State bank: 'CIC doesn't store credit card numbers, security codes, or transaction history'

Regarding the incident at CIC, the State Bank of Vietnam says the information stored at the center does not include account balances, credit card numbers, security codes, or transaction history.

The State Bank of Vietnam issued a statement on the afternoon of 12/9, stating that it had received a report from the Credit Information Center (CIC) regarding an incident involving credit information at the center. The regulatory authority has directed CIC to report and coordinate with state agencies to address the situation, while ensuring CIC's continuous and smooth operation.

CIC is one of four organizations authorized to provide credit information services in Vietnam, commonly known as a place to check for bad debt history. It is a public service organization under the State Bank, with the purpose of supporting management in the monetary and banking sector, supporting credit institutions and customers who want to access loans.

The State Bank said, "The credit information collected by CIC does not include deposit accounts, deposit balances, savings books, payment accounts, debit card numbers, credit card numbers, security codes (CVV/CVC), or customers' transaction history".

Furthermore, the information technology systems of banks also operate independently of CIC, and the services of banks are currently operating continuously, safely, and stably.

Informing the public today, Vu Ngoc Son, a representative of the National Cyber Security Association (NCA), also said that people do not need to block cards, lock accounts, change CVC/CVV codes, or change passwords.

"This action does not help enhance security; on the contrary, it can cause transaction interruptions and directly affect daily life," Son said.

However, the Criminal Police Department (Ministry of Public Security) warned that if personal data at the National Credit Information Center CIC is stolen, criminals could apply more sophisticated and dangerous scams. Bad actors could make fraudulent calls or send messages requesting users to provide personal information, credit card details, CVV/CVC verification codes, OTP security codes, and so on.

Accordingly, customers should note that banks, CIC, and the police never request passwords or OTPs via phone or links. They should also avoid clicking on links in strange SMS messages, Zalo messages, or emails, and only log in through official apps or websites.

If people receive debt collection calls or account freeze notices, they should verify through official hotlines or visit bank branches or relevant authorities directly, and not transfer "verification" money to unclear accounts.

Previously, on 11/9, the Vietnam National Cyber Security Center (VNCERT) under the Department of Cyber Security and High-Tech Crime Prevention - Ministry of Public Security, said "Initial verification results show signs of cyberattacks and intrusions by cybercriminals to steal personal data at CIC". The amount of illegally obtained data is still being tallied and clarified.

Quynh Trang

By VnExpress: https://vnexpress.net/ngan-hang-nha-nuoc-cic-khong-luu-giu-so-the-tin-dung-ma-bao-mat-hay-lich-su-giao-dich-4938391.html