Vietnamese cybercrime is easy to catch and awkward

All online attacks in 2006 were made clear, but the perpetrators were only administratively handled with a fine of VND 10-20 million. Authorities 'complain' that the limitations of the law make it difficult for them to protect order and discipline in the Internet space.

At the seminar on violations and e-commerce (E-commerce) organized by the Ministry of Trade on November 10 in Hanoi, the representative of the anti-high-tech crime unit of C15 (Ministry of Public An) said the Criminal Law, issued in 1999, has three provisions (224, 225 and 226) that regulate Internet behavior but are mostly outdated. Other legal instruments also stop at the level of administrative processing. The development of the Internet in recent years requires new regulations.

Lack of law, authorities like "hand tied" when ensuring e-commerce security.Photo: Hung Hai .

" Current regulations are difficult to investigate criminal liability for hackers ," said Tran Ngoc Hoa, head of the C15 high-tech crime prevention department. 'The law stipulates the destruction of' serious consequences', or has been subjected to disciplinary action and administrative violations, but it has been repeated for criminal prosecution. But in the Internet environment this factor is difficult to determine because the importance of information contained in computers or computer networks is difficult to measure . ' Mr. Hoa said that many countries stipulate that if unauthorized access to other people's computers could be criminally handled, regardless of whether it caused any damage to the owner or not. But Vietnam still lacks regulations to protect important information systems of the government, military, security, post office .

According to Mr. Do Ngoc Duy Trac, Head of Professional Department of National Computer Rescue Center (VNCERT), the Internet environment in Vietnam today has many factors that cause unsafe. There is no user identification mechanism, difficult to control communication and lack of coordination and supervision between Internet management organizations. In Vietnam, there is a fake IP address (fake IP) over the past 20 years that still can't be solved. On the other hand, information security is a new issue for most users. Sharing this issue, Mr. Vu Ngoc Son, Head of the Virus Department of Bach Khoa Security Center (BKIS), said that even website programming units are not fully aware of security issues. At foreign companies, each developer after being hired will be given a special programming training on network security. Finding a website design company in Vietnam to do this is very difficult. Investing time and effort in security can slow down the progress of the project, the effectiveness is difficult to verify.

Because there are many 'holes', the education, deterrence of the law has been mitigated, computer crime has tended to increase and threaten the development of e-commerce. VNCERT statistics show that the most prominent behavior now is deface or DDoS attack to 'protect online'. In March 2006, the website of Viet Co company was heavily attacked, all services were delayed for 1 month. In July 2006, more than 300 websites leased servers of Nhan Hoa company were "beaten" by a student of Thai Nguyen University of Education. The culprit was then fined 10 million VND, the amount of money the victim spent to overcome the consequences was many times larger. After the enterprises, the database of Ho Chi Minh City Department of Planning and Investment was also asked by hackers. In 3 days 8, 9, 10/7, the director of a limited company took advantage of the security hole of the website to change the password of 38 other business records to 'retaliate' because they did not use corporate services. provided. Many other forms of attack such as spreading viruses, appropriating domain names, breaking information changes . made the e-commerce environment of Vietnam almost no law. The director of Viet Co is bitter when speaking to the press about the company's website being attacked: " Sometimes I feel like e-commerce is like living in the wild West of America centuries ago. According to the law of self-protection, strong strength is weak . "

According to the investigation agency, the level of Vietnamese hackers is not high. Criminals use 'rudimentary' tools and techniques and all are exposed to light. Nguyen Quang Huy, who was accused of attacking the recent Dien Bien Market, was considered the number one "online wall" by the "very basic and subjective" errors such as using a home computer, not deleting. log file when hijacking the server . The special and professional tools of the investigating authority can recover deleted data on the hard drive, even if it has been canceled by normal operations such as formatting. (format), re-partition (fdisk) or over-write over certain times. ' As a general rule, having committed a crime must have traces of more or less. The only way to leave nothing is to not commit a crime, 'a C15 investigator said. 'Most Vietnamese hackers are too young and have not fully realized the consequences '.

To prevent the current turmoil, the long-term solution proposed by the experts is mainly to improve the legal corridor and to equip the authorities with additional tools. Specifically, adding acts related to violations and criminals in e-commerce in the Criminal Law. At the same time, supplement the legality of the electronic evidence in the Criminal Procedure Law and issue decrees guiding the Law on Electronic Transactions and IT Law. However, the construction of a legal corridor cannot be completed overnight. In the short term, what can be done is to start building a national-level IT coordination system, develop safety standards and recommendations for businesses. Raising awareness of netizens about clean e-commerce environment and healthy competition is particularly important.

Hung Hai