The National Cybersecurity Center has developed TCVN 14423:2025, the first standard in the cybersecurity framework, to help agencies and organizations implement measures to ensure cybersecurity.

“We have noticed that information systems in Vietnam, despite standards, have been attacked for many years, from the Government, energy, and banking to the industrial sectors. This means that current regulations are not enough,” said Lieutenant Colonel Le Xuan Thuy, director of the center.

Important information systems in the field of national security which, if attacked, affect the governing agency but also the entire community. The information systems in the energy sector, if attacked, affect energy security, while attacks to telecommunications and banking systems will be very dangerous for the entire community.

The information system of state agencies, which contains secrets of state agencies or systems related to public services for society, are also vulnerable.

“This management requirement is crucial because, in handling cyberattacks, we’ve found many IT assets neglected, unmanaged, unpatched, or improperly operated, becoming stepping stones for hackers to target critical systems,” Thuy said.

Major Tran Trung Hieu, Deputy Director of the National Cybersecurity Center A05, said cybersecurity challenges have been increasing recently. Targeted cyberattacks are growing in number, sophistication, and complexity.

Moreover, these attacks could be backed by well-funded organizations with large, skilled teams and advanced cyber weapons, not just the lone hackers.

Hieu noted that many leaders are unaware of security incidents within their organizations. 

“Many leaders don’t prioritize cybersecurity adequately. There have been numerous attacks where hackers stole organizational data, personal information, documents, and state secrets. We’ve repeatedly warned agencies and enterprises in writing that, if cybersecurity breaches affect national security or lead to the loss of state secrets, we may pursue criminal liability under regulations holding leaders accountable for negligence causing serious consequences or intentional violations,” Hieu said.

When cyberattacks occur, targeting important agencies, the attacks will not only affect the agencies, but the entire sectors as the agencies hold important information and state secrets. If the information leaks, this will affect Vietnam's economic planning and foreign policy.

In the recent past, there have been cases of important enterprises, such as banks, Vietnam Airlines, energy firms, causing great consequences for customers and society but the leaders were not held accountable.