Kaspersky hosted its annual Cybersecurity Weekend for Asia Pacific countries from August 4-7, 2024, in Sri Lanka, focusing on the latest trends in cybersecurity and the growing complexity of cyber threats in the region. The event emphasized the continued threat of ransomware and the increasing use of AI by cybercriminals, which is making cyberattacks more sophisticated. Attendees, including top cybersecurity professionals, journalists, CTOs, and industry leaders, gained valuable insights into the evolving cyber threat landscape and the challenges posed by AI.
The choice of Sri Lanka as the venue underscores the nation’s rising significance and Kaspersky’s commitment to offering robust cybersecurity solutions to protect digital infrastructure across both public and private sectors. Adrian Hia, Managing Director for the APAC Region at Kaspersky, highlighted the importance of adapting cybersecurity strategies to align with regional legal requirements, especially as AI integration becomes more prevalent. He stressed the need for clear policies to ensure data compliance and protect sensitive information when using AI.
Igor Kuznetsov, Director of Kaspersky’s Global Research & Analysis Team (GReAT), shared that ransomware remains the most common cyber threat worldwide, often orchestrated through ransomware-as-a-service (RaaS) models. He noted that compromised supply chains and trusted relationships are emerging as significant risks, with government entities, financial institutions, and manufacturing companies being the most targeted sectors.
The event also discussed the role of AI in enhancing cybercriminal activities, such as creating realistic phishing emails, generating passwords, coding malware, and even conducting adversarial attacks that can deceive AI systems. Kaspersky’s Lead Data Scientist, Alexey Antonov, explained that while some AI-driven attacks require advanced skills, others are already accessible through publicly available tools. Kaspersky has been researching these threats to develop reliable protections for its customers.
The summit highlighted the dangers of supply-chain attacks, which could disrupt critical infrastructure like hospitals, banks, and airlines. Vitaly Kamluk, a cybersecurity expert at Kaspersky, warned about the potential impact of such attacks, drawing parallels with recent incidents like the flawed software update by Crowdstrike, which caused widespread damage. He also pointed out the potential risks of AI model manipulation, which could introduce vulnerabilities into machine learning systems.
Ultimately, the conference emphasized the importance of comprehensive cybersecurity strategies, including cyber resiliency plans, employee training, and collaboration with trusted cybersecurity partners to ensure defense-in-depth and proactive protection.