Incident handling reports Abuse statistics
2.1. Incident handling reports
Incident reports are increasing rapidly as there is an increase in the natural reports being submitted, but also the increase is due to the addition of a service that proactively warns website owners of security issues. Reluctance from reporting issues provides a challenge in addressing the cyber security of Macau. Sources of incidents are from three distinct channels. 1. Reported by Web 2. Reported by Phone message 3. MOCERT initiated from incident discovery activity. 152 Early Warning Notices - A website collects notifications related to computer security, where all notifications are reviewed by staff to determine the impact to Macao constituency. The notifications are then classified to Issues and Advisories and then posted. The following diagram shows the distribution of the 789 postings in 2014 with 670 postings being Advisories, and 119 Issues.2.2. Abuse statistics
The following pie graph denotes the abuse distribution as noted for the year 2014. The numbers are drawn from the incidents handled with the removal of the “web notices” as they do not constitute an abuse. 153 154 3. Events organized co-organized 26 th February 2014 - “Vapor Trails of Malware - Volatility” The seminar was presented on the 26th February 2014 where it introduced the memory analysis framework called Volatility. This framework can be used by first line respondents and check of suspicious processes by accessing the information that resides in the memory of the computer 30 th May 2014 - “OWASP Top 10 Mobile Security Risks” The seminar was presented on the 30 th May 2014 where the seminar provides information on the top ten 1 risks as listed by the Open Web Security Project OWASP and details the impact of the risk being realized and discusses about some prevention tips.. 18 th November 2014 - “DDoS Seminar” The seminar was presented on the 18 th November 2014 where the seminar reveals the impact of DDoS attacks temporarily or indefinitely interrupt or suspend services of a host connected to the internet. 20 th November 2014 - “Cracks in the Pillars of IT Security” “Clean PC Day” Titled “Cracks in the Pillars of IT Security” and “Clean PC Day” Co-organized with Public Administration and Civil Service Bureau SAFP a string of seminars and a clean PC workshop to highlight the risks, and counter measures that internet users need to deal when using internet connected computers. This activity was held on the 20 th November 2014, at Macau Science Center 1553.1. Training
Parts
» Objectives and Scope of Activities
» APCERT Members APCERT Annual Report 2014
» Working Groups WG APCERT Website
» International Activities and Engagements
» BruCERT Establishment BruCERT Workforce BruCERT Constituents
» Encounter and infection rate trends
» Malicious websites Summary of BruCERT Honey Pot Project
» Establishment Workforce power Constituency
» Drills Meetings Presentations Publications – Cyber alerts, advisories and strategies
» Incident handling Reports Abuse Statistics Incident Trends
» Cyber Security Assurance initiatives Future projects
» Introduction Establishment Workforce power Constituency Contact Incident handling
» Internet Awareness 1. Malware Activities Website Security
» Mobile Awareness Conferences Achievements 1. Publications
» Introduction EC-CERT Services Achievements 1. Publications
» About ID-CERT Introduction APCERT Annual Report 2014
» Abuse Statistic New Service Etc
» Establishment Management and Staffs Constituencies and Stakeholders Main activities:
» Drills About JPCERTCC Establishment
» About KrCERTCC Introduction About MNCERTCC Introduction
» Statistics Activities Operations 1. Incident handling reports
» Drill Seminars Events organized co-organized 1. Competition
» Incident handling reports Abuse statistics
» Training Drills Seminars Publication. Sensors
» Activities About MOCERT Introduction
» Threats About MOCERT Introduction
» Incident trends About MOCERT Introduction
» Training Education Drills Seminars Presentations
» Future plan About MOCERT Introduction
» The Cyber999 Malware Research Centre MRC Constituency
» Cyber Drills Trainings Presentations Tools Developed Paper Publication
» MyCERT’s Activities Operation 1. Incident handling reports and abuse statistics Working Visits
» Memorandum of Understanding MoU New Partnership and Existing Cooperation
» Incident handling reports The Telecommunications Intercept Capability and Security Act TICSA
» Training Drills Publications About MOCERT Introduction
» Activity Summary About SingCERT Introduction
» Incident Handling Statistics About SingCERT Introduction
» Training Education Consultancy About SingCERT Introduction
» Seminars Workshops About SingCERT Introduction
» Publications Other Media Certification Membership MOUs
» Event Participation International Incident Coordination
» Future Plans Conclusion Activities Operations 1. Abuse statistics
» Security Vulnerability Announcement Spam Analysis Report Anti-Phishing Now
» MoU International Collaboration APCERT Annual Report 2014
» Establishment Workforce Power Mission and Constituency
» Incident Handling Government Information Sharing and Analysis Center Training
» Drills Conference Presentation Publication Incident Report
» International Organization Membership Participation to International Events MOU
Show more