Contribute to developing Vietnam's cybersecurity capacity
Security Bootcamp 2024 with the theme 'Humanity' was recently organized by the Vietnam Internet Association - VIA in Phu Quoc, Kien Giang on September 28-29, attracting the participation of more than 300 cybersecurity experts in Vietnam.
2024 is the 11th time the Security Bootcamp forum on network information security is organized by the Vietnam Internet Association with the aim of building and connecting information security personnel nationwide to exchange and share the latest knowledge and skills.
Sharing with VietNamNet reporter, Mr. Vu The Binh, Vice President and General Secretary of the Internet Association affirmed: Nowadays, in the trend of digital transformation, network safety and security have become a major concern of many agencies, organizations and businesses.
Even VIA members, although operating in many different fields, are very interested in and have made appropriate investments in the field of cyber security and safety.
“The regular maintenance of the Security Bootcamp forum is also an activity of the Association to contribute to the development of the Internet ecosystem as well as cyber security and safety in Vietnam, focusing on developing cyber security and safety capacity,” Mr. Vu The Binh shared.
'Information Security Arena' is a highlight of Security Bootcamp, with the professional quality of the exercises continuously improving over the years. This year, 'Information Security Arena 2024' has the participation of 22 teams, each team has 3 members, from many agencies, organizations and businesses.
During the program, which lasted from the afternoon of September 28 to the end of September 29, the teams participated in a simulation environment of a business network system with many different components.
The scenario given to the teams was that the company's system had just been attacked, and the unit needed to use the services of information security experts to do 3 things: Analyze and find the reason why hackers bypassed the biometric system to penetrate the system; analyze and find evidence that the system was controlled, restore encrypted data; find weaknesses and vulnerabilities that were exploited.
In the final results, Vietcombank's team ranked first; second place belonged to the 'VCS - genZ' team from Viettel Cyber Security; the two teams ranked third were the team from One Mount Company and the 'MSB-AllorNothing' team from Maritime Bank.
More importantly, according to experts, through participating in the 'Information Security Arena', information security personnel of organizations and businesses have been trained and improved their ability to respond to situations where their systems are attacked by cyber attacks; thereby gaining experience in handling and responding to information security incidents in reality at their units.
Cyber attackers' tricks and techniques are increasingly sophisticated.
As in previous years, the presentations shared at the in-depth workshop on network information security within the framework of Security Bootcamp 2024, are content that receives great attention from the human resources community working in this field.
Experts all agree that, currently, many agencies, organizations and businesses in Vietnam have realized the importance of ensuring information security and are conscious of building a more complete and better system and network security team for their units.
However, along with that, the attackers' tricks and techniques are becoming more and more sophisticated to "bypass" the monitoring system.
At the workshop, Mr. Nguyen Hoang Hai, Head of Incident Handling and Threat Hunting Services of Viettel Cyber Security, shared about some forms of communication with the C&C server to hide from the attacker's monitoring systems such as communicating with the C&C via valid protocols, controlling the server via email, or hiding the C&C domain from the monitoring system.
The way the attacker hides and connects to the C&C server is a situation that the Viettel Cyber Security team has encountered in practice when providing monitoring and troubleshooting services to businesses.
From the perspective of a unit specializing in researching security solutions for IoT devices, Mr. Le Pham Thien Hong An, Head of the IoT security research team at the VNPT Information Security Center, emphasized the need to detect and promptly update patches for security vulnerabilities on unmanned aerial vehicles - drones, UAVs.
According to this expert, there is a serious security hole that allows attackers to control drone devices in less than 1 minute.
“Early detection of serious security vulnerabilities in Drones and UAVs will open up a new direction in developing advanced security measures, helping to protect modern drone systems from cyber security threats,” said Mr. Le Pham Thien Hong An.
The use of artificial intelligence technology - AI in the confrontation between the two sides of attack and defense is also an issue that attracts the attention of delegates attending Security Bootcamp 2024.
Mr. Bui Tuan Anh, Head of Technology and Expert Services Department of VSEC Company, commented that in the context of artificial intelligence technology - AI exploding globally, a worrying reality has emerged that attackers are increasingly using AI to "overcome" traditional security systems.
In that context, Mr. Bui Tuan Anh said that AI is opening a new era in the field of cybersecurity. This new technology promises to solve the major challenges that operations and security teams are facing, from shortening response times, reducing costs, improving efficiency, to improving scalability.
“However, we also need to remember that AI needs to be intelligently combined with human expertise, efficient workflows, and an overall security strategy. Only then can we fully exploit the potential of AI in protecting our network systems,” Mr. Bui Tuan Anh added.
Source: https://vietnamnet.vn/ai-se-giup-doi-van-hanh-he-thong-phat-hien-som-va-chong-tan-cong-mang-hieu-qua-2327458.html
Comment (0)