Introduction Establishment Workforce power Constituency Contact Incident handling
1.1. Introduction
The National Computer Network Emergency Response Technical TeamCoordination Center of China known as CNCERT or CNCERTCC is a non-governmental non-profit cybersecurity technical center and the key coordination team for China’s cybersecurity emergency response community.1.2. Establishment
CNCERT was founded in 2002, and became a member of FIRST in Aug 2002. It also took an active part in the establishment of APCERT as a founding member.1.3. Workforce power
CNCERT, which is based in Beijing, the capital of China, has spread branch offices in 31 provinces, autonomous regions and municipalities in mainland China.1.4. Constituency
As a national CERT, CNCERT strives to improve nation’s cybersecurity posture, and protect critical infrastructure cybersecurity. CNCERT leads efforts to prevent, detect, warn and coordinate the cybersecurity threats and incidents, according to the guideline of “proactive prevention, timely detection, prompt response and maximized recovery”.1.5. Contact
E-mail: cncertcert.org.cn Hotline: +8610 82990999(Chinese), 82991000(English) Fax: +8610 82990375 PGP Key: http:www.cert.org.cncncert.asc 55 2. Activities Operations2.1. Incident handling
In 2014, CNCERT received a total of about 56.2 thousand incident complaints, a 77.3 increase from the previous year. And among these incident complaints, 878 were reported by overseas organizations, making a 9.6 drop from the year of 2013. As shown in Figure 2-1, most of the victims were plagued by vulnerability 36.4, phishing 32.1and website defacement16.3. Vulnerability still overtook phishing to be the most frequent incident complained about. And website defacement ranked the third place with an increase of 1.9 from 2013. Figure 2-1Categories of the Incident Reported to CNCERT in 2014 In 2014, CNCERT handled almost 56.1 thousand incidents, a significant rise of 79.8 compare with that in 2013. As illustrated in Figure 2-2, vulnerability 36.1 dominated the categories of the incidents handled by CNCERT in 2014, followed by phishing 32.0 and website defacement 16.0. 56 Figure 2-2 Categories of the Incidents Handled by CNCERT in 2014 2.2. Internet Awareness 2.2.1. Malware ActivitiesParts
» Objectives and Scope of Activities
» APCERT Members APCERT Annual Report 2014
» Working Groups WG APCERT Website
» International Activities and Engagements
» BruCERT Establishment BruCERT Workforce BruCERT Constituents
» Encounter and infection rate trends
» Malicious websites Summary of BruCERT Honey Pot Project
» Establishment Workforce power Constituency
» Drills Meetings Presentations Publications – Cyber alerts, advisories and strategies
» Incident handling Reports Abuse Statistics Incident Trends
» Cyber Security Assurance initiatives Future projects
» Introduction Establishment Workforce power Constituency Contact Incident handling
» Internet Awareness 1. Malware Activities Website Security
» Mobile Awareness Conferences Achievements 1. Publications
» Introduction EC-CERT Services Achievements 1. Publications
» About ID-CERT Introduction APCERT Annual Report 2014
» Abuse Statistic New Service Etc
» Establishment Management and Staffs Constituencies and Stakeholders Main activities:
» Drills About JPCERTCC Establishment
» About KrCERTCC Introduction About MNCERTCC Introduction
» Statistics Activities Operations 1. Incident handling reports
» Drill Seminars Events organized co-organized 1. Competition
» Incident handling reports Abuse statistics
» Training Drills Seminars Publication. Sensors
» Activities About MOCERT Introduction
» Threats About MOCERT Introduction
» Incident trends About MOCERT Introduction
» Training Education Drills Seminars Presentations
» Future plan About MOCERT Introduction
» The Cyber999 Malware Research Centre MRC Constituency
» Cyber Drills Trainings Presentations Tools Developed Paper Publication
» MyCERT’s Activities Operation 1. Incident handling reports and abuse statistics Working Visits
» Memorandum of Understanding MoU New Partnership and Existing Cooperation
» Incident handling reports The Telecommunications Intercept Capability and Security Act TICSA
» Training Drills Publications About MOCERT Introduction
» Activity Summary About SingCERT Introduction
» Incident Handling Statistics About SingCERT Introduction
» Training Education Consultancy About SingCERT Introduction
» Seminars Workshops About SingCERT Introduction
» Publications Other Media Certification Membership MOUs
» Event Participation International Incident Coordination
» Future Plans Conclusion Activities Operations 1. Abuse statistics
» Security Vulnerability Announcement Spam Analysis Report Anti-Phishing Now
» MoU International Collaboration APCERT Annual Report 2014
» Establishment Workforce Power Mission and Constituency
» Incident Handling Government Information Sharing and Analysis Center Training
» Drills Conference Presentation Publication Incident Report
» International Organization Membership Participation to International Events MOU
Show more