After a similar event in Ho Chi Minh City, on November 6, the IT and information security senior leadership conference - CIO CSO Summit 2024 with the theme 'Transforming information security strategy: From prevention to response and recovery after cyber attacks' continued to be organized by the Department of Information Security (Ministry of Information and Communications), Viettel Cyber ​​Security and IEC in Hanoi.

Affirming the view that digital transformation must go hand in hand with network safety and security, Mr. Le Van Tuan, Director of the Department of Information Security (Ministry of Information and Communications) analyzed: “ In real life, we build and protect the Fatherland, so in cyberspace, we must also build and protect the Fatherland no different from real life. Implementing regulations on information security is mandatory, not a choice”.

Updating the practical situation of network information security in Vietnam, Mr. Le Van Tuan said that in the first 9 months of this year, the Department of Information Security detected, warned and guided the handling of 4,279 cyber attacks causing incidents to information systems in Vietnam, and recorded 243,337 malicious codes since the beginning of the year.

The situation of leaked accounts of agencies and organizations is still at an alarming level. Specifically, the Information Security Department has recently sent separate warnings to 5 ministries, branches and localities where information leaks have occurred.

The results of the review by the Department of Information Security of state agency websites show that up to 625 websites of agencies and organizations belonging to 28 ministries, branches and 53 provinces have been inserted with links advertising betting and illegal content.

Notably, despite a cyber attack on a securities company earlier this year, in September, the Information Security Department inspected another securities company and found that the unit still violated many information security regulations.

It seems that the 'hackers leave me alone' mentality still exists somewhere in business and organizational leaders.

From the perspective of an information security business, Director of Viettel Cyber ​​Security Nguyen Son Hai said: In Vietnam, network information security threats and risks are constantly increasing.

Specifically, according to the Viettel Threat Intelligence system, in 1 year, the number of brand fraud cases increased by 15%; stolen accounts increased by 21%; new security vulnerabilities increased by 10%, the number of initial victims of ransomware attacks was more than 10 times higher than the incidents that were made public; the number of personal and business data records in Vietnam for sale also increased by 2.5 times compared to the previous year.

“Clearly, in Vietnam, threats and attacks are exploding and increasing rapidly,” said Mr. Nguyen Son Hai.

Speaking at the in-depth discussion session, Ms. Trieu Thi Thu Lan, an expert from KPMG Vietnam, also agreed that cyber attacks on organizations and businesses in Vietnam have increased sharply.

The recent cyber attacks have raised a 'wake-up call' for businesses and organizations in Vietnam to give higher priority to ensuring information security and safety.

“Along with ensuring compliance with regulations and enhancing network information security capacity, businesses and organizations need to pay attention to building and nurturing a culture of information security and safety. We must make sure that all personnel in the organization, from leaders, managers to employees, are imbued with this culture, demonstrated through daily activities,” Ms. Trieu Thi Thu Lan recommended.

From analyzing challenges in cybersecurity such as increasing and complex threats, shortage of human resources, limited resources, etc., experts attending the CIO CSO Summit 2024 all agreed that it is necessary to shift strategies from prevention to response and recovery after cyber attacks, with the goal of forming a sustainable information security strategy for the unit, balancing efficiency and investment costs.

According to experts, the optimal, safe and fast approach is to choose a specialized partner for information security, so that businesses and organizations can focus on business development, ensuring continuous and sustainable business performance.

Cyber ​​attacks originating from within are a major concern for Vietnamese businesses . According to the results of the 2024 information security survey conducted by the Southern VNISA Association, targeted attacks, attacks for financial purposes, and attacks from within are major concerns for Vietnamese businesses.