Agencies, organizations and businesses are also required to strengthen supervision and be ready with handling plans when detecting signs of cyber exploitation or attack; Regularly monitor warning channels of authorities and large information security organizations to promptly detect cyber attack risks.
In its report on the situation of cyber information security in the last week of April 2024, the National Cyber Security Monitoring Center also warned about the targeted APT attack campaign carried out by the ToddyCat group, using Advanced tools for data theft. The ToddyCat attack group was first discovered in June 2022 when they conducted a series of attacks on government and military organizations in Europe and Asia.
With the latest attack campaign, the ToddyCat team has expanded its tool portfolio by adding software that collects data through tunnel channels. Security experts recommend that administrators use firewalls to block resources and IP addresses of Cloud services that can tunnel traffic. In addition, users should also avoid saving passwords on web browsers to enhance the security of the organization’s infrastructure.
Notably, in the newly issued warning, the Information Security Department (Ministry of Information and Communications) also noted that recent times have shown an increase in cyber attack campaigns targeting network equipment in the field of supply and demand. provides telecommunications services and energy organization.
In Vietnam, in early April, through monitoring and supervising cyber attack activities, NCSC experts noticed the emergence of ransomware data encryption attack campaigns targeting agencies and organizations. organizations and businesses in Vietnam, especially organizations operating in important fields such as finance, banking, energy, telecommunications…
According to a report by the standing agency of the National Committee on Digital Transformation, in the first quarter of this year, there were 4 ransomware attacks on Vietnamese businesses such as VNDIRECT, PVOIL, Wintel, and Itel. Ransomware attack incidents have caused disruption to operations and physical and image damage to agencies, organizations, businesses as well as activities to ensure national cyberspace safety.
With the requirement to ensure the safety of information systems at the highest level, the Prime Minister has asked ministries, branches and localities to focus on implementing a number of urgent tasks, including reviewing, Assess the situation of ensuring network information security with information systems under management; Strictly implement the deadline for completing and approving the safety level proposal dossier for 100% of the systems under management and fully deploy the safety assurance plan according to the approved level proposal dossier. .
Instructions for handling 2,323 cyber attack incidents on systems in Vietnam
In the first quarter of 2024, the Ministry of Information and Communications continued to promote and coordinate with the Ministry of Public Security to implement solutions to ensure network information security. Currently, the total number of information systems in the country is 3,418 systems, of which the number of information systems approved for safety level is 2,365 systems, reaching a rate of 68.2%, an increase of 9% over the same period. period of 2023. At the same time, information security monitoring and warnings are also focused. According to statistics, in the first 3 months of this year, the Ministry of Information and Communications recorded, warned and guided agencies, organizations and businesses to handle 2,323 cyber attacks causing problems on information systems in Vietnam. , down 32.6% over the same period last year.