According to the latest announcement from VNDirect this afternoon, March 27, the company has completed phase 1 in the roadmap to reopen the system. At present, customers with accounts at VNDirect can check their balances on the My Account system at: https://myaccount.vndirect.com.vn/bao-cao/bao-cao-tai-san/tong-quan-tai-san .
Latest announcement from VNDirect on the status of troubleshooting the display system when accessing the website
VNDirect recommends that customers change their passwords immediately after logging into the system. At the same time, the company also noted that the system has just been restored and may have a large number of customers accessing it, so the page may need to be reloaded to access.
“Because the system has just been restored and there may be a large number of customers accessing it, if an error occurs, we kindly ask you to wait and reload the page at another time,” the announcement from VNDirect stated.
VNDirect said it has restored the system and is reviewing and evaluating the system to ensure absolute security for customers transacting at the company.
The roadmap to reopen the system will include 4 phases. In phase 1, there will be a system to look up customer account status and information on My Account.
In phase 2, VNDirect will reopen the money trading system, underlying securities trading and derivatives trading on the basis of communication with the exchange. In phase 3, other financial products will be put back into operation. Finally, the company will restore all other features.
Speaking to Thanh Nien this afternoon, a cybersecurity expert said that up to now, VNDirect’s ability to open a system for customers to check their balances and change their passwords is a commendable effort. For customers, the most important thing is to quickly change their passwords.
The VNDirect incident is considered a software-related vulnerability, meaning a "zero day" vulnerability. This is a vulnerability that the manufacturer does not know about. Hackers somehow found it and exploited it.
"Rebuilding the system is not difficult for the operation team, the important thing is that after finishing the construction, they must find the hacker's way in to block it. With the "zero day" vulnerability, they will not be able to patch it themselves but have to wait for the manufacturer to update. In this situation, I think VNDirect will choose to isolate the partitions that they know have "zero day".
In phase 4, VNDirect announced that they will open all features, so at this point they may have narrowed down the area," the expert commented.
However, according to this person, we should not be subjective. Completely fixing the problem will even require replacing the entire system architecture, especially the backup system, which will still take a lot of time, possibly up to months.
The expert noted: "Customers need to be patient and cooperate so that VNDirect can focus on handling the situation."
Regarding the incident of VNDirect, Mr. Vu Ngoc Son, Technology Director of Vietnam National Cyber Security Technology Company, said that in this case, the backup system was also attacked, not just the main system.
When putting a service into operation, of course any unit will have to consider backup; at that time, it is possible that all possibilities leading to the backup system being attacked at the same time have not been calculated.
"This can be said to be a double disaster. In this case, I think the recovery time will be long because the backup system has been attacked," Mr. Son emphasized.
According to Mr. Son, the systems of securities companies and financial institutions all have investments and operating processes on a common level of network security in Vietnam.
"Obviously, securities companies, despite being equipped with better technology and security conditions than the public sector, still have incidents. That requires securities companies and financial institutions to have a high level of cybersecurity to ensure this," said the CTO of the Vietnam National Cyber Security Technology Company.
Previously, sharing with the press on March 26, Mr. Nguyen Vu Long, General Director of VNDirect, said that the company's system was attacked by a professional attack group, encrypting all of the company's data.
"We are starting the process of restoring the system so that we can connect and trade again. It is expected to take some more time because this is a common but relatively complex form of attack that requires time," said Mr. Long.
According to VNDirect, the company's online trading system incident occurred at 10:00 a.m. on March 24 at DC Fornix Duy Tan. The system was attacked by an international hacker organization. The virtual infrastructure of the system was attacked, causing the company's entire trading platform to be temporarily inaccessible.
Late in the morning of March 25, the Hanoi Stock Exchange (HNX) announced the temporary disconnection of VNDirect's transactions to HNX from March 25 until VNDirect completely fixes the problem.
On the afternoon of March 25, the Ho Chi Minh City Stock Exchange (HOSE) also announced that it had temporarily disconnected VNDirect's transactions with HOSE from March 25 until the company completely resolved the problem.
Late at night on March 25, the State Securities Commission issued a warning about the security of online securities trading systems.
The State Securities Commission requires the company to ensure that the information technology system and backup database operate safely and continuously according to the provisions of Clause 10, Article 89 of the 2019 Securities Law...
Source link
![[Photo] Prime Minister Pham Minh Chinh chairs Government Conference with localities on economic growth](https://vstatic.vietnam.vn/vietnam/resource/IMAGE/2025/2/21/f34583484f2643a2a2b72168a0d64baa)
Comment (0)