The Military Industry - Telecommunications Group ( Viettel ) announced a report on the cybersecurity situation in the first half of 2024. The report provides information on data leaks, security vulnerabilities affecting Vietnamese businesses, ransomware attacks, and distributed denial of service (DDoS) attacks.

The report was developed by Viettel Cyber ​​Security (VCS) based on data from the Viettel Cyber ​​Security Knowledge System (Viettel Threat Intelligence).

In the first 6 months of 2024, Viettel Threat Intelligence recorded many increasing risks of information security. Specifically, the number of stolen personal information increased by 50% compared to the same period last year. The number of fake pages of organizations and businesses increased 4 times compared to the same period, increasing the number of scams and financial frauds. In the data leaks of businesses and organizations in Vietnam in the first half of the year, a total of 46 cases, the most leaked information was customer information and purchase information of businesses in the retail sector, followed by eKYC information, information of many universities andeducational institutions. There were about 17,000 new vulnerabilities, of which more than half were high-level and severe vulnerabilities according to the Common Vulnerability Scoring System (CVSS). In particular, the report noted 71 vulnerabilities that could potentially affect organizations and businesses in Vietnam , including serious vulnerabilities in Ivanti Connect Secure internal network connectivity solutions and PaloAlto Networks PAN-OS firewall solutions. In the first half of 2024, the amount of data that was encrypted by attack reached 3 Terabytes with a total estimated loss of more than 10 million USD. A typical example is the Lockbit group's attack on a financial company in March this year, which caused a long-term service disruption. In addition, there are many other attack campaigns targeting targets across many fields such as finance, public services, information technology, and manufacturing. Viettel Threat Intelligence recorded that 56 organizations in these fields were initially attacked by Ransomware but had not had their data encrypted. There were nearly half a million distributed denial of service (DDoS) attacks, up 16% year-on-year. In terms of DDoS trends, the number of <1Gbps attacks tripled year-on-year in 2023. This is due to a new attack method that uses extremely low-intensity attacks to bypass traffic threshold-based protection systems.

VCS recommends that organizations and businesses review backup systems, ensuring that backup data is physically and logically separated from main systems.

VCS recommends that organizations and businesses review backup systems, ensure that backup data is physically and logically separated from the main systems, and is capable of recovering when the main system encounters serious problems. Businesses also need to review, tighten access rights and manage servers and access control systems, add multi-factor authentication mechanisms to key systems and accounts, and regularly update patches for internet-facing applications. Early information capture plays a strategic role in helping businesses stay proactive and ensure information security. Viettel Threat Intelligence is a service that provides information and knowledge about cyber security threats to support organizations and businesses in proactively developing prevention strategies and promptly handling threats before they become targets. Source: https://baochinhphu.vn/viettel-cong-bo-bao-cao-an-ninh-mang-6-thang-dau-nam-2024-102240826113423119.htm