These are the outstanding figures in the report "Information security risk situation in Vietnam in the third quarter of 2005" just released by Viettel Cyber Security (VCS).
The 55-page report, built on the Viettel Threat Intelligence system - a platform for monitoring, analyzing and warning of real-time threats, shows that the wave of cybercrime is exploding at an unprecedented rate.
Report on Information Security Risk Situation in Vietnam in the third quarter of 2025 (Photo: Viettel Cyber Security).
Cyber attacks explode on many platforms
According to VCS’s report, the trend of cyber attacks still revolves around the issues that have been prominent for many years. However, the third quarter of 2025 recorded a sudden increase in both scale and impact, showing the seriousness of the attacks, in the context of data becoming an increasingly expensive resource.
Vietnam recorded more than 502 million leaked business data records. The number of stolen personal accounts was recorded at 6.5 million accounts, up 64% compared to the previous quarter. The financial - banking, energy and essential infrastructure sectors were the most heavily affected, with the scale of data breached reaching hundreds of millions of records.
From VCS's exclusive data, online fraud continues to rise sharply, with nearly 4,000 phishing domains and 877 fake brand websites detected, up 325% and 264% respectively compared to the same period in 2024.
These campaigns mainly impersonate banks, government agencies or e-commerce brands, spreading messages and emails containing fake links to steal financial information, accounts and OTP codes.
Cyber attacks do not only occur at the user level but also continuously target large, important systems. Along with the incident of a large system containing bank customer information being sold, VCS also recorded 17 cases, with more than 195 million records exposed.
In the consumer-personal services sector, 62 breaches involving 177 million records, equivalent to 2.43 GB of data, were also discovered.
Among the causes mentioned, a new point that has appeared is that many serious incidents come from exploiting vulnerabilities on products that have reached the end of their support life cycle (end-of-life).
In addition, distributed denial of service (DDoS) attacks also increased in frequency and intensity. Viettel AntiDDoS system recorded more than 547,000 attacks in the quarter, double the same period in 2024.
September saw a spike in attacks, nearly four times the monthly average. The most common form was carpet bombing - attacking the entire IP range of the target at the same time to create a huge amount of traffic, paralyzing the system even though each IP address only has an average load.
AI shaping the next generation of cyber attacks
Artificial intelligence technology is affecting every field, and cybersecurity is no exception. In some cases of advanced persistent threat (APT), Viettel Cyber Security experts assess that AI has been used to automate the process of reconnaissance and exploitation of vulnerabilities, significantly increasing the success rate of attacks.
AI has also fueled the rise of Malware-as-a-Service (MaaS), which has lowered the technical barrier to entry for even low-skilled individuals. MaaS platforms have exploded, allowing non-experts to purchase complete attack packages for just a few dozen dollars.
“One of the most worrying developments is the emergence of AI-powered polymorphic malware,” VCS experts warn. “AI allows these malware to not only change their structure but also generate new variants more intelligently and sophisticatedly than ever before.”
As one of the leading cybersecurity service providers in Vietnam, Viettel Cyber Security also offers a series of recommendations for Vietnamese organizations and businesses in building a multi-layered defense strategy, combining smart monitoring technology and human training.
Accordingly, in the context of increasingly sophisticated cyber attacks, organizations and businesses need to shift from reactive thinking to proactive defense, applying Threat Intelligence platforms to detect early signs of intrusion, data encryption attacks or targeted campaigns (APT). Cooperation and information sharing with cybersecurity service providers also helps increase the ability to provide early warning and response when incidents occur.
See the full Report on Information Security Risk Situation in Vietnam, Quarter III/2025 here: https://viettelsecurity.com/vi/resource-report/bao-cao-tinh-hinh-nguy-co-attt-tai-viet-nam-quy-3-nam-2025/
Source: https://dantri.com.vn/cong-nghe/bao-cao-cua-vcs-tan-cong-mang-bung-no-tai-viet-nam-trong-quy-iii-20251022151858333.htm
![[Photo] Prime Minister Pham Minh Chinh chairs meeting on nuclear power plant construction](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/10/22/1761137852450_dsc-9299-jpg.webp)
Comment (0)