CIC hacking incident: Exploiting and sharing leaked data will result in legal action.

The Vietnam National Cyber ​​Emergency Response Center (VNCERT) has just announced that it has received a report about a cybersecurity incident at the National Credit Information Center (CIC). Initial reports indicate signs of a personal data breach.

Immediately after receiving the information, the Cyber ​​Security and High-Tech Crime Prevention Department directed VNCERT to take the lead and coordinate with network security service providers including Viettel , VNPT, NCS, CIC, and functional units of the State Bank of Vietnam. The parties simultaneously implemented technical and operational measures to respond, verify, and ensure cybersecurity. At the same time, relevant data and evidence were collected for processing according to the law.

Initial verification results indicate signs of cyberattacks and intrusions aimed at stealing personal data. The exact amount of data illegally obtained is still being compiled and clarified.

VNCERT requests that all organizations and individuals absolutely refrain from downloading, sharing, exploiting, or using leaked data without authorization. Violations will be dealt with according to the law.

In addition, VNCERT recommends that agencies and businesses, especially financial institutions and banks, proactively review and implement measures to comply with TCVN 14423:2025 standards on cybersecurity for critical information systems. Citizens are also advised to increase vigilance and prevent the risk of their personal information being exploited to spread malware, commit fraud, and steal assets.

Reportedly, on September 9th, an international hacker group offered to sell CIC's data on a foreign forum. CIC reported the incident to the Cyber ​​Security and High-Tech Crime Prevention Department (A05) as per regulations, and is cooperating with A05 and cybersecurity partners to enhance the security and safety of its information systems.

CIC stated that the incident has not affected the system, and all of CIC's operations are continuing as normal.

On September 9th, the State Bank of Vietnam (SBV) issued a notice advising people to be cautious of high-tech fraud. The SBV stated that recently, the incidence of high-tech crime and financial fraud through electronic channels has been on the rise, employing sophisticated methods such as: impersonating banks to send messages, distributing fake links/QR codes, impersonating police or court agencies, scamming people with promises of "easy jobs with high salaries" from abroad, or using AI/deepfake technology to steal personal information and assets.

To protect the rights and assets of citizens, the Payment Department of the State Bank of Vietnam recommends that citizens:

• Do not provide confidential information (password, OTP, card number, CVV, biometrics) to anyone under any circumstances.

• Do not access or scan links, QR codes, or applications from unknown sources.

• Always check and verify information through the bank's official channels (website, app, call center).

• Proactively protect your account: change your password regularly, enable balance change alerts, and set transfer limits.

• If you notice any suspicious signs, contact the bank's hotline or the police immediately.

• Be wary of offers of super-high returns on investments or overseas jobs to avoid falling into "cross-border scams".

The State Bank of Vietnam stated that it will coordinate with credit institutions to continue implementing technical, legal, and communication solutions to combat high-tech crime, but the vigilance and cooperation of the people are the key factors in preventing this problem.

Source: https://baodautu.vn/vu-cic-bi-hacker-tan-cong-khai-thac-chia-se-du-lieu-bi-lo-se-bi-xu-ly-d383819.html