At the drill

The event saw the participation of staff from disaster response networks, information technology units of ministries, departments in provinces and cities across the country.

In Vietnam, the 2018 ASEAN-Japan information security drill was held at three locations, namely Hanoi, Da Nang and Ho Chi Minh City and Participating units were under the general coordination of VNCERT.

The exercise's model was divided into three levels, including International Coordination Unit, National Coordination Unit (NCU) and Core Units. Accordingly, three-phase cyber-attacks from a group of hackers lasting for three days were assumed as follows:

-1st Day: The warning period. Japan detected that website accessibility and email exchanges had experienced while the small DDoS (Distributed denial of service) attacks appeared.

-2nd Day: The Attack phase. It was warned that a wide-area attack and then various large-scale attacks caused network congestion and emails becoming jammed for the core units. Therefore, telephone communication was used.

-3rd Day: The peak period. After email service was restored, phishing emails were sent to officials of ASEAN member countries and these recipients were infected with malicious code. These sophisticated phishing emails then spawned malicious code not only in government agencies but also in the community.

According to VNCERT, there were 13,382 cyber-attacks in Vietnam in 2017, including three types: Phishing, malware and deface. Specifically, 4,035 network attacks have been recorded in Vietnam and nearly 100,000 Vietnamese websites per day queried or connected to the botnet network.

Source: PANO/HNM

Translated by Lam Anh