Reference
Β·Supporting source
Publicly disclosed major Thai breaches (2024-2025)
~20+ disclosed incidents
Approximately 20+ publicly disclosed major data breaches and ransomware incidents affecting Thai entities surfaced in 2024-2025 per ThaiCERT, NCSA advisories, media tracking (Bangkok Post Tech, Thai PBS investigations), and threat-intel vendor reporting (Group-IB, Resecurity). Notable incidents included intrusions at state enterprises, telecom subscriber-data exposures, healthcare-provider ransomware events, and stock-exchange-listed retailers. The actual incident count is materially higher β PDPA's breach-notification obligation does not require public disclosure unless data-subject notification is triggered. Cyber Insurance penetration in Thailand remains low (single-digit percentage of large enterprises), keeping balance-sheet exposure on incident-affected boards.
Figure in context
Approximately 20+ publicly disclosed major data breaches and ransomware incidents affecting Thai entities surfaced in 2024-2025 per ThaiCERT, NCSA advisories, media tracking (Bangkok Post Tech, Thai PBS investigations), and threat-intel vendor reporting (Group-IB, Resecurity). Notable incidents included intrusions at state enterprises, telecom subscriber-data exposures, healthcare-provider ransomware events, and stock-exchange-listed retailers. The actual incident count is materially higher β PDPA's breach-notification obligation does not require public disclosure unless data-subject notification is triggered. Cyber Insurance penetration in Thailand remains low (single-digit percentage of large enterprises), keeping balance-sheet exposure on incident-affected boards.
Approximately 20+ publicly disclosed major data breaches and ransomware incidents affecting Thai entities surfaced in 2024-2025 per ThaiCERT, NCSA advisories, media tracking (Bangkok Post Tech, Thai PBS investigations), and threat-intel vendor reporting (Group-IB, Resecurity). Notable incidents included intrusions at state enterprises, telecom subscriber-data exposures, healthcare-provider ransomware events, and stock-exchange-listed retailers. The actual incident count is materially higher β PDPA's breach-notification obligation does not require public disclosure unless data-subject notification is triggered. Cyber Insurance penetration in Thailand remains low (single-digit percentage of large enterprises), keeping balance-sheet exposure on incident-affected boards.
Time scope
2024-2025 (publicly disclosed)
Source basis
Supporting source
Interpretation notes
What this tells you
Approximately 20+ publicly disclosed major data breaches and ransomware incidents affecting Thai entities surfaced in 2024-2025 per ThaiCERT, NCSA advisories, media tracking (Bangkok Post Tech, Thai PBS investigations), and threat-intel vendor reporting (Group-IB, Resecurity). Notable incidents included intrusions at state enterprises, telecom subscriber-data exposures, healthcare-provider ransomware events, and stock-exchange-listed retailers. The actual incident count is materially higher β PDPA's breach-notification obligation does not require public disclosure unless data-subject notification is triggered. Cyber Insurance penetration in Thailand remains low (single-digit percentage of large enterprises), keeping balance-sheet exposure on incident-affected boards.
What not to do with it
Use the linked report for interpretation and keep basis differences explicit.
Related figures
Adjacent numbers that add context without drowning the value.
Thailand cybersecurity end-user spending (2020-2025)
IDC Thailand Security Spending Guide, Gartner Asia-Pacific Information Security tracker, National Cyber Security Agency
Thailand cybersecurity spend by sector (2024)
IDC Thailand Security Spending Guide, NCSA sector outlook, Bank of Thailand IT-risk supervision data
PDPA enforcement actions by PDPC (2020-2024)
Office of the Personal Data Protection Committee, Baker McKenzie Thailand PDPA tracker, Tilleke and Gibbins data-protection bulletin
Identity and access management platform adoption
IDC Thailand Identity and Access Management tracker, Okta, Microsoft Entra ID Thailand channel disclosures, Bank of Thailand IT-risk guidance
AI and ML-driven security tooling spend share
IDC Thailand Security Spending Guide, Gartner AI-augmented security tracker, NCSA and Bank of Thailand technology supervision
Post-quantum cryptography readiness investment
NCSA, NIST Post-Quantum Cryptography standardisation, Bank of Thailand IT-resilience guidance, IBM and Thales Thailand channel
Report context
Atlas actors in this figure's reports
Profiles covered in the report that cite this number.