Personal data leak of National Credit Information Center CIC: Warning for vigilance

The Vietnam Cyber ​​Emergency Response Center (VNCERT) announced on the afternoon of September 11 about the personal data leak incident of the National Credit Information Center (CIC).

Specifically, on September 10, the Vietnam Cyberspace Emergency Response Center received a report of a cyber security incident and signs of personal data breach occurring at the National Credit Information Center.

The Department of Cyber ​​Security and High-Tech Crime Prevention immediately directed VNCERT to preside over and coordinate with professional units to coordinate with enterprises providing Network Information Security services ( Viettel , VNPT, NCS), CIC, and functional units of the State Bank to verify information; deploy professional and technical measures to respond to incidents; strengthen solutions to ensure network security, collect data and evidence for handling according to regulations.

Initial verification results show signs of cybercrime attacks and intrusions to steal personal data. The amount of data illegally appropriated is being continuously counted and clarified.

In the notice, VNCERT requests that organizations and individuals do not arbitrarily download, share, exploit, or use the above data. In case of intentional violation, they will be handled according to the provisions of law.

VNCERT recommends that agencies and businesses, especially financial institutions and banks, proactively review and implement compliance with TCVN 14423:2025 - Network security, requirements for important information systems; recommends that people raise their vigilance against cybercrime activities, and avoid being exploited with the above information to carry out acts of spreading malware, fraud, and property appropriation.