In 2025, a digital identity called CyberBAVX caused widespread concern after breaching over 26 Vietnamese government websites and more than 40 other sites globally. The attacks started locally but soon drew international attention.
Local Attacks, Global Warnings
The websites of several Vietnamese provinces, including Sơn La, Cao Bằng, and Bình Thuận, were defaced with messages, images, or files. Many of these platforms had weak security setups, making them easy targets.
Cyber experts observed that CyberBAVX used known technical flaws — such as CMS vulnerabilities, leaked passwords, and misconfigured servers — to access multiple sites at once. The attacks were well-timed and organized, showing a high level of planning.
Signs of Broader Intent
Though most affected systems were in Vietnam, some had links to foreign servers or international partners. This suggests that CyberBAVX may be testing its capabilities across borders, raising concerns about future attacks.
The combination of technical skill and political or protest-style messaging has made global observers take notice. While it began as a local issue, the potential for wider disruption is clear.
How Authorities Responded
Vietnam’s Ministry of Information and Communications and National Cyber Security Center (NCSC) responded quickly to contain the damage and help local agencies strengthen defenses. Global cybersecurity teams are also monitoring CyberBAVX’s activity closely.
