In the first months of this year, Vietnam's cyberspace recorded a number of cyber attacks, especially attacks using ransomware.

Also in October, the Department of Information Security repeatedly warned domestic agencies, organizations, and businesses about the increasing trend of ransomware attacks.

According to the latest report from Viettel Cyber ​​Security, in the third quarter of 2024, ransomware and stealer groups operating in Vietnam include 2 ransomware groups Lockbit, Blackcat and 3 stealer groups Atomic, Braodo and Golden Pickaxe.

Both the Lockbit and Blackcat ransomware groups operate under the "Ransomware as a service" model; Lockbit targets businesses and organizations while Blackcat affects Windows users.

With 3 groups of stealers warned, Atomic targets the MacOS operating system, is widely sold on Telegram as a service and has the function of stealing cryptocurrency wallet credentials and passwords.

Golden Pickaxe uses social engineering attacks to trick victims into providing access and personal information including facial videos, which it then uses to steal money from victims' accounts.

Broodo is a malware that is spread by tricking users into downloading files containing malware, aiming to steal victims' account information on many popular browsers such as Chrome, Firefox, Opera...

Accordingly, experts recommend that agencies and organizations need to synchronously deploy many solutions to prevent and promptly respond to attacks, including attacks using ransomware and stealer malware.

Organizations need to be proactive in monitoring, detecting and promptly handling attacks, two measures that are of particular note.