This information was given at the seminar "The maturity level of Vietnamese enterprises and organizations in responding to incidents" organized by the National Cyber ​​Security Association (NCA) on May 21.

Hacker lay low for nine months before attacking…

Commenting that targeted cyber attacks are constantly increasing, Major Tran Trung Hieu - Deputy Director of the National Cyber ​​Security Center, a professional unit under the Department of Cyber ​​Security and High-Tech Crime Prevention - A05 ( Ministry of Public Security ) - said: Behind many cyber attacks are large potential organizations. In fact, there have been hackers "lying in" in the enterprise's system for nine months before the attack.

Mr. Hieu shared information: "Targeted cyber attacks are increasing in number and sophistication and complexity. Not only that, behind the targeted cyber attacks are organizations with great economic potential, large human resources, and equipped with many systematic cyber weapons, not just individuals like before.

In recent times, according to Mr. Hieu, there have been attacks on a number of large enterprises and organizations in Vietnam, leaving serious consequences and very complicated to overcome. Among them, large enterprises in the fields of finance, securities, transportation, hospitals, and major media agencies... have been deeply attacked, data stolen, and the entire system encrypted...

Specifically, according to Mr. Vu Ngoc Son, head of the NCA's technology research department, the survey results conducted by the NCA show that in 2024 there will be up to 659,000 different cyber security attacks, affecting about 46.15% of agencies and businesses.

Can be attacked at any time!

Speaking at the seminar, Mr. Vu Ngoc Son commented that most Vietnamese enterprises are not ready to respond to cyber security incidents.

Cisco's report found that only 11% reached the required level of maturity, up 5% from last year but still a large gap.

According to a survey conducted by NCA in December 2024, up to 52.9% of businesses and organizations in Vietnam do not have adequate technology solutions to respond to cybersecurity incidents, 56.16% do not have enough specialized personnel for cybersecurity. In terms of technology, 14% of businesses do not have anti-virus software, more than 24% of businesses do not have firewalls, nearly 36% do not have data backup and recovery solutions, only 48% of businesses have network security monitoring solutions...

Discussing at the seminar, cybersecurity experts all agreed that the main reasons for Vietnam's low response capacity can be easily seen: "It is clear that the level of readiness to respond to cybersecurity incidents of businesses and organizations in our country is not high. The capacity of businesses and organizations is still quite far from the requirements for ensuring cybersecurity according to international standards," Mr. Vu Ngoc Son emphasized.

Talking about the importance of taking more drastic and specific actions to improve cyber attack response capacity, Mr. Son recommended: Business and organization leaders must be the first to proactively participate in solving the problem of incident response capacity.