Vietnam experienced a significantly more severe cybersecurity landscape in the first half of 2025 compared to the same period in 2024, according to VNPT Cyber Immunity.

The country recorded 155 million leaked data records and 4.5 million compromised accounts, accounting for 12.6% of global breaches, and representing a 21.4% increase year-on-year.

Ransomware attacks caused damages exceeding $10 million, with over 3 terabytes of data encrypted, marking a 15% rise compared to the same period last year. The most targeted sectors included finance and banking, telecommunications, technology, and public services.

Data from Trellix revealed that the average cost of a ransomware incident in Vietnam was $1.85 million, slightly below the global average of $2 million.

Cyberattacks were not limited to businesses—they also targeted critical national infrastructure, including banking, financial institutions, government agencies, and even media and press systems.

Vietnam ranked among the top 10 countries most affected by cyberattacks globally in the first six months of 2025.

According to VNPT CTIP, over 70% of attacks on organizational systems were carried out through compromised system accounts. These accounts were often obtained via brute-force attacks, malware designed to harvest user credentials, or direct system intrusions that led to the theft and dissemination of sensitive information.

Large organizations face higher risks due to the complexity of their systems, making them attractive targets for sophisticated ransomware groups. Sectors such as finance, technology, public services, and healthcare are particularly vulnerable due to their storage of high-value, sensitive data and the critical societal impact of service disruptions.