Aon plc has published new findings on cyber risk in Asia-Pacific, revealing a marked increase in both the number and complexity of cyber incidents across the region.
Drawing from its 2025 Cyber Risk Report, which analysed data from over 3,200 Aon clients and more than 1,400 global cyber events, the study highlighted a 29% annual rise in cyber incidents in Asia-Pacific.
Over a four-year span, the frequency of such incidents has climbed by 134%.
The report also noted a 22% uptick in cyber insurance claims notifications in 2024, indicating a growing impact on insured organisations.
Incidents involving artificial intelligence, particularly deepfake technology, have contributed to a 53% year-over-year increase in social engineering attacks.
Correspondingly, insurance claims related to social engineering and fraud have risen by 233%, underscoring the evolving tactics used by threat actors.
The report identified geopolitical developments – including trade disputes, territorial disagreements, and shifts in supply chain dynamics – as significant influences on how organizations in Asia-Pacific approach cyber risk.
According to Adam Peckman, who leads risk consulting and cyber solutions for Aon in the region, nation-state actors are expected to continue leveraging cyber operations to advance economic and strategic objectives.
“This trend is likely to accelerate with nation-state-backed threat actors continuing to employ cyber campaigns to facilitate conflicts or instigate grey-zone operations for the purposes of economic coercion, corporate espionage, or to harm regional rivals by targeting strategically important economic infrastructure,” he said.
Peckman also noted that as cyber threats become more sophisticated, organisations need to enhance the integration of their cybersecurity and insurance planning.
“As cyber threats grow more complex and interconnected, companies need a clearer view of their exposure, stronger alignment between cyber security and insurance strategies, and the tools to make better, data-driven decisions,” he said.
Aon’s analysis found that out of 1,414 cyber events examined globally, 56 escalated into incidents that drew significant public attention and posed reputational risks. Companies involved in these events experienced an average decline of 27% in shareholder value.
Notably, malware and ransomware attacks were identified as the primary triggers for reputational harm, accounting for 60% of such incidents, even though they represented less than half of all cyber events.
Beazley’s 2025 Risk & Resilience report, focusing on technology transformation and cyber risk, indicated that cyber threats are now a top concern for a growing share of global business leaders.
The survey, which canvassed executives worldwide, found that 29% now identify cyber risk as their primary issue, up from 26% the previous year. This is the first increase in this metric since 2021.
