On the afternoon of October 31, Viettel Cyber Security Company (VCS) and related units under the auspices of the Department of Information Security - Ministry of Information and Communications organized the Senior Leadership Conference on Information Technology (IT) and Information Security (IS) - CIO CSO Summit 2024 with the theme "Transforming Information Security Strategy: From Prevention to Response and Recovery after Cyber Attacks".
According to the Viettel Threat Intelligence system, the cybersecurity situation in Vietnam is facing major challenges.
Ransomware attacks spiked 70% in the first quarter of 2024 compared to the same period in 2023, and in the first 6 months of 2024 alone, 46 data breaches were recorded, exposing approximately 13 million customer records, 12.3 GB of source code, and 16 GB of sensitive data.
In particular, by September 2024, the number of cyber attacks included 61 malware attacks, 24 targeted attacks (APT) and 672,584 distributed denial of service (DDoS) attacks.
With more than 3,300 phishing domains targeting users of large organizations, businesses and institutions are already in the cyber security battle, no one can predict when they will become the next target of a cyber attack.
Speaking at the opening of the workshop, Mr. Le Van Tuan - Director of the Department of Information Security - emphasized that Vietnam could be a hot spot for international cybercrime, as the number of ransomware attacks increased, especially on large enterprises at the beginning of this year, with ransom amounts reaching several million USD.
Mr. Tuan pointed out the worrying situation, after securities companies in Vietnam were attacked at the beginning of the year, the Ministry of Information and Communications inspected other securities companies and found that many errors were still there and not fixed.
The level of account leaks in agencies and organizations remains alarmingly high. Employees of many agencies and organizations are not concerned about security.
625 websites of 28 Ministries in 53 provinces and cities all have betting advertisements inserted.
To ensure information security, according to Mr. Tuan, units need to develop proactive response plans, react quickly, and recover from incidents; strictly implement legal regulations on information security; apply the principle "if the system is not secure, do not put it into use"; conduct regular combat drills to detect vulnerabilities in their systems...
Sharing at the workshop, VCS representative emphasized that it is time for organizations and businesses to change their mindset about cybersecurity, shifting from a defensive stance to a proactive strategy to enhance resilience and ensure business continuity against cyber attacks.
With high-level thematic sessions, businesses, international and domestic consultants, representatives of state management agencies and VCS information security experts participated in in-depth discussions focusing on analyzing issues and challenges in cyber security, in order to find solutions to transform strategies from prevention to response and recovery after cyber attacks.
The workshop also organized a session on simulating ransomware attacks and response plans and threat check activities - Assessing the risk of information security loss and ransomware risks.
Through the report, businesses can grasp the situation of their business risks such as leaked accounts, data leaks, fake websites, security holes... to build effective response plans.
