According to a VNISA’s survey, 58% of companies depend on IT staff for information security, 20% invest in anti-virus systems, 40% don’t have firewalls, 70% don’t have procedures to deal with information security-related incidents, 85% don’t have information security policies, and 74% plan to invest more in information security.

VINASA said that in 2008, over 40 cases related to hi-tech crime happened, causing losses of millions in US dollars. The largest case was the one in which PA Vietnam lost control over the DNS server, affecting nearly 10,000 domain names. This is considered the most serious information security incident in Vietnam so far.

Ngo Vi Dong, Chairman of VINASA’s southern branch said at a workshop on information security in HCM City on November 18, that information security at Vietnamese enterprises is at a less-than-average level.

A research work by VietPace shows that Vietnamese companies often pay attention to non-network security and do not pay attention to ensure inside information security.

Experts said to ensure information security, companies must combine three factors: technology, personnel, and procedures, while most of Vietnamese companies don’t know about this.