Top 1 Vietnam on Apple's Hall of Fame: A Mark of Practical Expertise

This impressive achievement honors the Red Team—information security experts from CMC Telecom—Vietnamese “white-hat hackers” who have discovered over 300 vulnerabilities in the Apple ecosystem since 2021. They are also actively providing deep penetration testing (Pentest) services for numerous domestic and international businesses.

According to Apple, Nguyen Van Hung, Deputy Director of the Information Security Services Center, and his Red Team colleagues at CMC Telecom have played a vital role in helping Apple quickly address critical security threats. Notably, CMC Telecom’s Red Team appeared in Apple’s Hall of Fame for 12 consecutive months.

With over 16 years of cybersecurity experience and more than 3,000 customers protected, CMC Telecom's security team has identified hundreds of serious vulnerabilities not only for Apple but also for global platforms like Oracle, Adobe, VMware, Trellix, and Cisco. This practical track record has helped CMC Telecom cultivate a team of seasoned experts ready to support clients in building proactive, efficient, and comprehensive protection systems.

Penetration Testing (Pentest): A Proactive Security Strategy for Businesses

Leveraging global hands-on experience, CMC Telecom provides Penetration Testing (Pentest) services as a key offering within its CMC Professional Service suite—part of its Comprehensive Security Service ecosystem. This service simulates real-world cyberattacks to assess the security posture of an organization’s systems. It follows established methodologies such as OWASP (Open Worldwide Application Security Project) to identify vulnerabilities across network infrastructure, web applications, APIs, endpoints, and cloud environments.

CMC Telecom's Pentest services are delivered by a team of cybersecurity experts holding internationally recognized certifications

Unlike automated vulnerability scans, CMC Telecom’s Pentest services are conducted by experts holding top-tier international certifications such as OSCP, OSEP, OSWE, CRISC, and CREST. These professionals test active systems using the mindset and techniques of real attackers—within controlled parameters. As a result, clients receive comprehensive reports with remediation guidance to enhance and optimize their cybersecurity posture.

Nguyen Van Hung shared: “Pentest is a process of ‘controlled vulnerability hunting’. It’s not just a technique but an art—putting yourself in the attacker’s mindset to test a system from every possible angle. Our experience with Apple’s vulnerabilities has taught us valuable lessons and methods that we now apply to protect Vietnamese enterprises.”

CMC Telecom’s Pentest team consists of over 20 well-trained security experts capable of testing systems for a wide range of sectors: banking, finance, e-commerce, healthcare, logistics, and e-government. Pentest services are performed following international frameworks such as OWASP, NIST SP800-115, OSSTMM, PTES, SANS, and customized industry standards.

CMC Telecom – A Trusted Security Partner in the Digital Transformation Journey

In reality, many Vietnamese businesses, despite significant investment in software and systems, still fall victim to cyberattacks due to a lack of regular security testing or reliance solely on automated scanning tools. The key factors in effective Pentesting are the people, methodology, frequency, and above all—practical experience.

CMC Telecom's security team empowers businesses to proactively respond to increasingly sophisticated threats in the digital age

CMC Telecom’s cybersecurity team enables businesses to proactively defend against increasingly sophisticated digital threats.

Currently, CMC Telecom is developing the CMC Comprehensive Security Platform (CCSP), a cloud-based AI-powered platform built on three core pillars:

• CMC SecOps: Mastering threats by collecting, aggregating, and analyzing multi-source data for rapid detection and response.

• CMC Cloud Security: Enhancing performance and ensuring security compliance across cloud platforms.

• CMC Risk Management: Proactively defending against risks, ensuring compliance with international standards, and protecting brand reputation from threats targeting cyberspace, data, and business credibility.

Guided by the philosophy “Your Data – We Care”, CMC Telecom’s security team delivers not just technology solutions but also strategic value—empowering businesses to respond proactively to digital threats in the modern era.