data analysis
Asia-Pacific Cyber Threats: Volume vs. Insurance Severity
Each bubble is one of the top five cybercrime types ranked by Interpol across 18 member countries. Horizontal: Case volume. Scope: Severity of insurance claims. Bubble size: speed of increase. Hover for details.
High Volume/High Severity higher severity/lower dose Moderate severity/high volume emerging/accelerating
Ransomware Average Claim
$508,000
+16% annually At-Bay 2025
scam center losses
~$40 billion/year
UNODC established Interpol
Social engineering claim
+233%
Year-to-date · Aon APAC 2025
Deepfake forum activity
+600%
February-June 2024 Interpol
Source: INTERPOL Asia and South Pacific Cyber Threat Assessment 2025/2026; Willis Cyber Claims in Focus 2026; Dual Global Cyber Outlook April 2026; At-Bay 2025 Cyber Claims Report; Aon APAC Cyber Risk Report 2025; UNODC TOC Convergence Report 2024. The axes are position indicator indices.
Designated threat actors are already in US networks
The Interpol report identifies the most active malware families in the region following Operation Secure, its February 2025 joint operation involving 26 countries. LummaC2, described as the world’s largest infostealer and available as a malware-as-a-service product from 2022, was the subject of a joint disruption effort by Europol, Microsoft and Japan’s Cybercrime Control Center in May 2025. Europol confirmed the removal of Infostealer’s infrastructure – a significant intervention, but it addresses a specific operator rather than the ecosystem from which it emerged.