Cyberattack on CMC Linked to Crypto24 Ransomware Group; Vietnam Faces Rising Threat Landscape
A recent cyberattack on Vietnamese technology firm CMC has been attributed to the hacker group Crypto24, which reportedly compromised 2TB of data using ransomware a type of malware that encrypts victim data for extortion. While CMC confirmed the incident, stating that recovery efforts were completed and services stabilized, authorities continue to investigate.
The attack underscores Vietnam’s escalating ransomware crisis. In 2024 alone, cybersecurity firm Bkav recorded 155,640 ransomware-infected computers nationwide, with financial losses reaching tens of trillions of dong (hundreds of millions of USD). Individual cases highlight the severity: one company lost VND 100 billion (USD 4 million) on the first day of a breach, while another suffered VND 800 billion (USD 32 million) in total damages. Experts warn these figures likely represent only a fraction of the true impact, as many attacks go unreported.
Beyond ransomware, advanced persistent threats (APTs) and spyware remain pervasive, often lurking undetected in systems before striking. Viettel Cyber Security reported a 15% rise in brand impersonation scams, a 21% increase in stolen accounts, and a 10% jump in newly discovered vulnerabilities in late 2024. Dark web sales of Vietnamese data surged 2.5 times year-over-year, while ransomware victims outnumbered reported incidents by more than tenfold.
At the National Cybersecurity Association’s 2025 Annual Meeting on April 11, Colonel Nguyen Ba Son of the Ministry of Public Security’s A05 Cybersecurity Department warned of growing threats to national security, citing increasingly sophisticated cyberattacks, espionage, and data breaches. In response, Vietnam’s Prime Minister issued directives in April 2024 to bolster cybersecurity measures, particularly against ransomware, due to its potential to disrupt economic and social stability. The effort aims to strengthen compliance, enforcement, and resilience across public and private sectors.
CMC Corporation cybersecurity rating report: https://www.rankiteo.com/company/cmc-corporation
"id": "CMC1770804439",
"linkid": "cmc-corporation",
"type": "Ransomware",
"date": "4/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Technology',
'location': 'Vietnam',
'name': 'CMC',
'type': 'Technology Firm'}],
'data_breach': {'data_encryption': 'Yes'},
'description': 'A recent cyberattack on Vietnamese technology firm CMC has '
'been attributed to the hacker group Crypto24, which '
'reportedly compromised 2TB of data using ransomware. While '
'CMC confirmed the incident, stating that recovery efforts '
'were completed and services stabilized, authorities continue '
'to investigate.',
'impact': {'data_compromised': '2TB of data'},
'investigation_status': 'Ongoing',
'motivation': 'Extortion',
'ransomware': {'data_encryption': 'Yes',
'data_exfiltration': 'Yes',
'ransomware_strain': 'Crypto24'},
'references': [{'source': 'Bkav'},
{'source': 'Viettel Cyber Security'},
{'source': 'National Cybersecurity Association’s 2025 Annual '
'Meeting'}],
'response': {'incident_response_plan_activated': 'Yes',
'recovery_measures': 'Services stabilized',
'remediation_measures': 'Recovery efforts completed'},
'threat_actor': 'Crypto24',
'title': 'Cyberattack on CMC Linked to Crypto24 Ransomware Group',
'type': 'Ransomware'}