Since August, the Department of Information Security (Ministry of Information and Communications) has continuously detected and warned about targeted attack campaigns (APT) targeting organizations and businesses in Vietnam.
According to the National Cyber Security Monitoring Center (NCSC) under the Department of Information Security, recently, the unit has recorded information related to intentional cyber attack campaigns using complex malware and sophisticated attack techniques to penetrate important information systems of organizations and businesses, with the main goal of cyber attacks, information theft and system sabotage.
 |
| The intentional attack using malware to encrypt data on VNDIRECT's system earlier this year is a big lesson for units in Vietnam about ensuring information security. (Photo: DV) |
In the September 11 warning sent to the specialized information technology and information security units nationwide, the Information Security Department provided detailed information about APT attack campaigns by three attack groups: Mallox Ransomware, Lazarus and Stately Taurus (also known as Mustang Panda).
Specifically, along with synthesizing and analyzing the attack behaviors of attack groups in 3 targeted attack campaigns targeting important information systems, including: Attack campaign related to Mallox ransomware, Lazarus group's campaign using Windows applications impersonating video conferencing platforms to spread many types of malware, and Stately Taurus group's campaign exploiting VSCode to attack organizations in Asia.
The Information Security Department has also released cyber attack indicators - IoCs so that agencies, organizations and businesses nationwide can review and detect early risks of cyber attacks.
Just before that, in August 2024, the Department of Information Security also continuously issued warnings about other dangerous targeted attack campaigns such as the campaign using the 'AppDomainManager Injection' technique to spread malware, which was identified as related to the APT 41 group and affected organizations in the Asia-Pacific region, including Vietnam.
In addition, the cyberattack campaign carried out by the APT StormBamboo group targeted Internet service providers, with the aim of deploying malware on users' MacOS and Windows systems to gain control and steal important information; the cyberattack campaign was carried out by the APT MirrorFace attack group, with the 'targets' being financial institutions, research institutes and manufacturers...
In warnings about APT attacks, the Department of Information Security recommends that agencies, organizations and businesses conduct inspections and reviews of information systems in use that may be affected by the attack campaign; proactively monitor information related to cyber attack campaigns to prevent early attacks and avoid the risk of being attacked.
Source: https://baoquocte.vn/lien-tiep-xuat-hien-chien-dich-tan-cong-apt-nham-vao-viet-nam-287282.html
Comment (0)