CrowdStrike’s latest 2025 APJ eCrime Landscape Report has revealed a surge in organized, business-like cybercriminal activity across Asia-Pacific and Japan (APJ), driven by artificial intelligence and scalable infrastructure.
Between January 2024 and April 2025, 763 victims in the region were listed on ransomware and data extortion leak sites. India, Australia, Japan, Taiwan, and Singapore were among the most affected, with manufacturing, technology, and financial services sectors facing the brunt of attacks.
CrowdStrike identified key ransomware operators such as OCULAR SPIDER, BITWISE SPIDER, and PUNK SPIDER as the most active groups in the APJ region. Notably, many avoid targeting China, hinting at internal constraints within the cybercriminal ecosystem.
Emerging ransomware-as-a-service (RaaS) operators like FunkLocker and KillSec were also responsible for a growing number of regional attacks. India, in particular, was a primary target. FunkLocker’s leader, known as Scorpion, reportedly prioritizes organizations with high revenue and weak cybersecurity defenses.
The report also highlights thriving Chinese-language eCrime markets, including Chang’an and FreeCity, which continue to facilitate stolen data and hacking tool trades despite government crackdowns. Telegram-based platforms such as Huione Guarantee have also been linked to cryptocurrency fraud and money laundering schemes before being shut down earlier this year.
Vietnam has emerged as another cybercrime hub, with malware like Ailurophile Stealer and FatStealer targeting social media business accounts. Meanwhile, SOLAR SPIDER has been focusing on financial institutions across South and Southeast Asia through sophisticated phishing campaigns deploying JsOutProx RAT.
CrowdStrike urged organizations in APJ to adopt “agentic AI” for defense, secure digital identity systems, and strengthen cross-domain visibility through modern XDR solutions. The report concludes that ransomware and data extortion will remain the dominant eCrime threats for economies such as India, Japan, and Australia, as cybercriminals continue to evolve through AI-powered and underground networks.
Recent Random Post:
