130 2.5. Abuse Statistics 2.5.1. Abuse Statistics on TSUBAME Sensor Log Data The following graph shows the top source country, top destination port and top source ip address statistics obtained from TSUBAME Sensor in 2014. 131 132 The following graphs show the top five countries, top five destination ports and top five source ip addresses statistics per month in 2014. 133

2.6. Capacity Building

As aims to promote capacity Building of mmCERT Members, MCIT selected the participants from mmCERTcc. These are training programs which they attended in Oversea during 2014.  Information Security for e-government promotion B, provide by JICA, at Okinawa, Japan January 21- May 31, 2014.  Training Program in Network Security Assessment and Proactive Defense, provide by ITEC, CDAC at Chandigarh, India January 24- March 24, 2014.  Foundation Program for Fresh Software Engineering graduates of Myanmar, 134 provide by UN, at Mysore, India February 5- April 24, 2014.  Malware Behavior Analysis and Detection Online Training provide by TWNCERT on November 5, 2014.  Participating in Information Security Training at Jakarta, Indonesia on December 1-13, 2014. 3. Events organized co-organized

3.1. Seminar Workshop

 Giving Seminar to Cyber Crime Unit Myanmar Police Force at CID, Insein in Yangon on July 8, 2014.  Providing Communication Forum on Responsible Social media in Myanmar Cyber Crime Unit to public at MICT on July 20, 2014.  Giving Seminar to West Yangon Technological University Students at mmCERT in Yangon on October 1-20, 2014.  Giving presentations to all members of mmCERT and delegated persons by the individual mmCERT members in December, 2014 4. International Collaboration

4.1. Drills

 Participating in APCERT Drill on February 19, 2014.  Participating in ASEAN CERT Incident Drill ACID 2014 on September 24, 2014.

4.2. Other Activities

 Participating in “5 th APT Cyber Security Forum” at Ulaanbaatar, Mongolia on May 24-30, 2014.  Participating in “6 th China-ASEAN Network Security Seminar” at Shantou, China on May 29-30, 2014.  Participating in 5 th ASEAN-JAPAN Information Security Workshop at Manila, Philippines on October 1-4, 2014.  Participating in 7th ASEAN Japan Information Security Policy Meeting and Symposium at Tokyo, Japan on October 7-9, 2014. 135 5. Future Plan mmCERT would like to participate and conduct in international capacity building projects as well as to proceed the following pending jobs and new plans. • Incident Drill • Updating Incident Management Guide book • Updating Incident Handling Methodology Guide Book • Secure and Updated Version of mmCERT Web server • Applicable Online Ticketing System 6. Conclusion During 2014, mmCERT has been made a progress on capacity building, proposing incident management policy, examining incident handling methodology, international co-operation and collaboration, arising public awareness activities. mmCERT intends to do research in incident attack cases, Tsubame log data analysis and to promote public awareness activities and distributing and sharing technical expertise to all citizens of Myanmar. We also intend to participate in international co-operation and collaboration more effectively and efficiently. 136 MNCERTCC Mongolia Cyber Emergency Response Team Coordination Center – Mongolia 1. About MNCERTCC 1.1. Introduction “MNCERTCC” non-government organization was established in 2014 and has been operating since under guidance and regulation of the Mongolian National Security Council. Our organization is responsible for monitoring and analyzing cyberattacks and responsiveness on a national level, creating awareness and providing assistance on national security, arranging amenities to exchange knowledge and experience with other CSIRT teams, receiving information of global and regional attacks and complications, delivering collaborative response, researching and analyzing in collaboration with teams from other nations.

1.1.1. Establishment

“MNCERTCC” was established on March 15 th , 2014 and founded on following grounds: Based on the component of information security of the Mongolian National Security Concept and National program for Cyber security, the 48 th resolution was approved by Mongolian State Great Hural State Great Assembly in 2010: • Objective 2.2 “Establish a system to respond on cyberattacks and incidents, develop national CERT, expand cooperation with organizations that have similar operations e.g. APCERT, FIRST, CERTCC Implementation date 2010-2012, financial source – foreign loan aid” • Objective 4-1 “To strengthen capacity of the organization obligated to provide security on state’s data and information Implementation date 2010-2015, financial source – foreign loan aid”

1.1.2. Workforce power

Human resource: - Head of Organization – 1 - Officer–2 - Incident Handler – 4