(Hanoi, 13th, Comprehensive Report) Vietnam’s National Credit Information Center (CIC) was recently hacked, and a large number of creditor records and credit information have allegedly been leaked. The extent of the impact is still under assessment, and authorities have reminded the public to stay vigilant.
The center is managed by the State Bank of Vietnam, and its stored content covers sensitive information such as personal data, credit payments, risk analysis, and credit card data. Vietnam’s Cybersecurity Emergency Response Center issued a statement yesterday stating that after receiving reports of the attack on the 10th of this month, it has coordinated with the central bank and relevant agencies to implement emergency measures to contain the cyberattack and ensure system security.
The statement disclosed that initial investigations show hackers had unauthorized access and stole personal data, but the scope of the leak is yet to be confirmed. Authorities are gathering evidence for legal action and have also required institutions and individuals not to download, disseminate, or use the involved data without permission, otherwise they will be held legally accountable.
Authorities have also called on government agencies and enterprises, especially financial institutions and banks, to immediately review their information systems and strengthen protection in accordance with national standards. Meanwhile, the public is reminded to beware of criminals using leaked data for fraud, spreading malicious code, and asset embezzlement.
Reuters, citing a letter sent to financial institutions, reported that CIC suspects the international hacker group "Shiny Hunters" to be behind the attack; this group has previously hacked global enterprises such as Google, Microsoft, and Qantas Airways.
The letter also emphasized that this incident did not affect system operations or cause direct losses, and credit information services are continuing as usual.
In an analytical report, investment bank JPMorgan pointed out that this incident may drive Vietnamese banks to increase cybersecurity investments and pose potential risks to deposit flows, but unless larger-scale consequences occur, they still recommend continuing to invest in the Vietnamese banking sector.
Vietnam Military Electronics and Telecommunications Company (Viettel) revealed in its 2024 cybersecurity report that data leakage incidents in Vietnam have been increasing year by year, affecting around 14.5 million accounts, accounting for 12% of the global total.