This platform will automatically assess the severity and impact of security risks; perform data analysis to detect and warn early about information security risks.
On the morning of May 30, the international conference and exhibition on Cyber Security (Vietnam Security Summit 2024) took place in Hanoi. The annual event on information security was organized under the auspices of the Ministry of Information and Communications, the Department of Information Security (Ministry of Information and Communications) and the IEC Group, attracting more than 1,000 delegates in charge of information technology, information security from the Government, financial - banking, insurance, telecommunications, e-commerce, transportation - logistics enterprises...
According to information at Vietnam Security Summit 2024, in 2023 alone, the world is estimated to lose up to 8,000 billion USD due to cyber attacks (equivalent to nearly 21 billion USD per day), that number is expected to increase to 9,500 billion USD by 2024. Every 11 seconds, an organization worldwide is attacked by Ransomware (data encryption for ransom)...
With the theme “Security in the era of artificial intelligence explosion”, Vietnam Security Summit 2024 is a forum for representatives of competent authorities and experienced experts in the field of cybersecurity to share orientations, visions and solutions to enhance the capacity to ensure database security in the era of artificial intelligence (AI) explosion.
In his opening remarks, Deputy Minister of Information and Communications Pham Duc Long affirmed that ensuring information security requires synchronous coordination between organizations, businesses and government agencies. This cooperation not only opens up opportunities for sharing information and experience but also helps us enhance our ability to respond quickly and effectively to threats.
According to Deputy Minister Pham Duc Long, in addition to the benefits it brings, AI technology is being used by cybercriminals to easily create new malware, create new, sophisticated phishing attacks with many diverse attack scenarios, or use Deepfake technology to carry out online phishing campaigns in cyberspace...
To create a safe cyberspace, protect people from cyberattacks, in addition to the responsibility of specialized agencies or cyber security enterprises, ensuring information security requires the cooperation of the whole society. This process requires continuity and regularity, working together to deal with increasingly sophisticated and complex information security threats.
According to Deputy Minister Pham Duc Long, to ensure safety in the boom period of AI technology and emerging technologies, agencies and organizations need to clearly understand and implement a comprehensive review and assessment of the current status of information systems, organize the implementation of information system security assurance at each level and fully implement information security assurance plans.
At Vietnam Security Summit 2024, the Department of Information Security (Ministry of Information and Communications) launched and officially put into operation the Information Security Risk Management, Detection and Early Warning Platform. “This platform, when put into use, will greatly contribute to ensuring national network information security. Agencies, organizations, businesses, especially small and medium-sized enterprises, can participate in using it immediately, free of charge, to serve the work of ensuring network information security," said Deputy Minister Pham Duc Long.
The information security risk management, detection and early warning platform is the fourth digital platform established by the Information Security Department to support agencies, organizations and enterprises in managing and implementing network information security. Three digital platforms have been put into operation since the previous phase, including the platform to support information system security management at all levels; the platform to support coordination and incident response; and the digital investigation support platform.
Mr. Pham Thai Son, Deputy Director of the National Cyber Security Monitoring Center (NCSC, under the Department of Information Security) said that according to statistics, the number of information security vulnerabilities discovered and announced tends to increase continuously every year. In 2023, there were up to 29,000 information security vulnerabilities, meaning that on average, about 60 - 70 new vulnerabilities were discovered every day.
As the number of digital assets of organizations increases, new attack vectors are constantly increasing over time, and the attack surface is expanding. Information security risks can appear on any digital asset, and it is difficult for the owner or operator of the information system to control all risks. “Therefore, the Department of Information Security has built a platform for managing and detecting early warnings of information security risks to support organizations to comprehensively control information security risks,” said Mr. Pham Thai Son.
According to Mr. Pham Thai Son, the information security risk management and early warning detection platform operates based on four pillars: supporting risk management on digital assets such as software and hardware used in the organization, helping system owners have an overview of attack surfaces that can be exploited for attacks; automatically assessing the severity and impact of security risks; performing data analysis to detect and give early warnings of information security risks, especially for Zero-day vulnerabilities; providing recommendations for remediation for each detected risk.
TRAN BINH
Source: https://www.sggp.org.vn/ra-mat-nen-tang-so-giup-phat-hien-som-rui-ro-an-toan-thong-tin-post742233.html
Comment (0)