According to a report by cybersecurity firm Akamai, the Asia-Pacific (APAC) region has maintained its status as the world’s primary target for distributed denial-of-service (DDoS) attacks against financial institutions for the fourth year in a row. The study reveals that in 2025, APAC financial organizations bore the brunt of global cyber activity, absorbing 52% of all high-level Layer 7 DDoS attacks. Within the region, banks and fintech enterprises were the most heavily targeted, accounting for 44% and 38% of the disruptions, respectively. Traditional banking institutions were particularly vulnerable to lower-level network layer attacks, absorbing 92% of such incidents in the region. Akamai notes that while these lower-level operations focus purely on choking server capacity and bandwidth with junk traffic, Layer 7 attacks are significantly more sophisticated because they mimic genuine user behavior.
These malicious traffic surges are engineered to disable online banking portals, transactional systems, and consumer-facing mobile applications by masking themselves as legitimate user requests, making detection and mitigation exceptionally challenging. Reuben Koh, Akamai’s Director of Security Technology and Strategy for APJ, pointed out that the region’s rapid financial digitization is driving this threat. He emphasized that as APAC banks and fintechs continuously introduce new payment mechanisms, mobile features, API integrations, and AI-driven workflows, they inadvertently expand the digital attack surface, giving threat actors a broader array of vulnerabilities to exploit.
Click here for more on Finance and Investing
