Singapore's recent decision to raise its National Cyber Threat Alert Level and mandate APT incident reporting further reflects a harsh reality: the threat landscape has fundamentally shifted, and business-as-usual security is failing.
Across Southeast Asia, the cyber threat landscape is undergoing a dramatic shift. Recent advanced persistent threat (APT) campaigns such as UNC3886 and Earth Kurma represent a clear escalation. These aren’t just high-profile cyber attacks, they are highly targeted, long-term operations designed to evade detection for months, sometimes years.
When sophisticated threat actors can maintain undetected access to critical networks for extended periods, as uncovered by Trend Research, with Earth Kurma operating across the Philippines, Vietnam, Thailand and Malaysia since 2020, traditional "detect and respond" approaches become dangerously inadequate. The real danger lies not just in the breaches themselves, but in the complacency of reactive security strategies that are no longer enough.
