Monday, April 22, 2024

Blackpanda, Asia's premier digital forensics and incident response firm

"The majority of the cyber incidents we encounter can be traced back to fundamental vulnerabilities that remain unpatched. Just as a burglar can easily enter through an unlocked door or opened window, cyber attackers exploit these open vulnerabilities to breach systems. As part of our commitment at Blackpanda, and through our Pandamatics Underwriting arm, we are not only focused on responding to these emergencies but also on significantly reducing the occurrence of such attacks across the entire market. This data isn’t just a collection of statistics; it's a roadmap showing us where the industry needs to direct its attention and resources to fortify its defences effectively." ~Mr. Gene Yu, CEO of Blackpanda Group
Mr. Ruck Del Rosario, Digital Forensics and Incident Response Specialist; Ms. Evelyn Del Monte, Managing Director - PhilippinesMr. Gene Yu, Founder & CEO.

Blackpanda, Asia’s premier digital forensics and cyber security firm, today released its first proprietary study, analyzing cyber security vulnerabilities in SME companies across the Asia Pacific region. For this study, Blackpanda utilizes in-house external attack surface management (ASM) scan to identify top vulnerabilities that represent significant risk level where threats are recommended to be resolved as soon as practicable or within a matter of days to prevent potential infiltration by attackers to launch an attack.  

Findings on the state of cybersecurity vulnerability in Philippine SMEs and the latest innovation to its flagship product which is a subscription-based solution to help businesses protect their infrastructure in the event of a cyber attack.

The study reveals three major vulnerabilities that pose significant threats to regional security:
  • Compromised Assets - Email breaches in the high-risk category constitute 71.68% of the total risk level combined, spotlighting a significant risk of information leakage and phishing attacks. This category represents the most extensive vulnerability, underscoring a critical need for advanced threat detection and incident response strategies.
  • Exposed Web Services - Making up 69.92% of high-risk exposed services issues, vulnerabilities in web services indicate a widespread vulnerability to web-based attacks which can disrupt operations and compromise customer data. 
  • Known Software Vulnerabilities - Medium-risk level accounts for 59.96% of the system security issues where these vulnerabilities emerge as a crucial focus area, with practicable actions required to prevent data breaches that could lead to severe financial and reputational damage.

Mr. Gene Yu, CEO of Blackpanda Group

Blackpanda team shown from left to right: Ruck Del Rosario, Digital Forensics and Incident Response Specialist; Pauline Ong, Director of Customer Success; May Tan, Marketing Manager; Evelyn Del Monte, Managing Director - Philippines , Gene Yu, Founder & CEO;  Valerie Koh, Marketing Analyst.

Mr. Ruck Del Rosario, Digital Forensics and Incident Response Specialist; Ms. Evelyn Del Monte, Managing Director - PhilippinesMr. Gene Yu, Founder & CEO.

In addition to the top three vulnerabilities, the study also draws attention to other significant security risks, including:
•     Database and remote access services vulnerabilities, emphasizing the importance of robust access controls.
•     System services and DNS configuration issues, highlighting the need for improved security practices.
•     Underlying risks from software misconfiguration and SSL/TLS configuration gaps, which can lead to severe breaches if not addressed promptly.

"In the Philippines, we see a significant number of high severity vulnerabilities that allow attackers to compromise administrative credentials, gain unauthorized access to email accounts, or disrupt server operations. Given this context, robust security measures and proactive threat management aren't just advisable—they are critical. Our incident response capabilities are tailored to address these challenges head-on, ensuring that businesses can safeguard their digital environments effectively. IR-1 equips our clients with robust tools and resources essential for both preventing and mitigating cyberattacks. We are not resting on our laurels; rather, we have several significant upgrades scheduled for this year. Our subscribers can look forward to rolling out even more advanced, technology-driven solutions tailored to their needs." ~Evelyn Del Monte, Managing Director for Blackpanda Philippines

Blackpanda's comprehensive study not only maps out current vulnerabilities, but also makes tailored recommendations for businesses looking to improve their security architecture. Companies and national agencies can significantly reduce the risk of cyber attacks by implementing the recommended strategies, thereby protecting their data and operations from increasingly sophisticated threats.

Mr. Ruck Del Rosario, Digital Forensics and Incident Response Specialist

  • IR-1 by Blackpanda 
Blackpanda's flagship solution, IR-1, integrates top-tier incident response, continuous vulnerability assessments, and seamless access to cyber insurance—all in one SaaS platform. IR-1 is a yearly subscription designed for small and medium sized enterprises in the Asia Pacific region, combining proactive cyber security tools and hassle-free incident response.

  • Instantaneous, Round-the-Clock Incident Response
One of the standout features of IR-1 is its 24/7 fixed-cost incident response service. This feature guarantees businesses immediate access to expert support in the event of a cyber incident, which is crucial for minimizing downtime and mitigating damage swiftly. The fixed-cost model also helps businesses better manage their cybersecurity budgets by preventing unexpected costs associated with emergency responses.

  • Proactive Continuous Vulnerability Scanning
At the heart of IR-1’s preventative strategy is its continuous vulnerability scanning capability. This service works tirelessly to monitor and detect vulnerabilities within an organization’s digital environment. By identifying and addressing these vulnerabilities early, businesses can significantly reduce their exposure to potential cyberattacks and enhance their overall security posture.

  • Streamlined Access to Cyber Insurance
Another innovative aspect of IR-1 is its automated cyber insurance access, available specifically in Singapore and Hong Kong through Pandamatics Underwriting, an entity of the Blackpanda Group. This feature simplifies the process of obtaining cyber insurance, allowing businesses to quickly secure coverage that aligns with their risk management strategies. 

  • A Unified Solution for Enhanced Cybersecurity
In the Philippines, Blackpanda’s channel network partners are: Exclusive Networks (EN), and iSecure Network (ISN).

For more info, please visit

For more information about Blackpanda follow their social media accounts at:

Blackpanda is Asia's leading local cyber incident response firm, dedicated to delivering world-class digital emergency response services to businesses in the region. We help businesses strengthen their cyber resilience and secure their digital operations by supporting them with incident response delivered by local experts.

Our mission is to make cyber resilience achievable for all, with services and solutions designed for the Asian market. 

No comments:

Post a Comment