On July 25, the Authority of Information Security (Ministry of Information and Communications) in partnership with Kaspersky, organized an interactive protection simulation training to enhance awareness, proactive responses, and improve cybersecurity training. The program attracted over 200 agencies, organizations, and businesses, with more than 400 officials and experts from the National Network of Information Security Incident Response.

Opening the training session, Le Van Tuan, Director of the Authority of Information Security, emphasized the importance of securing information in the face of escalating cyber-attacks. He highlighted that cyber-attacks are increasingly targeting critical sectors and infrastructure such as energy, power grids, banking, healthcare, environmental resources, transportation, and telecommunications, causing significant damage to many countries.

Vietnam has recently experienced several severe security incidents involving data encryption, causing reputational and financial losses for organizations. In the first half of 2024 alone, the Authority of Information Security's technical monitoring system recorded over 90,000 information security vulnerabilities in Vietnamese agencies and organizations, with serious incidents increasing nearly 60% compared to 2023.

Tuan noted the rising trend of cyber-attacks on critical information systems, online fraud, data theft, and breaches caused by malware infections. The trade of stolen data is rampant and systematically organized, involving various entities. 

A report by Kaspersky revealed that the number of accounts compromised due to malware in Vietnam has skyrocketed, with 2023 figures 31 times higher than in 2020. Viettel's Cyber Security Company reported 46 data breach incidents and the sale of 13 million records, including over 12.3 GB of source code, in the first half of 2024.

Genie Sugene Gan, Kaspersky's Director of Government Relations and Public Policy for the Asia-Pacific, Japan, Middle East, Turkey, and Africa, stated that digital transformation has increased the "attack surface." According to a Kaspersky report, 82% of information security professionals admitted to experiencing at least one data breach due to digital transformation.

"Simulation training acts as a 'learn by doing' program, placing participants in scenarios where they face unexpected cybersecurity threats while maintaining business operations. This experience enhances awareness and decision-making collaboration between IT and non-IT personnel," said Genie.

Despite warnings from the Authority of Information Security and other authorities, as well as the media, the number of online fraud victims continues to rise. As of June 2024, the National Malicious Domain Alert and Prevention System has blocked 3,170 fraudulent websites, protecting nearly 11 million people from illegal websites. This situation demands organizations and businesses prioritize and enhance information security from the user end.

The Authority of Information Security hopes that this simulation training will provide leaders and responsible individuals with a comprehensive and visual understanding of their organization's information security, enabling them to make informed and effective decisions.

Trong Dat