing behavioral patterns in communications.
- Data Security: With the rise of AI-enabled tools like Microsoft Copilot, APAC organizations are under pressure to manage their data securely while staying compliant with regulatory standards. “The goal is secure, accessible data that doesn’t compromise security postures,” says Max McNamara of AvePoint.
- Unified Security Platforms
: Richard Sorosina of Qualys emphasizes the importance of consolidating security capabilities into unified platforms. “This approach offers a centralized risk view and better response mechanisms,” he notes, adding that such platforms can help reduce complexity, improve efficiency, and cut costs.
Organizations in the APAC region are entering a critical phase in cybersecurity. Here’s what lies ahead:
- Deepfake escalation: From fraud to political manipulation, these synthetic media attacks will require vigilant detection systems.
- Quantum resilience: As quantum computing advances, the focus will shift toward encryption methods that can withstand its immense power.
- AI adaptation: Businesses must leverage AI both as a tool for innovation and as a shield against increasingly sophisticated cyber threats.
The convergence of these factors underscores the need for proactive measures to secure data, enhance detection, and build resilient infrastructures. With the stakes so high, 2025 promises to be a defining year for cybersecurity in APAC.