Vietnam cybersecurity threat report 2026

VNETWORK’s Vietnam Cyberattack Report recorded 2 million cyberattacks over the past year, with 46% involving AI. Threat actors are rapidly shifting toward identity compromise, AI abuse, and multi-layered attack strategies—placing businesses under increasing risk of operational disruption. As Vietnam accelerates digital transformation, expanding digital infrastructure is enlarging the attack surface. Critical sectors such as finance, e-commerce, and media are becoming prime targets.

Key Attack Trends

Credential-based attacks led with 685,912 incidents (25.1%), highlighting identity and access management as a critical vulnerability. Web exploits (19.9%) targeted fintech and e-commerce platforms, while DDoS attacks (18.7%) were used to overwhelm systems and mask intrusions. These methods are increasingly combined into multi-vector attacks.

Notably, over 256,000 DDoS attacks were recorded in the first half of the year alone, signaling sustained escalation. DDoS is no longer a temporary disruption but a persistent business threat.

Bot abuse (15.6%) and phishing (13.1%) reflect growing automation. Malware, though less frequent, enables long-term persistence post-breach. Meanwhile, SEO poisoning is surging, injecting malicious backlinks that damage brand reputation and search rankings.

Nearly Half of Attacks Powered by AI

Data reveals a critical alert: 1.09 million AI-enabled attacks. AI is used to automate reconnaissance at scale, generate highly personalized phishing content, and create polymorphic malware that evades detection. It also orchestrates adaptive botnets in real time, amplifying impacts such as downtime, data breaches, and financial loss.

Bot Traffic: A Silent Threat

Bot traffic now dominates internet activity, with a significant portion being malicious. Capable of executing millions of requests per minute, bots conduct scanning, credential stuffing, and data scraping. Their distributed nature enables them to overwhelm systems while concealing real attack patterns.

Email: An Old Vector, Evolving Risk

In 2025, over 4.6 million malicious emails were blocked, with phishing accounting for 69.1%. Advanced variants—such as QR phishing, abuse of legitimate cloud platforms, and AI-generated content—are making detection increasingly difficult. Combined with malware attachments and business email compromise (BEC), email remains a primary entry point for complex attack chains.

What Businesses Must Do Now

Nguyen Van Tao, Chairman of VNETWORK, stated:
“As attack volumes surpass 2.36 million incidents annually and traffic scales to terabits, cybersecurity is no longer a supporting function but a core business capability. In the digital era, those who control risk gain decisive competitive advantage. Organizations must proactively establish resilient defenses today—standing still means falling behind in a rapidly evolving threat landscape.”

Built on real-world monitoring and in-depth analysis, VNETWORK’s report delivers a comprehensive view of Vietnam’s cybersecurity landscape. By translating vulnerabilities and attack vectors into actionable insights, it enables organizations to shift from reactive response to proactive defense—supporting leadership in optimizing security investments and helping IT teams prioritize effectively.

Download the full report: www.vnetwork.vn/en-US/bao-cao-tan-cong-mang-viet-nam-2026
Hotline: 028 7306 8789
Email: contact@vnetwork.vn