Rashish Pandey, Vice President of Marketing and Communications, Asia & ANZ, Fortinet, Bambi Escalante, Country Manager, Fortinet, Napoleon Castillo, Manager, Systems Engineering, Philippines, Fortinet Philippines
Fortinet has unveiled the results of a new IDC survey exposing a dramatic escalation in the volume, complexity, and stealth of cyber threats in a sobering wake-up call for the digital defenses of the Philippines and the broader Asia-Pacific region.
The report paints a picture of a rapidly evolving threat landscape—one where attackers have harnessed Artificial Intelligence (AI) as a force multiplier, outpacing the capabilities of under-resourced and overstretched security teams.
The integration of AI into cyberattacks is no longer theoretical—it’s here, and it’s wreaking havoc. A staggering 78% of organizations in the Philippines report having encountered AI-powered threats in the past year. These aren’t just more frequent; they’re significantly more advanced. Some 64% of companies saw the frequency of these attacks double, while 28% reported a threefold increase.
These AI-driven attacks are exploiting weaknesses in human behavior, system misconfigurations, and digital identity infrastructure. Among the top threats in the Philippines: deepfake-based business email compromise (BEC), AI-enhanced social engineering, adversarial AI, data poisoning, automated reconnaissance, and polymorphic malware—threats designed to evade traditional defenses and sow chaos silently.
And yet, confidence in fighting these threats remains alarmingly low. Only 9% of Philippine organizations feel very confident in their ability to fend off AI attacks. Worse, 19% admit they have no capability to track such threats at all.
Constant exposure: The new cybersecurity norm
The nature of cyber risk has fundamentally shifted. It’s no longer an occasional crisis—it’s a constant state of vulnerability. Organizations in the Philippines are battling a mix of legacy and modern threats, with ransomware (66%), software supply chain attacks (62%), cloud vulnerabilities (58%), and insider threats (56%) topping the list.
But the most dangerous threats aren’t necessarily the most visible.
Insider threats, unpatched systems, and zero-day exploits—often overlooked—are proving to be more disruptive than headline-grabbing ransomware or phishing schemes. These complex threats often operate under the radar, exploiting organizational blind spots and internal weaknesses.
While threats like phishing and malware are growing modestly (around 10% annually), more insidious threats—like supply chain breaches (+16%), IoT/OT vulnerabilities (+14%), and insider threats (+12%)—are accelerating. These trends are amplified by fragmented governance and limited visibility across sprawling IT environments.
The consequences are severe. Beyond financial loss—reported by 46% of respondents, with a quarter losing over US$500,000—organizations face reputational damage, regulatory penalties, and operational disruption.
Teams under siege: Too few hands for too many threats
The people behind the firewalls are feeling the pressure. The survey found that only 7% of an organization’s workforce is dedicated to IT, and of those, just 13% focus on cybersecurity. That amounts to less than one cybersecurity expert for every 100 employees.
Most organizations don’t even have a dedicated Chief Information Security Officer (CISO), and only 6% maintain specialized teams for security operations or threat hunting. These lean teams are contending with overwhelming threat volumes, talent shortages, and increasingly complex toolsets—leading to burnout and inefficiencies.
Despite the escalating threat landscape, cybersecurity spending remains disproportionate to the risk. On average, just 15% of IT budgets go to cybersecurity—translating to only about 1.4% of total revenue.
Encouragingly, nearly 80% of organizations reported increasing their cybersecurity budgets—but most hikes remain modest, under 10%. The trend is shifting from infrastructure-heavy spending to more strategic areas like identity protection, Zero Trust architecture, cyber resilience, and cloud-native security.
Still, critical areas such as OT/IoT security, DevSecOps, and employee security training remain underfunded—revealing a gap between strategic intention and tactical execution.
The rise of platform-driven cyber resilience
As complexity grows, so does the need for simplicity and integration. Fortinet’s survey shows that 96% of Philippine organizations are either converging their networking and security systems or actively planning to. This move toward platform-based security promises better visibility, automation, and coordination—key ingredients for resilience in the face of AI-driven threats.
Yet, challenges persist. Nearly half of respondents cite tool fragmentation as a major obstacle, despite efforts to consolidate. The problem isn’t just the number of tools—it’s the lack of integration among them.
Consolidation is emerging as a strategic imperative, not just a cost-cutting measure. The top benefits organizations hope to achieve through platform-driven approaches include faster response times, better integration, cost efficiency, and enhanced security posture.
Expert insights
“The findings of this survey point to a growing need for AI-accelerated defence strategies. A shift toward integrated, risk-centric cybersecurity models is critical to staying ahead,” said Simon Piff, Research VP, IDC Asia-Pacific.
“Complexity is now the new battleground—and AI is both the challenge and the frontline defence,” added Bambi Escalante, Country Head of Fortinet Philippines. “Speed, simplicity, and strategy matter more than ever.”
“We’re helping customers reframe cybersecurity as a long-term business enabler, not just a line of defence,” said Rashish Pandey, VP of Marketing & Communications at Fortinet Asia & ANZ.
The message from Fortinet and IDC is clear. The battleground of cybersecurity is evolving fast—and AI is both the weapon and the shield. Organizations in the Philippines and across the Asia Pacific must act decisively to close visibility gaps, strengthen governance, and shift toward integrated, intelligent, and strategic cybersecurity frameworks.
Reactive defenses are no longer sufficient. In this new reality, resilience requires foresight, investment, and above all—speed.