As artificial intelligence accelerates the sophistication of cyber threats, Southeast Asian nations are grappling with outdated cybersecurity frameworks that fail to address emerging risks, according to regional analysts and government officials.
The Diplomat reports that while AI-powered attacks have surged across banking, healthcare, and government systems in ASEAN countries, most national cybersecurity strategies haven’t been updated since 2018-2020. Malaysia and Singapore lead policy modernization efforts, but Vietnam and Indonesia still rely on analog-era legislation.
“We’re seeing AI tools automate phishing campaigns that adapt to local languages and cultural contexts in real-time,” said a cybersecurity advisor to Thailand’s Digital Economy Ministry who requested anonymity. “Our laws still treat all cybercrime the same way.”
Analysts note particular vulnerabilities in cross-border data flows as China’s AI companies expand regional cloud infrastructure. A 2023 UNCTAD report found only 38% of ASEAN members have laws governing AI-generated deepfakes.
The lag carries economic consequences – Frost & Sullivan estimates AI-related cyber incidents cost Southeast Asian businesses $28 billion last year. With ASEAN’s digital economy projected to reach $1 trillion by 2030, experts urge synchronized policy upgrades before major crises occur.