Cybersecurity is a field that receives a lot of attention from the press, with questions related to ransomware attacks, online scams, etc., accounting for 30% of the total inquiries sent to the Ministry of Information and Communications before the Ministry's regular press conference in April 2024.

W-hop-bao-thuong-ky-thang-4-1.jpg
Deputy Minister Nguyen Thanh Lam chaired the Ministry of Information and Communications' regular press conference for April 2024. Photo: Chi Hieu

Speaking to the press at a press conference held on the afternoon of April 8th in Hanoi , chaired by Deputy Minister of Information and Communications Nguyen Thanh Lam, Mr. Tran Nguyen Chung, Head of the Information System Security Department, Information Security Agency (Ministry of Information and Communications), stated that cyberattack campaigns, especially ransomware attacks, are focusing on large agencies, organizations, and businesses that provide services to many citizens and businesses; mainly in important sectors such as securities, finance, banking, energy, and telecommunications…

Ransomware attacks typically originate from a security vulnerability within an organization. After infiltrating the system, the attacker will "lie low" and wait for the opportune moment to launch the attack, paralyzing the system, encrypting all of the organization's data, and demanding a ransom from the victim.

W-ong-tran-nguyen-chung-an-toan-thong-tin-1-1-1.jpg
According to Tran Nguyen Chung, Head of the Information System Security Department (Information Security Agency), many businesses and organizations in Vietnam still do not pay enough attention to or invest adequately in protecting their information systems. Photo: Chi Hieu

Mr. Chung believes that if agencies, organizations, and businesses comply with legal regulations on cybersecurity, conduct regular checks and assessments, monitor to detect and prevent attacks early, and proactively hunt for vulnerabilities and weaknesses, the system can be quickly remedied when attacked, minimizing damage.

Cyberattacks are unavoidable, but organizations and businesses can prepare. This preparation will help them promptly address incidents and quickly restore operations. (Mr. Tran Nguyen Chung)

Decree 85 of 2016 on ensuring information system security according to levels clearly states that information systems of state agencies, as well as systems serving many citizens and businesses, must be classified and protected according to security levels, from 1 to 5. Systems classified from level 3 and above must undergo periodic information security checks and assessments annually.

In Decision 05 of 2017 on the national network information security emergency response system, the Government directed agencies, organizations, and businesses to have incident response plans in place in case of attacks.

" Although implementation has begun, the level of investment and compliance activities so far are still not commensurate and do not meet the requirements ," commented Mr. Tran Nguyen Chung.

Specifically, the representative of the Information Security Department recommended that agencies, organizations, and businesses nationwide implement the tasks and requirements of the Prime Minister according to the timelines outlined in Directive 09 in February and Official Dispatch 33 on April 7th, urging units to pay attention to reviewing all information systems under their management.

Furthermore, according to representatives from the Information Security Department, agencies, organizations, and businesses are currently tending to conceal information when they encounter information security incidents or cyberattacks. This makes it difficult for authorities to warn, assist in remediation, and draw necessary lessons learned.

"Agencies, organizations, and businesses need to comply with incident response reporting procedures to relevant authorities to receive support in remediation, timely widespread warnings, and minimize damage to agencies and units," a representative from the Information Security Department suggested.

In response to the recent increase in ransomware attacks targeting organizations and businesses in Vietnam, the Cybersecurity Department has continuously issued warnings, urging agencies, organizations, and businesses nationwide, especially those operating in the finance, banking, securities, and telecommunications sectors, to proactively review and implement cybersecurity measures for information systems under their management.

The Information Security Department has also issued the "Handbook on Compliance with Legal Regulations and Enhancing Information System Security at Different Levels" (Version 1.0), along with developing a "Handbook on Preventing and Mitigating Risks from Ransomware Attacks" for agencies, organizations, and businesses, aiming to ensure national cybersecurity. These are useful documents that help agencies and organizations smoothly implement information system security measures at different levels, meet the requirements, and proactively prevent and protect their critical information systems from potential cyberattack threats.

With cyberattacks increasing sharply, the Prime Minister demands the highest level of cybersecurity. In response to the surge in cyberattacks, particularly ransomware, the Prime Minister has requested the implementation of several urgent tasks related to cybersecurity.