Vietnam's National Credit Information Center (CIC), a key institution under the State Bank of Vietnam, has been the target of a significant cyberattack. Initial reports indicate that up to 160 million records containing sensitive personal and financial data may have been exposed.
The hacker group ShinyHunters has claimed responsibility for the breach, which was reported on September 12, 2025. The CIC, responsible for collecting, processing, storing, and analyzing national credit information, experienced unauthorized access with the intent to steal personal data. The Vietnam Cyber Emergency Response Center (VNCERT) has confirmed evidence of cybercrime activity.
ShinyHunters, known for previous data breaches affecting global companies like Microsoft, Google, and Ticketmaster, allegedly exfiltrated a substantial volume of sensitive information. This incident aligns with a broader trend identified in a Viettel Cyber Security report, which noted that 14.5 million leaked accounts in Vietnam constituted 12% of global breaches in 2024. The financial sector was identified as a primary target, accounting for 71% of all cyberattacks in Vietnam.
The scale of this breach raises serious concerns about the effectiveness of cybersecurity measures protecting critical national infrastructure and the financial data of Vietnamese citizens. Potential consequences for individuals include identity theft and sophisticated financial fraud. The incident highlights the escalating threat landscape, particularly in Vietnam's financial sector, which has seen a 70% increase in ransomware campaigns in the first half of 2025, with approximately 30 attacks targeting major corporations and financial institutions.
Authorities have stated that any violations involving the leaked data will be prosecuted under the law. They have also recommended the proactive review and implementation of network security standards, such as TCVN 14423:2025. The event serves as a critical reminder of the persistent and evolving nature of cyber threats, necessitating a comprehensive re-evaluation and strengthening of cybersecurity protocols across all government and financial institutions.
The involvement of a known cybercriminal entity like ShinyHunters, which has a history of extorting companies and selling stolen data on the dark web, suggests a sophisticated and targeted operation. The group's typical methods involve exploiting legitimate credentials and social engineering tactics to access sensitive databases, as observed in their past attacks on platforms like Salesforce. This event marks a critical juncture, emphasizing the need to fortify defenses and enhance vigilance within Vietnam's digital ecosystem. The interconnectedness of financial data means such breaches can have widespread repercussions, affecting not only individuals but also the broader economic stability and trust in the nation's financial systems. A collective response is required, focusing on resilience and proactive adaptation to the constant challenges in the digital realm.