Vietnam creditors hit by cyberattack - sensitive data at risk

3 hours ago 10

(Image credit: Getty Images)

Vietnam confirms cyberattack on national credit data center is being investigated
CIC says systems still operational despite hacker intrusion into creditor database
Authorities suspect Shiny Hunters group is behind the system breach

Vietnam’s National Credit Information Center (CIC), which operates under the State Bank of Vietnam, has confirmed a cyberattack that may have exposed sensitive creditor information.

According to Reuters, the scope of the breach remains unclear for now.

Investigators said in a statement, "Initial investigation indicated signs of unauthorized access aimed at stealing personal data, with the extent of the breach still being assessed.”

Shiny Hunters

The Vietnam Cybersecurity Emergency Response Center (VNCERT) said it received a report from CIC about the incident on September 11.

“The incident has not disrupted operations or caused any damage, and the credit information service system remains fully functional,” CIC said in a letter sent to financial institutions.

The letter, which Reuters says it has seen, additionally suggested the attack may have been carried out by Shiny Hunters, a hacking group known for breaching major firms including Google, Microsoft, and Qantas.

Vietnam’s Department of Cybersecurity and High-Tech Crime Prevention has reportedly directed VNCERT to work with CIC, the central bank, and leading cybersecurity companies such as Viettel, VNPT, and NCS.

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

Evidence is currently being gathered and technical safeguards have been activated in order to protect national financial data systems.

VNCERT also warned individuals and organizations not to download or distribute leaked data, stressing that any violations will face stern legal repercussions.

The State Bank of Vietnam has not commented on the breach, while investment bank JPMorgan said in a note to investors that the incident could raise cybersecurity costs for local banks, although it did not expect an immediate impact on deposit flows.

Cybersecurity expert Ngô Minh Hiếu said in a post on Meta that banks like CIC do not store credit card numbers, one-time passwords, or login details, meaning key financial data, such as transactions and credit card information will not be affected or compromised.

Vietnam’s authorities continue to monitor the situation as they work to determine the scale of the attack.

Wayne Williams is a freelancer writing news for TechRadar Pro. He has been writing about computers, technology, and the web for 30 years. In that time he wrote for most of the UK’s PC magazines, and launched, edited and published a number of them too.

Read Entire Article