“We consider this a common social problem, everyone joins hands to overcome it. We are working hard to get the system back to normal operation in the next few days. At present, some services have begun to operate again,” Mr. Quang said.
Bkav CEO Nguyen Tu Quang shared that Bkav, other units and VNDIRECT are gradually bringing services back to operation and hope that in the next few days the system will operate normally. Photo: Bkav.
Bkav CEO also said that an attack always has a left and right side, the left side here is as everyone has seen and VNDIRECT responded; The upside is that businesses have lessons learned for all markets. All companies can have their data encrypted, not just VNDIRECT. Businesses should consider this an opportunity to learn from experience, and troubleshooting this incident will help relevant teams gain experience, especially in prevention.
Technically, to prevent things like the above, businesses need to use monitoring systems, which means that with the current philosophy of cyber security, businesses sometimes need to accept hacker intrusions. into the system, but how to quickly detect that intrusion so hackers don’t have time to cause harm? This requires a technology system and a monitoring system. Bkav recommends that businesses, especially businesses with large systems, take note.
Second, related to encryption viruses, all computers, including personal computers and servers, businesses need to fully install anti-virus software, not missing a single device. Because just one device is open for hackers to gain access and then “escalate privileges” to penetrate all systems. All markets can encounter similar situations and the good thing is that through this, businesses will gain experience.
Continuing to share about security issues, Mr. Nguyen Tu Quang said that the prevention measure is that businesses must be ready to immediately detect incidents. Because technologically, hackers can find zeroday vulnerabilities, which have not been patched worldwide. They will take advantage of the time when there is no patch to find ways to penetrate the most systems around the world. Cases of ransomware viruses often act the same way. That means hackers find a zeroday vulnerability to penetrate. When businesses patch, hackers may have already penetrated, so another experience is that when patching vulnerabilities, businesses must check the system again because hackers may have infiltrated the system before.
“This is not 100% something businesses can prevent. They must always be ready. Hackers can come in at any time and businesses must find a way to detect it as soon as it enters,” Mr. Quang emphasized.
