In 2024, Vietnam experienced a significant surge in cyber threats, with millions of user accounts compromised alongside critical infrastructures falling prey to increasingly advanced attacks. The landscape of cybersecurity in the country has shifted dramatically, marking its cyberspace as a “battleground” for cybercriminals engaging in tactics ranging from deepfake impersonations to extensive data breaches and fileless attacks.
A recent report by Viettel Cyber Security (VCS) highlighted the escalating complexity and scale of these threats, prompting urgent calls for action from government and business leaders alike. Prime Minister Pham Minh Chinh’s Directive No. 29/CD-TTg, issued on April 3, 2025, urged ministries and local governments to escalate efforts in combating cyberspace fraud aimed at the illicit appropriation of assets.
Reflecting on the findings from the VCS report, which utilized data from Viettel Threat Intelligence, it becomes evident that cybersecurity risks in Vietnam have broadened in 2024. The number of cyberattacks has seen a significant uptick, attributed to the growing sophistication of attack methodologies. Notably, cybercriminals targeted around 10 terabytes of encrypted data, inflicting estimated damages of approximately $11 million. A staggering 14.5 million accounts were compromised, encompassing a wealth of personal and corporate information that subsequently appeared for sale on various online platforms—accounting for 12% of all leaked accounts globally.
Financial fraud and brand impersonation have also evolved, although there was a 30% decrease in the number of fraudulent domains reported, now totaling around 4,000. In contrast, unauthorized brand impersonation on counterfeit websites rose dramatically, with nearly 1,200 new cases noted. Cybercriminals increasingly employ artificial intelligence (AI) to facilitate phishing campaigns and more sophisticated phishing websites, with the financial and banking sectors now bearing the brunt of these assaults, amounting to 71% of total cyberattacks.
DDoS (Distributed Denial-of-Service) attacks recorded over 924,000 incidents in 2024—a notable 34% increase from the previous year. Some attacks directed against financial institutions, public services, and technology companies surpassed 1 Tbps, leading to significant operational disruptions. The report further indicated that close to 40,000 new security vulnerabilities emerged in the year, representing a 46% rise compared to 2023. Alarmingly, 47% of these vulnerabilities were classified as high or critical severity, particularly affecting key areas like Virtual Private Network (VPN) systems, web servers, and management software. This left numerous organizations vulnerable, with 143 vulnerabilities flagged as high-risk.
Looking ahead, the report forecasts a continuing evolution of cyberattack trends into 2025. Exploitation of AI to devise increasingly sophisticated malware, coupled with the strategic use of deepfake technology for identity fraud through voice, images, or video, is anticipated. Additionally, Internet of Things (IoT) devices and blockchain platforms will likely become attractive targets, particularly those lacking robust security measures. The Ransomware-as-a-Service (RaaS) model further complicates the landscape, enabling a broader array of individuals to conduct cyberattacks. Fileless malware attacks are also expected to rise, utilizing techniques that infiltrate administrative tools like PowerShell, thus evading traditional security measures.
To combat these emerging threats, Viettel Cyber Security has outlined several proactive recommendations aimed at business leaders. Establishing a 24/7 cybersecurity monitoring system is crucial for the early detection of attacks. Moreover, adopting a contemporary governance model that tightly regulates system access will aid in thwarting unauthorized intrusions. Investments in advanced technologies, including External Attack Surface Management (EASM), Security Operations Centers (SOC), and Anti-DDoS solutions, are essential to safeguard critical data.
Regular audits and the implementation of a robust patch management strategy are necessary steps to address vulnerabilities. By prioritizing the resolution of critical security issues and assessing risks present in supply chains, organizations can reduce the potential for attack through third-party partnerships. Lastly, fostering a culture of cybersecurity within businesses, through continuous training and incident response drills, plays a vital role in minimizing risks related to human behavior.
In summary, as Vietnam grapples with these complex cyber threats, the necessity for vigilance and reinforced cybersecurity measures has never been more pressing. The ever-evolving tactics employed by cybercriminals warrant a proactive stance among businesses to protect their data and infrastructure in an increasingly hostile digital landscape.
