Cyber attacks on systems in Vietnam decreased by nearly 47%

In the first four months of this year, the Department of Information Security recorded 3,944 cyber attacks on systems in Vietnam.

According to the Department of Information Security, Ministry of Information and Communications , in April, the work of organizing inspection, assessment, supervision, and ensuring safety and network security for information systems serving e-Government continued to be promoted.

Statistics show that last April, the National Cyber Security Monitoring Center under the Department of Information Security, Ministry of Information and Communications recorded, warned and provided instructions on handling 498 cyber attacks causing incidents to information systems in Vietnam, down 5.1% compared to March and down 46.9% compared to the same period in April 2022.

With the above figures, this is the second consecutive month in 2023 that the number of cyber attacks on systems in Vietnam causing incidents has decreased sharply. Specifically, in March, the number of cyber attacks on systems in Vietnam causing incidents was 525, down 68.9% compared to February 2023 and down 49.3% compared to the same period in 2022.

In the first 4 months of 2023, the total number of cyber attacks on systems in Vietnam causing incidents was 3,944, down from the first 4 months of last year.

Commenting on the fact that the number of cyber attacks on network systems in Vietnam has decreased sharply in recent times compared to the previous period, security experts said that one of the important reasons is that the work of ensuring information security and network security has been focused on by many agencies and organizations, with many steps forward and results after a period of increased investment, protection and monitoring.

However, according to the assessment of the Ministry of Information and Communications, the network safety and security of many agencies and organizations is still not guaranteed. In the coming time, the Ministry will continue to strengthen the monitoring of information system safety and proactively scan Vietnam's cyberspace.

In particular, at present, the whole country is still on holiday - a time when hackers often increase their cyber attacks. Talking to VietNamNet , Mr. Truong Duc Luong, Chairman of VSEC Company, said that based on the unit's monitoring tools, cyber attacks often increase by 30 - 40% during the holidays. The targets of cybercrime groups are mainly focused on organizations and businesses related to financial services such as banks, securities, insurance, etc.

Therefore, information system owners need to review the system to ensure compliance with regulations guided by state management agencies. Along with that, proactively or work with professional partners on information security to identify vulnerabilities and continuously monitor the information system to prevent risks and proactively respond to incidents.

“Organizations need to improve their ability to continuously protect their systems by organizing protection themselves through internal staff or outsourcing 24/7 monitoring services from reputable organizations in network information security,” Mr. Truong Duc Luong recommended.

From the reality of supporting many domestic organizations and enterprises to monitor and ensure network information security, VSEC representative analyzed that weaknesses exist in organizations with differences between types, in which financial and banking organizations have the highest level of maturity.

In general, organizations and businesses are aware of and are putting into practice many technical solutions to ensure information security in their units. Common weaknesses come from weak compliance control processes in many places, which have created loopholes from policy violations.

On the other hand, in reality, organizations are focusing more on external risks, but large-scale and widely distributed organizations also have internal risks that create cyber-attack risks. Therefore, VSEC experts believe that units need to pay attention to investing in preventing internal risks.

“Another important point is that the level of financial investment of many organizations, especially the state sector and small and medium enterprises, is not yet commensurate with the actual requirements of the system scale. Red Team is an effective solution for large enterprises and important organizations to have a direct and comprehensive view of the actual risks they may encounter,” added a VSEC representative.