APCERT CYBER DRILL 2020 “BANKER DOUBLES DOWN ON MINER”

APCERT CYBER DRILL 2020 “BANKER DOUBLES DOWN ON MINER”

Dated : 11 March 2020

The Asia Pacific Computer Emergency Response Team (APCERT) today has successfully completed its annual drill to test the response capability of leading Computer Security Incident Response Teams (CSIRT) within the Asia Pacific economies.

The theme of this year’s APCERT Drill is “Banker doubles down on Miner”. This exercise reflects real incidents and issues that exist on the Internet. The participants handled a case of a local business affected by malware infection which is triggered by data breach.

This drill included the need for the teams to interact locally and internationally, with CSIRTs/CERTs and targeted organizations, for coordinated suspension of malicious infrastructure, analysis of malicious code, as well as notification and assistance to affected entities. This incident response exercise, which was coordinated across many economies, reflects the collaboration amongst the economies in mitigating cyber threats and validates the enhanced communication protocols, technical capabilities and quality of incident responses that APCERT fosters in assuring Internet security and safety.

Throughout the exercise, the participating teams activated and tested their incident handling arrangements.  This drill included the need for the teams to interact locally and internationally, with CSIRTs/CERTs and targeted organizations, for coordinated suspension of malicious infrastructure, analysis of malicious code, as well as notification and assistance to affected entities. This incident response exercise, which was coordinated across many economies, reflects the collaboration amongst the economies in mitigating cyber threats and validates the enhanced communication protocols, technical capabilities and quality of incident responses that APCERT fosters in assuring Internet security and safety.

25 CSIRTs from 19 economies of APCERT (Australia, Bangladesh, Brunei Darussalam, People’s Republic of China, Chinese Taipei, Hong Kong, India, Indonesia, Japan, Korea, Lao People’s Democratic Republic, Macau, Malaysia, Myanmar, New Zealand, Singapore, Sri Lanka, Thailand, and Vietnam) participated in the drill. From the external parties, CSIRTs from 7 economies (Benin, Egypt, Jordan, Morocco, Nigeria, Pakistan and Tunisia) of OIC-CERT and AfricaCERT participated.

BGD e-GOV CIRT has participated in the APCERT CYBER DRILL 2020.  Team BGD e-GOV CIRT had all the necessary preparation for the drill and performed as per expectation. Team’s respond to all the drill questions promptly and successfully analyzed the provided malware.  This drill addressed a burning issue of financial sector’s current cyber security domain. This participation gave a  clear idea about real life problems, also tested readiness for potential threats that may occur in future. For the very first time, BGD e-GOV CIRT had participated in all three roles Players (incident handlers & forensics), Observers (Team kept close communications with the event organizers as well as provided all necessary information to players) and ExCon (the team worked as Drill Mentors for other CERT).

About BGD e-GOV CIRT

Bangladesh Government’s Computer Incident Response Team (BGD e-GOV CIRT) is acting as the National CERT of Bangladesh (NCERT) currently with responsibilities including receiving, reviewing, and responding to computer security incidents and activities. Under the Government of People’s Republic of Bangladesh, BGD e-GOV CIRT reviews and takes necessary measures to resolve the issue with broad cybersecurity ramifications, conducts research & development and provides guidance on security vulnerabilities. BGD e-GOV CIRT also work with various government units, Critical Information Infrastructures, financial organizations, law enforcement agencies, academia & civil society to help to improve the cybersecurity defense of Bangladesh. BGD e-GOV CIRT has a very strong tie with international organizations and cybersecurity communities and working as a focal point of Bangladesh for trans-border cyber issues.

About APCERT

APCERT was established by leading and national Computer Security Incident Response Teams (CSIRTs) from the economies of the Asia Pacific region to improve cooperation, response and information sharing among CSIRTs in the region. APCERT Operational Members consist of 30 CSIRTs from 21 economies. Further information about APCERT can be found at: www.apcert.org

Find the press release here.

Share