Cy­ber se­cu­rity drill aims to boost co­op­er­a­tion

The Myanmar Times - - Business | International -

TEN ASEAN na­tions are test­ing their cy­ber se­cu­rity emer­gency re­sponse pre­pared­ness with a drill that be­gan here yes­ter­day.

The ASEAN CERT In­ci­dent Drill (ACID 2017) in­cludes teams rep­re­sent­ing 10 ASEAN mem­ber na­tions and five di­a­logue coun­tries: Aus­tralia, China, In­dia, Ja­pan and South Korea. The pro­gramme aims to pro­mote op­por­tu­ni­ties for co­op­er­a­tion and prac­tice among the com­puter emer­gency re­sponse teams (CERT) re­spon­si­ble for han­dling and solv­ing their coun­tries’ cy­ber se­cu­rity is­sues.

ACID 2017 fo­cuses on the lat­est cy­ber se­cu­rity trends for CERT. The pro­gramme will pre­pare some re­hearsal scripts for par­tic­i­pants to prac­tice build­ing and im­ple­ment­ing plans to han­dle cy­ber se­cu­rity in­ci­dents.

Speak­ing at the open­ing cer­e­mony, NguyӉn Thành Hѭng, Deputy Min­is­ter of In­for­ma­tion and Com­mu­ni­ca­tions, said that fre­quent in­ter­na­tional re­hearsals help main­tain the smooth com­mu­ni­ca­tion among coun­tries to quickly re­spond dur­ing emer­gen­cies. The re­hearsals also al­low par­tic­i­pants to ac­quire knowl­edge and ex­pe­ri­ences in solv­ing var­i­ous cy­ber se­cu­rity in­ci­dents.

Ac­cord­ing to NguyӉn Khҳc Lӏch, Vice Director of VNCERT, the im­por­tance of such events is in­creas­ing, as ViӋt Nam faces a grow­ing range of cy­ber se­cu­rity chal­lenges. VNCERT is re­spon­si­ble for co­or­di­nat­ing the mon­i­tor­ing and han­dling process na­tion­wide to promptly stop in­ci­dents.

In 2017, VNCERT has de­tected nine vul­ner­a­bil­i­ties in the Win­dows op­er­at­ing sys­tem and asked pub­lic and pri­vate agen­cies to fix them. It also re­sponded to the May 2017 out­break of Wan­nacry ran­somware in ViӋt Nam. This self-spreading mal­ware, also known as Wan­naDe­cryp­tor 2.0, at­tacks Win­dows com­put­ers.

VNCERT has up­dated se­cure ver­sions of Win­dows for more than 100,000 clients and 5,000 hosts, since most com­put­ers in ViӋt Nam run Win­dows. This huge ef­fort to min­imise Wan­nacry’s con­se­quences en­sured that ul­ti­mately only 565 clients and four hosts were mal­ware-in­fected.

As of this month, VNCERT has recorded and solved nearly 2,000 phish­ing scams, about 4,000 mal­ware at­tacks and more than 3,500 web­site de­face­ments. Re­cently, VNCERT has an­a­lysed be­hav­ior pat­terns of some mal­ware and found 71 do­mains and 17 IP ad­dresses of com­mand-and-con­trol (C&C) sev­ers. This is an ad­vanced per­sis­tent threat (APT) aimed at Viet­namese in­for­ma­tion sys­tems.

ViӋt Nam’s team at ACID 2017 will be di­vided into a core team and a re­hearsal team. The core team in­cludes VNCERT’s ex­perts and rep­re­sen­ta­tives from Bkav, Vi­et­tel, VNPT, CMC In­fosec, and VNPT Tech­nol­ogy. This team will be the main ac­tor in­struct­ing all other par­tic­i­pants in solv­ing cases and es­ca­la­tion plans.

Re­hearsal teams will in­ves­ti­gate case-re­lated in­for­ma­tion and data; an­a­lyse and iden­tify be­hav­iour pat­terns of at­tack­ers; rec­om­mend so­lu­tions to warn the pub­lic, min­imise im­pacts and stop in­ci­dents from spreading; and re­store op­er­a­tions af­ter an at­tack.

Though the teams are di­vided by coun­try, the event aims at pro­mot­ing in­ter­na­tional so­lu­tions to the in­ter­na­tional chal­lenge of cy­berspace at­tacks. With pro­fes­sional drills, coun­tries can co­op­er­ate to pre­vent and pro­tect them­selves from cy­ber-at­tacks.

ACID fol­lows two other an­nual in­ter­na­tional re­hearsals con­ducted in ViӋt Nam in March and May.

Newspapers in English

Newspapers from Myanmar

© PressReader. All rights reserved.