68 APCERT Incident Handling Drill Internet is in the nature of borderless and seamless network, so as Internet incident. It is characteristically not limited to one economy or region. This reality put more meaning on the importance of having an incident handling drill among many economies, cooperation between CSIRTs for various sectors. KrCERTCC has participated in the APCERT incident handling drill in 2009 which has ended with successful result. The drill was again to verify the coordination capabilities among CSIRTs on incident handling framework, deliver actions to improve incident response system in each CSIRT, and give participants an experience of a coordination system. 247 POCs were shared for preparation and an IRC channel was used for real-time communication. 16 APCERT member teams from 14 economies have joined the drill, as the scenario was not distributed before the actual drill commenced. Some economies had their own drill with local ISPs involved and played with their own coordination system with the given version of scenario. HKCERT has successfully completed to coordinate the drill, as whole other participated teams have successfully done their tasks. Yet another good drill was performed in 2009 by the APCERT members.

4. International Activities

KrCERTCC has participated in National CSIRT meeting held in July 2009 in Kyoto, Japan, hosted by CERT Coordination Center. We learned from other CSIRTs and had a chance to build a cooperation relationship with other major CSIRTs. In APEC TEL 40 meeting held in Cancun, Mexico, at the SPSG meeting, Mr. Jinhyun CHO from KrCERTCC has done the task as the SPSG convenor, by leading the SPSG meeting regarding strengthening the global cyber security capability.

5. Future Plans

KrCERTCC is planning to provide another training opportunity in the year 2010, by hosting the APISC Security Training Course, to many potential security experts as possible, by inviting them to attend our training course with 69 lectures and active discussions. This chance will give more skills and experience to the attendees in both legal and technical perspective, not only to ones from developing economies who plans to build a CSIRT, but also to existing teams by sharing the experience and trend from all the economies from Asia Pacific region. Website: http:www.krcert.or.krenglish_www E-mail: apcert-pockrcert.or.kr Phone: +82-2-118 70 9. MyCERT Activity Report Malaysian Computer Emergency Response Team - Malaysia 1. MALAYSIAN COMPUTER EMERGENCY RESPONSE TEAM MyCERT 1.1. Introduction The Malaysian Computer Emergency Response Team MyCERT was established in 1997 to address the computer security concerns in Malaysia. With the number of computer users in Malaysia increasing rapidly each day, more vulnerable computers are exposed to threats of abuse and criminal activities. This is the essence of MyCERT’s existence, providing a point of reference in resolving computer security incidents. 1.1.1 Establishment MyCERT was established in 1997, and now operates under CyberSecurity Malaysia, a non-profit organization under the purview of the Ministry of Science, Technology and Innovation MOSTI, Malaysia. CyberSecurity Malaysia main roles can be summarized as follows: • To assist MOSTI in the implementation of the National Cyber Security Policy NCSP • To provide Cyber Security Emergency Services and act as the national technical coordination centre • To conduct Cyber Threat Research Risk Assessment • To provide Cyber Security Quality Management Services • To build capability in the field of cyber security Training and to create awareness and a culture of cyber security Outreach Further information about CyberSecurity Malaysia can be viewed at: http:www.cybersecurity.myen 1.1.2 Workforce As of December 2009, CyberSecurity Malaysia has about 200 staff. MyCERT has 23 staff to operate the two main services that it is providing, the Cyber999 incident handling service and Malware Research Centre. 71 1.1.3 Constituency MyCERT’s primary constituency is the Malaysian Internet Users. Therefore, MyCERT handles security incidents reported by Malaysian as well as foreign institutions where the sources or target of incidents are within Malaysia.

2. ACTIVITIES IN YEAR 2009