According to the National Cyber Security Monitoring Center (NCSC) under the Department of Information Security, in September, this unit reviewed inappropriate advertising content on the website of a state agency with the domain name ".gov.vn".
Many government agency websites are exploited to install, post, redirect or link to inappropriate advertising content such as card games, gambling, etc.
As a result, many government agency websites are exploited to install, post, redirect or link to inappropriate advertising content such as card games, gambling, etc.
These files appear in Google search results and redirect users to other websites when accessing the link. This becomes dangerous if the website is exploited to post and disseminate bad and toxic content, distorting the sovereignty, policies of the Party and policies and laws of the State.
Notably, 10 ministries and sectors whose websites are being inserted with inappropriate advertising content are: Industry and Trade; Education and Training; Transport, Science and Technology; Labor, Invalids and Social Affairs; Home Affairs; Agriculture and Rural Development; Health; Culture, Sports and Tourism and the Supreme People's Procuracy.
In addition, there are 18 provinces and cities with websites containing inappropriate advertising content, including: Ha Tinh, Tuyen Quang, Da Nang, Dien Bien, Dong Nai, Hanoi, Hai Duong, Hai Phong, Ho Chi Minh City, Kon Tum, Lai Chau, Phu Tho, Quang Binh, Quang Nam, Quang Ninh, Quang Tri, Thai Binh and Thanh Hoa.
NCSC's technical system has recorded 57,916 weaknesses and information security vulnerabilities in the information systems of state agencies and organizations. The number of weaknesses and vulnerabilities mentioned above is very large.
According to experts from the Information Security Department, one of the main reasons why ".gov.vn" websites are being hacked, and even after being handled, they recur is because the content posted on government agency websites (.gov.vn) is often highly rated by search engines. Because of this high advertising value, subjects find many ways to attack and post advertising information on government agency websites.
The Department of Information Security requested NCSC to assess and identify dangerous vulnerabilities with widespread impacts and guide ministries and branches to overcome them, paying special attention to vulnerabilities that have been and are being exploited by attack groups to carry out targeted attacks (APT).
Faced with the above situation, NCSC warns of information insecurity in the systems of state agencies.
In addition to handling the inserted content, experts recommend that units need to investigate and find the way hackers penetrated the system, thereby detecting vulnerabilities and patching all of these vulnerabilities. In particular, note, review and handle vulnerabilities with both website software and server operating systems to ensure information security for the system.
Quick view 8pm: Panoramic news on October 24
Source link
Comment (0)