The latest data from Kaspersky released on October 14 shows that many security vulnerabilities in the Vietnamese business network have not been resolved. This situation makes businesses continue to be on the target of cybercriminals.
From January to June 2025, Kaspersky has blocked more than 301,880 vulnerability exploitation attacks targeting businesses in Vietnam, with an average of about 1,600 cases per day.
In the first half of 2025, Indonesia is the country that recorded the highest number of vulnerable exploitation cases in Southeast Asia with 524,657 cases, followed by Vietnam with 301,880 cases and Malaysia with 190,556 cases. Other countries in the region have significantly lower numbers, including Thailand with 88,966 cases, the Philippines with 50,895 cases and Singapore with 38,719 cases.
exploitation attacks ( exploit) are a form of cyber attack that takes advantage of security vulnerabilities, software errors or operating systems to illegally access the system. If not resolved promptly, these vulnerabilities will become an open door for attackers to take control of data and business resources.
According to another report by Kaspersky, in the second quarter of 2025, most unpatched vulnerabilities in Microsoft Office products were a popular target of mining attacks globally. Kaspersky also recorded a number of attacks targeting the Windows platform, with vulnerabilities implementing malware remotely as well as taking control of the system.
Mr. Adrian Hia, Executive Director of Asia - Pacific at Kaspersky, commented: Vietnam is a country that is developing at a rapid pace, with many small and medium enterprises and large corporations actively applying technology to optimize processes and improve work efficiency. However, convenience always comes with risks.
The more businesses use these tools, the greater the risk of being exploited by hackers to attack. This is the right time for businesses to build an internal cybersecurity culture, helping to proactively reduce risks before becoming the target of cyber attacks.
Another finding from Kaspersky shows that in the first six months of 2025, businesses in Thailand faced 2,524,439 online threats, ranking first in Southeast Asia. Next are Malaysia and Indonesia with 1,703,788 and 1,626,984 cases respectively. Vietnam ranked lower with a total of 1,174,407 online threats, while Singapore and the Philippines recorded 470,758 and 334,565 cases respectively.
Online threat is a term referring to malware that can attack users while accessing the Internet. Not only limited to online activities, this threat can also be harmful at any stage of the internet usage process.
In the face of increasing cyber attacks in Vietnam, Kaspersky recommends that businesses:
- Conduct inspections and analysis of security vulnerabilities in a safe virtual environment, avoiding direct operation on the real system.
- Ensure 24/7 system monitoring, especially focusing on the perimeter defense layer of the business network.
- Regularly update security software to maintain the system's patchwork process.
- Deploy reliable security solutions to help detect and prevent malware on business devices; At the same time, integrate with a comprehensive toolkit including incident response scenarios, employee training programs and continuously updated threat databases.
- Update the latest information from Threat Intelligence to grasp the tactics, techniques and processes (TTPs) that cybercriminals are using, thereby being more proactive in preventing and responding to new threats.
