Proactively organize system safety protection activities during Tet
Proactively organizing information system security protection activities both before and during the 2024 Lunar New Year holiday is a common recommendation of experts for agencies, organizations and businesses.
Specifically, at the request of the Ministry of Information and Communications, there are 7 important steps that units need to focus on, including: Reviewing and ensuring that systems are fully implemented with protection measures according to safety levels. Assign on-site forces to monitor 24/7 and proactively monitor regularly and continuously centralized information security monitoring systems and centralized malware prevention and control systems to promptly handle and overcome problems. During the cyber attack, the malware warning was verified.
Review, test and remove malware for all servers and workstations in the network; Priority is given to information systems with IP addresses on the Botnet IP List that are warned monthly or unexpectedly by the Information Security Department.
During the 2024 Lunar New Year holiday, units need to have IT and information security teams on duty 24/7 to protect the system and ensure smooth operation. (Illustration photo: T.Uyen)
Along with that, it is necessary to proactively review vulnerabilities and weaknesses in information systems under management and deploy solutions to prevent and thoroughly overcome vulnerabilities and weaknesses that have been approved by the Department of Safety. warning information. Effectively use and exploit 2 digital platforms: National Cyber Information Security Incident Handling Coordination – IRLab and Digital Investigation Support – DFLab in coordinating and handling cyber attack incidents.
Ensure continuous connection to the technical system of the National Cyber Security Monitoring Center for support in monitoring, detection, early warning and handling; promptly share information with the Information Security Department when detecting signs of cyber attacks on information systems.
Finally, propagate and raise awareness and basic skills about cyber information security, be alert about malicious information, fake news and fraudulent information in cyberspace for staff in the unit.
Particularly for businesses providing telecommunications and Internet services and organizations and businesses providing digital transformation platforms, in addition to ensuring adequate human resources are available to monitor, support and troubleshoot security incidents. To ensure safe and smooth telecommunications and Internet infrastructure, these units are also required by the Information Security Department to fully deploy protection measures. At the same time, remedial measures must be seriously and promptly implemented at the request of the Ministry of Information and Communications and competent authorities.
From the perspective of information security businesses, VSEC expert Be Khanh Duy recommends that units and organizations pay attention to the importance of recognizing in advance information security risks and incidents that may cause disruption. Lunar New Year and have appropriate plans and response options for each incident. In particular, it is necessary to have an IT and information security team on duty during the Tet period to ensure the system operates smoothly; Monitor and detect any abnormalities that may cause information insecurity for timely handling and response.