Discovering a large-scale APT attack into Vietnam, users need to quickly download the malicious tool
Recently, the Department of Information Security has discovered a large-scale targeted attack (APT) campaign taking place in Vietnam's cyberspace. The host of this attack is located outside of Vietnam. The objective of this APT attack campaign is to spread malicious code into the information systems of Government agencies and to the national important national information infrastructure system of our country.
This morning (October 30, 2019), the Department of Information Security issued an order to coordinate and rescue incidents to specialized IT units, agencies, organizations, enterprises, etc. removed malicious files of the targeted attack (APT) campaign.
According to the Department of Information Security, this targeted attack campaign (APT) has now infected more than 400,000 IP addresses in Vietnam.
The agency also recommends that users urgently download this malicious code-checking and removal tool built and provided by the Department according to the link below.
http://remove-apt.vnpt.vn/download/tools/incident-response-v1.0.exe
For agencies, organizations, businesses and the Information Security Department, it is recommended that measures should be urgently implemented to monitor and monitor connections to malicious server control according to the list provided by the Information Security Department. summarize in the table below and instruct users, customers to download scanning tools, remove malicious code of APT campaign on ais.gov.vn, vncert.vn.


The malicious code used by the hacker group during the large-scale APT attack was emphasized as particularly dangerous with more than 16 variants, so the Department of Information Security requested units to send a love report. infection and treatment results (if any) to the Department before November 5, 2019.
This malware is mainly spread by deceiving users into clicking the word (.doc) file attached to an email. The purpose of hackers is to steal information, mobilize infected computers into a computer network to attack DDoS on large systems, perform escalating attacks on critical information systems. .
According to experts' recommendations, to prevent the spread of malicious malware on purpose of APT's attacks, users should pay attention to:
- Be careful when opening emails, especially 'strange' emails.
- When suspecting mail has malware installed, never open the attachment.
- It is necessary to quickly download and run APT's anti-malware scanning and removal tool at the website of the Information Security Department at ais.gov.vn.
New malware using web application has turned into a source of attack, very difficult to detect
Chinese hackers use fingerprints on glass to crack smartphones
You should read it
- Warning: GandCrab extortionist code is attacking Vietnam
- 100 hackers were arrested for the super-dangerous BlackShades malicious code
- There were 4,035 cyber attacks on Vietnam in the first 5 months of the year
- Detecting APT attack campaign on important national infrastructure on Tet holiday
- Warning: Detecting a campaign to spread malicious code GandCrab 5.2 into Vietnam via fake email of the Ministry of Public Security
- Warning: New malicious code is infecting about 500,000 router devices
- Warning: The new Facebook virus, a malicious code that is spreading rapidly through Messenger
- Hide malicious code in Windows logs file to attack computers, new ways of attack by hackers
May be interested
- Linux Error SUDO allows you to run commands as roota flaw in the sudo linux command has been discovered, which may allow non-privileged users to execute commands as root.
- STOP - Ransomware is the most active in the Internet but rarely talked aboutthe fight against stop ransomware in particular and other ransomware strains in general is still very difficult and no appointment of an end date.
- Beware of deceptive and spreading malicious code via notification links of Google Alertgoogle alerts is a useful and widely used service around the world.
- 4 Android VPN applications with over 500 million downloads were found to be ad fraudup to now, malware and viruses have always been a headache for google play store managers.
- Most cyber attacks focused on these 3 TCP ports onlysmall and medium-sized businesses can fully protect themselves from most cyber attacks by increasing defenses against ports that are most often targeted by malicious actors.
- Instagram account of a series of famous stars hacked and used as a means of fraudthe popular instagram account of the raid campaign after a period of cooling down has continued to heat up over the past few days.