What happened to Vietnam's National Credit Information Center?

Vietnam's National Credit Information Center (CIC), operated under the State Bank of Vietnam, was hit by a cyberattack that potentially compromised personal and financial information. The breach was confirmed by the Vietnam Cyber Emergency Response Team (VNCERT) on September 12, 2025, following initial reports on September 10, 2025.

Which hacker group was responsible for the Vietnam CIC attack?

The cyberattack was claimed by the ShinyHunters hacker group. The group allegedly gained unauthorized access to CIC's systems and boasted in closed Telegram channels that Vietnam was 'taken in 24 hours,' indicating the speed of their attack.

How many people could be affected by the Vietnam CIC breach?

Vietnamese authorities have not disclosed the exact number of affected individuals, but the hackers suggested that nearly the entire Vietnamese population could be impacted. Vietnam's total population is approximately 102 million people, and the dataset included historical data spanning multiple years.

What types of data were exposed in the Vietnam credit database attack?

The exposed data includes general personally identifiable information (PII), credit payment histories and records, risk analysis data, credit card information (requiring decryption), tax identification numbers, military identification documents, government-issued identification numbers, income statements and financial records, debt information and obligations, and historical credit data spanning multiple years.

What is the Vietnam National Credit Information Center?

The Vietnam National Credit Information Center (CIC) is operated under the State Bank of Vietnam and maintains the national credit database containing financial and credit information for Vietnamese citizens. It serves as the central repository for credit histories, risk assessments, and financial data used by banks and financial institutions.

Were military documents compromised in the Vietnam CIC attack?

Yes, military identification documents were among the types of sensitive data reportedly exposed in the breach, along with other government-issued identification numbers, representing a significant national security concern.

How should Vietnamese citizens protect themselves after the CIC breach?

Citizens are advised to be careful of online scams, phishing attempts, and malware distribution schemes that may exploit the stolen information. They should monitor their financial accounts, credit reports, and be cautious of suspicious communications requesting personal information.

Does the Vietnam breach affect credit card information?

Yes, credit card information was among the exposed data, though it reportedly requires decryption of the FDE (Full Disk Encryption) algorithm. This suggests the credit card data may have additional protection, but the exposure still poses significant risks.

What makes the Vietnam CIC attack particularly significant?

This attack is particularly significant because it potentially affects nearly an entire country's population (approximately 102 million people), compromises a national financial database, includes historical data spanning multiple years, and exposes sensitive government and military identification documents alongside financial records.

What is cybersecurity standard TCVN 14423:2025?

TCVN 14423:2025 is Vietnam's national cybersecurity standard that financial institutions and banks have been ordered to comply with following the CIC breach. This standard likely establishes security requirements and protocols for protecting sensitive financial data and systems.

Why was end-of-life software a vulnerability in the Vietnam attack?

End-of-life software no longer receives security patches or updates from vendors, making it vulnerable to exploitation. The ShinyHunters group allegedly exploited such software in the CIC systems, highlighting the critical importance of maintaining up-to-date software in essential infrastructure.

Incident

Vietnam's National Credit Information Center hit by cyberattack exposing over 160 million records

Q: How did the attackers breach Vietnam's credit database?

The hackers allegedly gained unauthorized access to CIC's systems using an exploit that targeted end-of-life software for which no security patch was available, highlighting the vulnerability of outdated systems in critical infrastructure.

published: Sept. 12, 2025

Learn More

The Vietnam National Credit Information Center (CIC), operated under the State Bank of Vietnam, was hit by a cyberattack that potentially compromised the personal and financial information.

The breach was confirmed by the Vietnam Cyber Emergency Response Team (VNCERT) on September 12, 2025, following initial reports received on September 10, 2025, about unauthorized access to the national credit database.

The cyberattack was claimed by the ShinyHunters hacker group. The group allegedly gained unauthorized access to CIC's systems using an exploit that targeted end-of-life software for which no security patch was available. The hackers boasting in closed Telegram channels that Vietnam was "taken in 24 hours."

The exposed data includes:

General personally identifiable information (PII)
Credit payment histories and records
Risk analysis data
Credit card information (requiring decryption of the FDE algorithm)
Tax identification numbers
Military identification documents
Government-issued identification numbers
Income statements and financial records
Debt information and obligations
Historical credit data spanning multiple years

Update - The State Bank of Vietnam (SBV) stated that the CIC database does not include sensitive personal information such as: deposit accounts, account balances, savings passbooks, payment accounts, debit card numbers, credit card numbers, security codes (CVV/CVC), or customer transaction history.

Vietnamese authorities have not yet disclosed the exact number of affected individuals. The hackers suggested that nearly the entire Vietnamese population could be impacted, noting that the dataset included historical data spanning multiple years. Vietnam's total population is approximately 102 million people.

Given that some part of the population lives in rural areas with limited use of financial services and at least one quarter of the population is under 18, the number of exposed individuals would at most be about 50 million.

Vietnamese authorities immediately activated emergency response protocols. Technical and investigative measures have been deployed to contain the breach, verify its scope, and safeguard the integrity of national financial systems.

VNCERT has issued strict warnings to all individuals and organizations, urging them not to download, share, or exploit any leaked data, with violations to be handled according to Vietnamese data protection and cybersecurity laws. Financial institutions and banks have been ordered to audit their systems and ensure compliance with national cybersecurity standard TCVN 14423:2025. Citizens are advised to be careful of online scams, phishing attempts, and malware distribution schemes that may exploit the stolen information.

Vietnam's National Credit Information Center hit by cyberattack exposing over 160 million records

Read More
Canadian fintech Wealthsimple reports data breach affecting less …
Reading Cooperative Bank reports data breach, exposing 24K …
Zimbabwean ZB Financial Holdings hit by ransomware, data …
Coinbase reports data breach caused by support agents …
Pacific Residential Mortgage reports ransomware attack, data breach