Statistics of the Department of Information Security, Ministry of Information and Communications, in the first quarter of 2021 show that, although the number of cyberattacks in Vietnam decreased by 20% compared to 2020, the number of cyberattacks in Vietnam was still low. The number of recorded cyber attacks is still up to more than 1,200, with the nature of serious cases with all types of targeted attacks (APT), Malware (attacks to install malicious code), Phishing (phishing attacks) and Deface attack (interface change attack).

Mr. Doan Quang Hoa, Director of Security Solutions, IBM Vietnam said that some of the limitations are not new but quite serious in ensuring system information security in Vietnam, which are end-user habits as well as the sense of the leader in ensuring information security, despite the regulations that units and organizations must spend 10% of the budget for the network information security system.

 “In the last 3 years in Vietnam, more than 95% of hackers attack on vulnerabilities that have been widely announced and warned by security authorities, units, and

However, Mr. Hoa shared, small and medium-sized businesses mainly care about the top, that is, when they are attacked by a network, they will look to specialized units to solve the problem, there are not many customers think of building a network information security system in parallel with the data system, digitization activities, or in other words, the general mentality of the business is to wait... hackers attack to see weaknesses and where is your problem?

According to experts, this way of thinking must change, especially in the digital transformation period, because if there is no strategy on information security, standardize right from the team of information security experts for the public application platforms, monitoring tools as well as standard processes to operate, exploit and develop products, if attacked, the cost of remediation may be many times higher than the initial cost investment.