Bangladesh Cyber Incident Trends 2013 & bdCERT Update
-
Upload
fakrul-alam -
Category
Technology
-
view
170 -
download
3
Transcript of Bangladesh Cyber Incident Trends 2013 & bdCERT Update
![Page 1: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/1.jpg)
Bangladesh Cyber Incident Trends 2013
&
bdCERT Update
Fakrul Alam
* fakrul [at] bdcert [dot] org * http://www.bdcert.org *
SANOG XXIV | 01-09 August, 2014 | Delhi, India
Bangladesh Computer Emergency Response Team
![Page 2: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/2.jpg)
bdCERT Overview
![Page 3: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/3.jpg)
bdCERT
January 2007 July 2007 November 2007 December 2008
January 2009
Formed Operation
![Page 4: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/4.jpg)
bdCERT : Mission Statement
Always Trusted Contact, Increase Computer and Network Security for
Bangladesh Internet and Intranet Users, Knowledge Sharing with other
CERTs & Related Organization.
![Page 5: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/5.jpg)
bdCERT : Function
• Point of contact for reporting local problems.
• Share information and lessons learned from other CERTs, response
teams, organizations and sites.
• Incident tracing & response.
• Organize training, research and development.
![Page 6: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/6.jpg)
bdCERT : Activities
• Incident Handling
• SMS
• FAX
• Web Form
http://www.bdcert.org/v2/incident-report/
![Page 7: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/7.jpg)
bdCERT : Activities
• “Internet Traffic Monitoring Data Visualization Project” with JPCERT/CC (Japan Computer
Emergency Response Team / Coordination Center) named “TSUBAME”.
• Collaboration with Team Cymru.
• Participate in APCERT, OIC-CERT Cyber Security Drill
• bdCERT actively participated in drafting the first National Cyber Security Strategy endorsed by
Access to Information (a2i), PMO. The strategy was drafted by a special committee under the
supervision of Controller of Certificate Authorities, Ministry of IC
• Participate in 2013 APISC Security Training Course (TRANSITS-I)
• MoU with CNCERT for “CNCERT International Co-Operation Partner”
![Page 8: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/8.jpg)
bdCERT : ASN Portal
![Page 9: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/9.jpg)
bdCETR : Future Plan
• Introduce New services.
• Consulting & Awareness Programs.
• New collaborations.
• Security Workshop for Government and Academics.
• FIRST Membership
![Page 10: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/10.jpg)
Bangladesh Cyber Incident
Trends 2013
![Page 11: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/11.jpg)
Bangladesh Cyber Security Incidents
0
50000
100000
150000
200000bots
bruteforce
ddosreport
malwareurl
openresolvers
phishing
proxy
routers
scanners
spam
Data received from censor maintained by bdCERT
![Page 12: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/12.jpg)
Bangladesh Cyber Security Incidents
• Hacktivism takes center stage.
• Phishing / Site Defacements are more common.
• Government sites (.gov.bd domain) are mainly targeted; mostly run on
outdated Joomla engine/plugins.
• DDoS attack are increasing. Mostly target online banking web portal.
• Increase of Facebook incident reporting.
![Page 13: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/13.jpg)
Phishing Attack
![Page 14: Bangladesh Cyber Incident Trends 2013 & bdCERT Update](https://reader033.fdocuments.in/reader033/viewer/2022051617/55a4dfc81a28abad0e8b4699/html5/thumbnails/14.jpg)
Site Defacement