According to the process of responding to and dealing with cyberattack incidents that have just been sent by the Information Security Department, the Ministry of Information and Communications to the press agencies, the total time from the detection of the incident to the completion of the initial response is maximum. is 33 hours.
The Department of Information Security, Ministry of Information and Communications has just sent central and local press agencies to guide the process of responding to and handling cyberattack incidents.
|The Department of Information Security, Ministry of Information and Communications has just instructed press agencies The process of coordinating response to handling cyberattack incidents includes 5 steps (Artwork: Internet)|
A representative of the Department of Information Security said that recently, there have been many cyber attacks targeting information systems, websites, electronic newspapers, and electronic magazines of press agencies, causing the system to fail. The system is down, leaking, data loss.
If the information systems of the press agencies are not protected and promptly responded to incidents, they will not only affect the activities of speech and propaganda agencies of the Party and State but also affect the people’s need to access official information.
Therefore, in order to ensure the timely, synchronous and effective response and handling of cyberattack incidents to the press agency, the Information Security Department, the Ministry of Information and Communications guides the press agencies to deploy Deploy a number of emergency and incident response measures.
According to the guidance, when a cyberattack incident occurs, press agencies need to follow the Procedure for coordinating response to and handling cyberattack incidents, which has been developed by the Information Security Department.
This process was developed by the Department on the basis of the procedure for responding to cyberinformation security incidents as prescribed by the Ministry of Information and Communications in Circular 20, 2017 on coordination and response to cyberinformation security incidents nationwide. but in a way that is easy to understand, simple and clear.
The process of coordinating response and handling of cyberattack incidents includes 5 steps: Detecting and reporting incidents; determine the form of attack, the degree of urgency; incident response, system recovery; coordinating and responding to incidents; finish troubleshooting, with a specific time for each step.
Total time from incident detection to completion of initial response is up to 33 hours. At each step, there are specific responsibilities of the Information Security Department and the governing body – the operating unit, the on-site response department.
A remarkable point of the Process is that the role of the Information Security Department is clearly shown at all steps and is the focal point in charge of coordinating the response and handling of incidents beyond the control of the press agency. .
Specifically, the Department of Information Security is in charge of coordinating the parties including: ISPs, network security enterprises, Departments of Information and Communications of provinces and cities, etc. to participate in the rescue and handling of incidents when the incidents get out of control. of the governing body.
The newly issued process also adds the responsibility of the Information Security Department after completing the initial response to continue to support monitoring and troubleshooting within 1 week.
In addition to guiding the process of coordinating response to and handling cyberattack incidents, the Information Security Administration also recommends that press agencies need to implement a plan to prevent cyberattack incidents, including: Deploy a 4-layer model to ensure information security and build a network attack incident response plan.
In addition, the Information Security Administration requests press agencies to provide information on systems that need the Information Security Administration’s support to monitor, warn, evaluate and label the network trust, and send it to the Department before the date of issue. 5/7.
Press agencies can view details of the process of coordinating response and handling of cyberattack incidents; plans to prevent network attack incidents; and download a document form providing information about systems that need support for monitoring, warning and responding to cyberattack incidents on the website of the Information Security Administration at https://ais.gov.vn .
In case of encountering difficulties or problems during the implementation process, press agencies should contact the Information Security Department, the Ministry of Information and Communications directly, the Vietnam Cyber Emergency Response Center (VNCERT/CC) according to phone number 0869100317 and email [email protected] for support.
(Readers can refer to the text of the process of coordinating emergency response and handling of cyberattack incidents here)
What is waiting for hackers to attack the website of electronic newspaper VOV?
The lawyer said that the person who violates Article 287 of the Penal Code 2015, amended and supplemented in 2017 can be sentenced to 7-12 years of imprisonment.