As cybercrimes continue to evolve with increasing sophistication, the demand for proactive cyber resilience measures is becoming ever more urgent. This growing emphasis on enhancing cybersecurity has been underscored by the Politburo’s Resolution No. 57-NQ/TW, issued on December 22, 2024. This resolution identifies cybersecurity as a crucial component of Vietnam’s overarching strategy for digital transformation and innovation, signaling the government’s commitment to fortifying the nation against cyber threats.
Recent dialogues within the National Cybersecurity Association (NCA) have emphasized the alarming professionalism exhibited by modern cybercriminal organizations. Unlike the traditional cyberattacks that primarily focused on data theft or ransomware yields, today’s cybercriminals are operating with business-like acumen, employing more calculated and sophisticated techniques. This shift necessitates an equally robust, forward-thinking response from both individuals and organizations.
A survey conducted by the NCA revealed disturbing statistics: one in every 220 internet users in Vietnam, or about 0.45%, fell victim to online scams in the past year, leading to staggering financial losses exceeding 18.9 trillion VND (approximately US$731.42 million). Victims are increasingly targeted through deceptive schemes such as sham investment opportunities, impersonation of authorities, and fraudulent promotional draws, highlighting the need for greater awareness and protective measures.
In a related incident, data breaches reported by Viettel Cyber Security revealed that these cyberattacks resulted in losses surpassing US$11 million, compromising over 14.5 million user accounts in 2024 alone. While the overall number of fake domains decreased by approximately 30% compared to the previous year, there was a significant rise in fraudulent websites impersonating legitimate brands, with nearly 1,200 documented cases. Such trends indicate that while some aspects of cybercrime may ebb, others are rapidly rising, urging the need for constant vigilance.
One of the alarming trends noted by security experts is the increased use of artificial intelligence by hackers to automate and optimize their attacks. Automated tools are now being employed to craft deceptive emails and create counterfeit websites, making it increasingly difficult for the average user to discern genuine communications from fraudulent ones. The banking and financial sectors remain particularly vulnerable, with these industries accounting for an astonishing 71% of all reported cyberattacks. Furthermore, incidents of Distributed Denial-of-Service (DDoS) attacks saw a considerable surge, with over 924,000 incidents documented in the past year alone.
Looking ahead, cybersecurity experts anticipate emerging attack patterns for 2025, including targeted intrusions into cloud services, vulnerabilities in supply chains, and exploits of artificial intelligence applications. This foresight underscores the pressing need for organizations and individuals alike to evolve their cybersecurity strategies, moving from a reactive posture to a proactive stance.
In light of these escalating threats, the Politburo’s Resolution No. 57-NQ/TW calls for a proactive approach to cybersecurity. Prime Minister Pham Minh Chinh has endorsed a directive urging all governmental ministries, localities, and agencies to enhance their preventive measures against cyber-enabled fraud and online asset theft, thereby setting a national directive for robust digital defenses.
Experts advocate for a comprehensive shift in cybersecurity practices, emphasizing anticipation of threats, early detection, and minimizing potential damage as key components of a proactive approach. The NCA suggests that organizations urgently adopt advanced technologies and rigorously comply with legal regulations pertaining to data protection. Regular software and system updates, coupled with the implementation of fundamental cybersecurity measures like firewalls and antivirus software, are essential first steps. However, to truly counteract the threats posed by cybercriminals, organizations may also need to invest in advanced solutions such as Security Operations Centres (SOC) and Endpoint Detection and Response (EDR) systems. Further, continuous training and drills focused on cybersecurity are paramount to bolstering response capabilities.
For individual users, maintaining robust personal cybersecurity practices is vital. Experts recommend using up-to-date antivirus programs, creating strong and unique passwords, and enabling multi-factor authentication for sensitive accounts. It is also crucial to avoid clicking on unknown links, refrain from reusing passwords across platforms, and avoid using public Wi-Fi for sensitive transactions.
A significant challenge facing Vietnamese organizations is a marked skills gap in cybersecurity personnel. A recent NCA survey indicated that over 20% of organizations lack dedicated cybersecurity staff, and approximately 35.56% do not possess the necessary workforce to address their cybersecurity needs. This skills gap is projected to widen, with an anticipated shortfall of over 700,000 cybersecurity professionals in the near future.
To mitigate this shortfall, the NCA has initiated nCademy, a national e-learning platform dedicated to offering cybersecurity certification and training. This initiative provides courses designed for all skill levels and incorporates engaging visuals, videos, and interactive materials to deliver essential knowledge. nCademy aims to democratize cybersecurity education, making high-quality training accessible to learners nationwide. The platform’s content is rigorously verified by experts from the Cybersecurity Research Institute (CRI) and the Vietnam Academy of Science and Technology. A pilot version of nCademy is currently available, with the official launch slated for May 6, 2025.
Through proactive strategies in cybersecurity, combined with government initiatives and educational platforms like nCademy, Vietnam is making significant strides toward strengthening its digital defenses. These efforts not only engage businesses and individuals in the fight against cybercrime but also foster a more secure online environment for the entire nation.