Back

Global Signing of the Hanoi Convention Against Cybercrime

Severity: Medium (Score: 45.0)

Sources: www.justsecurity.org, www.unodc.org

Published: 2026-05-21 · Updated: 2026-05-21

Keywords: convention, cybercrime, against, hanoi, united, nations, international

Summary

On October 25, 2025, the United Nations Convention against Cybercrime was opened for signature in Hanoi, Vietnam, with 72 countries signing the treaty. This treaty aims to combat cybercrime and enhance international cooperation in sharing electronic evidence. The initiative, driven largely by Russia, seeks to replace the Budapest Convention and reflects state-controlled internet governance ideals. The treaty's adoption followed a contentious negotiation process, with concerns raised about state overreach and weak safeguards. Despite these issues, the final document was viewed as a compromise, balancing various stakeholder interests. The Convention will remain open for signature until December 31, 2026, and will enter into force after 40 states ratify it. The treaty's implementation will be reviewed by the Conference of the States Parties. Key Points: • 72 countries signed the UN Convention against Cybercrime on October 25, 2025. • The treaty aims to strengthen international cooperation and combat cybercrime. • Russia's involvement raises questions about the treaty's effectiveness against state-sponsored cybercrime.

Detailed Analysis

**Impact** The treaty affects 72 countries that signed the Convention on October 25, 2025, with 121 UN member states yet to accede. It targets cybercrime globally, impacting sectors vulnerable to cyberattacks such as finance, critical infrastructure, and democratic processes. Russian state and criminal actors have been linked to major cyberattacks affecting Estonia, Ukraine, the US, and others, indicating broad geographic and sectoral risk. The Convention aims to improve international cooperation in sharing electronic evidence for serious crimes, potentially affecting law enforcement and judicial operations worldwide. **Technical Details** The articles do not provide specific technical details such as attack vectors, TTPs, malware, or exploited CVEs related to the Convention itself. Instead, they reference historical Russian cyber operations involving malware like Zeus Trojan, NotPetya, and ransomware groups (Lockbit, Conti, Revil, Ryuk, Hive, Qilin). The Convention addresses legal and procedural frameworks rather than specific cyberattack methodologies or indicators of compromise. **Recommended Response** No direct technical mitigations or detection rules are provided in relation to the Convention’s signing. Defenders should monitor developments in international cooperation frameworks and adjust policies to facilitate lawful electronic evidence sharing. Organizations should continue to apply best practices against known Russian-linked cyber threats and maintain vigilance on geopolitical developments influencing cybercrime trends.

Source articles (3)

  • Promise Peril Cybercrime Convention — www.justsecurity.org · 2026-05-21
    At the end of October, 72 countries signed the United Nations Convention against Cybercrime in Hanoi, Vietnam. The Convention is the first comprehensive global treaty on this matter, providing states…
  • UN Convention against Cybercrime — www.unodc.org · 2026-05-21
    The United Nations Convention against Cybercrime; Strengthening International Cooperation for Combating Certain Crimes Committed by Means of Information and Communications Technology Systems and for t…
  • Russian Motivations Hanoi Convention Cybercrime — www.justsecurity.org · 2026-05-21
    Later this month, governments from around the world will be invited to sign a new international treaty: On Oct. 25, in Hanoi, Vietnam, the “United Nations Convention against Cybercrime; Strengthening…

Timeline

  • 2019-12-01 — UNGA launches treaty negotiations: Russia introduced a resolution to establish an Ad Hoc Committee for a cybercrime treaty.
  • 2024-12-24 — Convention adopted by UNGA: The UN General Assembly adopted the Convention against Cybercrime in New York.
  • 2025-10-25 — Hanoi Convention opened for signature: 72 countries signed the Convention during the ceremony in Hanoi, Vietnam.
  • 2026-05-21 — Convention remains open for signature: The Convention will stay open for signature until December 31, 2026, requiring 40 ratifications to enter into force.

Related entities

  • DDoS (Attack Type)
  • Malware (Attack Type)
  • Phishing (Attack Type)
  • Ransomware (Attack Type)
  • Trojan (Attack Type)
  • Australia (Country)
  • Belarus (Country)
  • Canada (Country)
  • China (Country)
  • Egypt (Country)
  • Estonia (Country)
  • France (Country)
  • Germany (Country)
  • Hungary (Country)
  • India (Country)
  • Iran (Country)
  • Israel (Country)
  • Japan (Country)
  • Mexico (Country)
  • Moldova (Country)
  • New Zealand (Country)
  • Nicaragua (Country)
  • North Korea (Country)
  • Poland (Country)
  • Qatar (Country)
  • Romania (Country)
  • Russia (Country)
  • Saudi Arabia (Country)
  • Singapore (Country)
  • Spain (Country)
  • Ukraine (Country)
  • United Kingdom (Country)
  • United States (Country)
  • Venezuela (Country)
  • Vietnam (Country)
  • Viet Nam (Country)
  • here.in (Domain)
  • Transportation (Industry)
  • NotPetya (Malware)
  • Zeus (Malware)
  • T1071 - Application Layer Protocol (Mitre Attack)
  • T1566 - Phishing (Mitre Attack)
  • Conti (Ransomware Group)
  • Hive (Ransomware Group)
  • Lockbit (Ransomware Group)
  • Qilin (Ransomware Group)
  • REvil (Ransomware Group)
  • Ryuk (Ransomware Group)
  • Evil Corp (Apt Group)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed