The CIC is under the State Bank of Vietnam, the country's central bank, while VNCERT is under the Department of Information Security of the Ministry of Science and Technology.

Illustration courtesy of the State Bank of Vietnam.

Immediately after receiving the information, the Department of Cyber Security and High-Tech Crime Prevention (A05) under the Ministry of Public Security, directed VNCERT to preside over and coordinate with leading enterprises providing network information security services including Viettel, VNPT, and NCS, along with CIC and functional units of the SBV.

The parties have synchronously deployed professional and technical measures to respond, verify, and ensure network security. At the same time, related data and evidence have been collected for processing in accordance with the law, the government's news portal reported.

"Initial verification results show signs of cybercrime attacks and intrusions with the aim of stealing personal data. The amount of illegally acquired data is still being counted and clarified," the news portal quoted VNCERT as saying.

VNCERT requires organizations and individuals to absolutely not download, share, exploit or use leaked data. "Violations will be handled according to the law."

In addition, VNCERT recommends that agencies and enterprises, especially financial institutions and banks, proactively review and implement compliance with TCVN 14423:2025 standards on network security for important information systems.

People are also advised to be vigilant and avoid the risk of personal information being exploited to spread malware, scam, and appropriate property.