APCERT Cyber Drill 2018 "Data Breach via Malware on IoT"
The Asia Pacific Computer Emergency Response Team (APCERT) today (7 Mar 2018) has successfully completed its annual drill to test the response capabilities of leading Computer Security Incident Response Teams (CSIRT) within the Asia Pacific economies. For the fifth time, APCERT involved the participation of members from the Organisation of the Islamic Cooperation – Computer Emergency Response Team (OIC-CERT) in this annual drill.
The theme of this year’s APCERT Drill 2017 is "Data Breach via Malware on IoT". This exercise reflects real incidents and issues that exist on the Internet. The scenario, for this year, simulated an attack on the medical sector where the initial compromised was followed with exfiltration of data and infection of IoT devices within the medical sector.
Throughout the exercise, the participating teams activated and tested their incident handling arrangements. This drill included the need for the teams to interact with locally and internationally, with CSIRTs/CERTs and targeted organisations, for coordinated suspension of malicious infrastructure, analysis of malicious code, as well as notification and assistance to affected entities. This incident response exercise, which was coordinated across many economies, reflects the collaboration amongst the economies in mitigating cyber threats and validates the enhanced communication protocols, technical capabilities and quality of incident responses that APCERT fosters in assuring Internet security and safety.
27 APCERT teams from 20 economies (Australia, Bangladesh, Brunei Darussalam, People's Republic of China, Chinese Taipei, Hong Kong, India, Indonesia, Japan, Korea, Lao People's Democratic Republic, Macao, Malaysia, Mongolia, Myanmar, New Zealand, Singapore, Sri Lanka, Thailand and Vietnam) participated in the drill. From the external parties, CSIRT teams from 5 economies (Egypt, Morocco, Nigeria, Oman, and Pakistan) of the OIC-CERT participated.
HKCERT participated in the drill and also provided part of the infrastructure for the drill.
APCERT was established by leading and national Computer Security Incident Response Teams (CSIRTs) from the economies of the Asia Pacific region to improve cooperation, response and information sharing among CSIRTs in the region. APCERT Operational Members consist of 30 CSIRTs from 21 economies. Further information about APCERT can be found at: www.apcert.org.
OIC-CERT was established in January 2009, to provide a platform for member countries to explore and to develop collaborative initiatives and possible partnerships in matters pertaining to cyber security that shall strengthen their self reliant in the cyberspace. OIC-CERT consists of 33 CERTs, cyber security related agencies and professional from 20 economies. Further information about OIC-CERT can be found at: www.oic-cert.org.