A warning issued by the Vietnam Computer Emergency Response Team (VNCERT) was submitted to all local departments of information and communications and to IT teams at other state agencies on July 30.
The notice came after a team of self-proclaimed Chinese hackers, 1937cn, had compromised the networks of two major Vietnamese airports on July 29.
The flight information and loudspeaker systems at airports in Hanoi and Ho Chi Minh City were compromised to display offensive messages about Vietnam and the Philippines, as well as distorted content related to East Vietnam Sea issues.
Passengers queue up for manual check-ins at Tan Son Nhat International Airport in Ho Chi Minh City following a cyberattack on July 29, 2016. |
The Permanent Court of Arbitration in The Hague on July 12 ruled in favor of the Philippines that brought China to court over Beijing’s groundless claims to vast swathes of the East Vietnam Sea.
Hanoi is now also at odds with Beijing over islands in the seaway.
The website of national carrier Vietnam Airlines was also hacked, with hackers stealing and leaking data of some 411,000 VIP customers.
The website was also defaced to display offensive information similar to what was seen on the airports’ flight information boards.
The phrase ‘1937cn,’ a prominent group of hackers in China, was left on the website of Vietnam Airlines after the cyberattack.
The VNCERT required specialized units to focus on tightening information security in their networks and to prepare emergency solutions for any potential attacks in the future.
Passengers wait for manual check-ins at Tan Son Nhat International Airport on July 29, 2016. |
The response team also urged agencies and organizations to regularly update patch files for operating systems and software, and scan and promptly remove all malicious codes found on servers and computers.
“Firewalls should be turned on and specialized systems should be established to detect and alert any coming attacks,” the VNCERT asserted.
All current passwords are recommended to be changed and a monthly renewal of security codes should become mandatory, the team underlined, adding that the passwords should have at least eight characters including a combination of words, numbers, and special symbols.
Information on essential passcodes should not be kept on personal computers and only given to a limited number of officials while access to major servers can only be granted to certain computers, the VNCERT advised.
The Ministry of Information and Communications has urged administrations, state-owned enterprises, economic organizations, and financial establishments across the nations to closely monitor and protect their data.
Websites of online news portals and social services have been safeguarded to protect users’ information while technical teams have been monitoring situations around the clock to issue immediate notices of any potential harm.
“Any problem should be promptly reported to competent authorities for early solutions. People are advised to contact VNCERT via phone numbers 0436404423 and 0934424009 or email address: ir@vncert.gov.vn,” the ministry stated.
