Warning of an explosion of Ransomware attacks

In response to the recent surge of Ransomware attacks, the Ministry of Information and Communications (MIC) urges domestic organizations to proactively examine the provided indicators to address cybersecurity risks and threats early.

According to cybersecurity reports from July 2024, there has been a recent increase in targeted cyberattacks, particularly through data encryption methods such as ransomware. Several information systems of government agencies, organizations, and businesses in Vietnam have experienced ransomware attacks, leading to operational disruptions and causing material losses, reputational damage, and challenges to ensuring national cybersecurity.

To provide early warnings of potential targeted attacks, cybersecurity experts have collected, analyzed, and identified numerous Indicators of Compromise (IOC) related to cyberattacks that could impact agencies and organizations in Vietnam. A comprehensive list of these indicators has been distributed to entities across the country.

The indicators of cyberattacks provided by the website alert.khonggianmang.vn.

Specifically, each indicator of cyberattacks is related to Advanced Persistent Threat (APT) groups, including APT Kimsuky, APT41, APT VoidBanshee, APT Ghost Emperor, and APT MirrorFace.

What is APT?

APT (Advanced Persistent Threat) is a form of cyberattack that employs advanced techniques to infiltrate the target's network and steal data. This type of attack typically unfolds over weeks, months, or even years until the hackers achieve their objectives. APT attacks often combine various methods, including phishing, malware, zero-day vulnerabilities, and web attacks.

Experts view Advanced Persistent Threat (APT) attacks as significantly more sophisticated and dangerous than standard cyberattacks. The impact of APT attacks is severe, with potential consequences including the theft of intellectual property such as trade secrets or patents, unauthorized access to sensitive information like personal data and employee records, and the destruction of critical organizational infrastructure such as databases and management servers. In some cases, these attacks can even lead to the complete takeover of the organization’s domain.

APT attacks not only disrupt business operations but also cause significant financial losses, damage to reputation, and harm to the credibility of an organization or company. Additionally, if not addressed promptly, these attacks can plunge the business into a severe crisis.

Proactively prevent and detect targeted attacks – APT

To ensure the safety of information systems for agencies, businesses, and organizations specifically, as well as for Vietnam's cyberspace in general, cybersecurity experts advise that entities urgently conduct continuous inspections and reviews, and address any security vulnerabilities across all systems, including computers used by staff for work.

Some measures to counter Advanced Persistent Threat (APT) attacks:

1. Implement Layered Security

Layered security involves dividing a network system into multiple layers and implementing defensive measures for each layer. The deeper the layer, the more robust the security measures should be. For example, in addition to controlling network traffic with firewalls, businesses should also deploy other protective measures such as keeping software up-to-date, backing up data, and encrypting information.

2. Regularly Control and Assess Cybersecurity:

Business needs to continuously monitor and oversee their network security 24/7 to detect early signs of APT attacks and implement timely measures to prevent the attack from spreading throughout the system.
Business can utilize cybersecurity monitoring and alert solutions provided by HPT, such as HCapoll o, to stay informed about system status and address any unusual alerts or violations occurring within the system.

3. Enhance Cybersecurity Awareness Training for Employees:

Employee cybersecurity awareness accounts for 50% of a company's network security. Actions driven by a lack of awareness, such as clicking on strange links, downloading unknown files, or using easily guessable passwords, can lead to serious consequences. Companies should conduct regular training sessions to keep employees updated on the latest trends and best practices to effectively respond to cyber threats.

4. Invest in Security Technology:

Invest in technologies that protect passwords, such as Face ID, fingerprint sensors, and enhanced two-factor authentication (2FA), to safeguard both customers and the company from sophisticated APT hackers.

YubiKey Security Key: A Safe and Reliable 2FA Authentication Solution

The YubiKey security keyis a highly secure and reputable 2FA authentication method developed by Yubico, a leading hardware authentication provider from Sweden. The YubiKey enhances personal data security through two-factor authentication (2FA). This physical device not only verifies the user's identity but also strengthens the security of personal data and online accounts.

See more: The comparison of various 2FA (two-factor authentication) solutions

HPT - The exclusive official distributor of YubiKey in the Vietnamese market

With a commitment to professionalism and nearly 30 years of experience in the IT field, HPT is proud to be the official distributor and e-commerce agent for Yubico's YubiKey security keys in Vietnam. HPT guarantees to provide genuine YubiKey products at affordable prices with assured quality, helping users enhance the security of their online accounts.

Customers can verify Yubico's official partner information here.

Contact Information:
Website:hpttechstore.com
Hotline: 028 38 266 206
Email:[email protected]

Reference: Vietnamnet.vn