return icon

Security experts say phony gov’t emails contain malware

An email address ending in “gmail” and a subject line referring to Prime Minister Nguyen Tan Dung’s instructions has been sent to the email account of a newspaper reporter to steal information.
VietNamNet Bridge - An email address ending in “gmail” and a subject line referring to Prime Minister Nguyen Tan Dung’s instructions has been sent to the email account of a newspaper reporter to steal information.


A reporter received an email sent from (vpcp is automatically interpreted as “van phong chinh phu” or government office). 

There was no content in the body of the email, but there was a file attached under the “.doc” mode with the name coinciding with the email’s subject.

BKAV, the leading internet security firm in Vietnam, has found the email contains malware.

Nguyen Minh Duc, a security expert from FPT Group, said the “.doc” file exploited the vulnerability of Microsoft Word which was made public in April 2014. If users have not updated the patch version for Microsoft Word, when they open the file, malware will be installed on the computer, collect information and send it to a server in the US. 

The subject of the email and the name of the attached file (about a Prime Minister’s conclusion on an issue) raised receivers’ curiosity, especially reporters, and prompted them to open the files to read the content.

According to Duc, this is a way of spreading malware commonly used by hackers. To date, 19 out of the existing 57 antivirus software products can recognize the files as viruses.

BKAV, after analyzing the email, found that the virus hidden in the attached document file was a variation of “Virus Bien Dong” (East Sea virus) which was regulated through the domain registered by a Chinese company.

“Virus Bien Dong” was first heard of in July 2014. A reporter of an online newspaper received an email with an attached file about an important report on protecting territorial waters and airspace.

The attached file was then analyzed by BKAV’s specialists, who said it contained malware called “Virus Bien Dong”.

Anh on June 6 said the two emails sent in July 2014 and June 2015 were likely from the same group of hackers. 

The server that regulated the malware sent in 2014 belonged to, while the server that sent in 2015 was 

According to Anh, the malware hidden in the email is RAT (Remote Access Trojan) which opens the back door on victims’ devices and allows remote access. 

The virus hidden in the document file was managed through a domain registered by a Chinese company.

The hackers were believed to exploit Microsoft Office’s hole - CVE-2012-0158 - to insert malware into the document file. After users open and download the file, “LMS.exe”, “dbghelp.dll” and “ticrf.rat” will be installed in the devices’ systems.

Buu Dien


Aviation ground services to go-green to meet compliance

The Civil Aviation Authority of Vietnam (CAAV) is collecting comments on a draft circular stipulating that all businesses in the sector must have a plan to convert ground vehicles from fossil fuels to electric.

President visits, offers condolences to widow of late PM Abe Shinzo

President Nguyen Xuan Phuc visited and offered condolences to Abe Akie, the widow of late Japanese Prime Minister Abe Shinzo, at her home on September 28.


US firm pours capital in cross-border e-commerce project in Binh Duong


PM requests prompt measures to overcome Typhoon Noru’s consequences

Dim outlook for domestic auto component industry

Vietnamese automotive component industry has a dim outlook for growth as it lags behind those in many other regional countries, according to the Ministry of Industry and Trade (MoIT).

Animated series seeks to change stereotypes on Vietnamese products

Wolfoo, a YouTube children’s animated web series, which has reached more than 2 billion views a month, has changed the world’s stereotypes on Vietnamese products.

VN banking prospects from now to the end of the year

Under the circular, the State Bank of Vietnam told banks to reschedule debt repayments to help customers affected by the COVID-19 pandemic until June 30 this year.

JPMorgan: 65% of AirPods production to be located in Vietnam in 2025

JPMorgan analyst expects 20 percent of iPad, 5 percent of MacBook, 20 percent of Apple Watch and 65 percent of AirPods production to be located in Vietnam in 2025.

US$2.3 billion withdrawn from stock market, investors begin to worry

Concerns are increasing in the stock market after the State Bank of Vietnam (SBV) raised regulating interest rates and withdrew VND56 trillion (over US$2.3 billion) last week.

Teacher Nguyen Ngoc Ky writing with feet passes away

This morning, 75-year-old teacher Nguyen Ngoc K, who inspired many generations of students with his determination to rise up in life, passed away at his home in Thu Duc City.

Typhoon Noru passes through central Vietnam

Super typhoon Noru swept through central Vietnam on September 27 night and early September 28, bringing strong winds and torrential rains.

Discovering craft villages in Buddhist centre in Quang Ninh

Coming to Yen Tu relic site in Quang Ninh province – Vietnam’s major Buddhist centre, tourists can also experience traditional crafts such as making hats, bamboo handicrafts, and wood carvings.

Ministry drafts mechanism to adjust average retail power price

The Ministry of Industry and Trade (MoIT) is drafting a Prime Minister's Decision on the mechanism for adjusting the average retail electricity price.

Foreign investment disbursement hits record high in nine months

Disbursement of foreign direct investment (FDI) in the first nine months of this year reached 15.4 billion USD, up 16.2 % year-on-year and marking a record high, a report from the Foreign Investment Department (FIA) has shown.

Foreign Minister Bui Thanh Son pays visit to Germany

Minister of Foreign Affairs Bui Thanh Son paid an official visit to Germany from September 26-27 at the invitation of his German counterpart Annalena Baerbock.