Presentation is loading. Please wait.

Presentation is loading. Please wait.

CERT cooperation with ISP’s on Cybersecurity C ă t ă lin P ă trașcu CERT-RO 29 October 2015 RONOG 2 Meeting1.

Published byPoppy Reeves Modified over 8 years ago

Similar presentations

Presentation on theme: "CERT cooperation with ISP’s on Cybersecurity C ă t ă lin P ă trașcu CERT-RO 29 October 2015 RONOG 2 Meeting1."— Presentation transcript:

1 CERT cooperation with ISP’s on Cybersecurity C ă t ă lin P ă trașcu catalin.patrascu@cert.ro CERT-RO 29 October 2015 RONOG 2 Meeting1

2 Who is CERT-RO? 29 October 2015 RONOG 2 Meeting2 CERT-RO is the Romanian National Computer Security Incident Response Team an independent structure, with expertise in the field of cyber security, that has the capacity to prevent, analyze, identify and respond to cyber security incidents threatening Romanian national cyber-space coordinated by the Ministry for Information Society and fully financed by the state budget

3 What does CERT-RO do? Acts as a National Point of Contact, collecting cyber security alerts from different stakeholders regarding vulnerabilities and incidents (IP’s, domains, URLs, IoC’s) Incident response activities (first response, investigations, mitigation, technical support, data dissemination and coordination) Operates an Early Warning System (EWS) on cyber-security incidents, based on the alerts received and data gathered from own detection sensors Technical Audits, Pentests, Foreniscs, Technical Workshops 29 October 2015 RONOG 2 Meeting3

4 CERT-RO statistic on alerts received in 2014 29 October 2015 RONOG 2 Meeting4

5 Last years trend 29 October 2015 RONOG 2 Meeting5 2013 – 43.2 million alerts processed 2014 – 78.7 million alerts processed Approximated 82% growth

6 We need to do something There are almost 3 years since CERT-RO notifies ISP’s in RO about different malicious/suspicious resources/activities - Botnets (IP’s of infected systems, or even C2 servers) - Vulnerabilities (NTP, Open resolver etc.) - Malicious URL’s (malware, phishing etc.) - DDoS Attacks Maybe we should do something more then “one-way emails” 29 October 2015 RONOG 2 Meeting6

7 Use a standard for information sharing? 29 October 2015 RONOG 2 Meeting7 STIX https://stixproject.github.io/

8 Use a platform for information sharing? 29 October 2015 RONOG 2 Meeting8 Information sharing in real time?

9 End user notification? 29 October 2015 RONOG 2 Meeting9 We already started to work on that with one ISP in RO

10 Help users to fight botnets 29 October 2015 RONOG 2 Meeting10

11 THANK YOU! 29 October 2015 RONOG 2 Meeting11 QUESTION S ? C ă t ă lin P ă trașcu catalin.patrascu@cert.ro CERT-RO

Download ppt "CERT cooperation with ISP’s on Cybersecurity C ă t ă lin P ă trașcu CERT-RO 29 October 2015 RONOG 2 Meeting1."

Similar presentations

IGF Hyderabad 2008 Dimensions of Cyber Security & Cyber Crime Michael Lewis, Carnegie Mellon University & Deputy Director, Q-CERT.

IGF Hyderabad 2008 Dimensions of Cyber Security & Cyber Crime Michael Lewis, Carnegie Mellon University & Deputy Director, Q-CERT.
Its a new digital world with new digital dangers….

Its a new digital world with new digital dangers….
1 ASEAN Regional Forum Meeting 28 – 30 April 2010 Bandar Seri Begawan, Brunei CERT-Ins Initiative on International Information Security Dr A S Kamble Director.

1 ASEAN Regional Forum Meeting 28 – 30 April 2010 Bandar Seri Begawan, Brunei CERT-Ins Initiative on International Information Security Dr A S Kamble Director.
Philippine Cybercrime Efforts

Philippine Cybercrime Efforts
The National Plateforme for Tracking Cyber Attacks :

The National Plateforme for Tracking Cyber Attacks :
IMPROVING THE INTERNATIONAL COMPARABILITY OF STATISTICS PRODUCED BY CSIRTs Developing Cybersecurity Risk Indicators panel 26 th Annual FIRST Conference.

IMPROVING THE INTERNATIONAL COMPARABILITY OF STATISTICS PRODUCED BY CSIRTs Developing Cybersecurity Risk Indicators panel 26 th Annual FIRST Conference.
GAMMA Overview. Key Data Grant Agreement n° 312382 Starting date: 1 st September 2013 Duration: 48 months (end date 31 st August 2017) Total Budget: 14.837.981.

GAMMA Overview. Key Data Grant Agreement n° Starting date: 1 st September 2013 Duration: 48 months (end date 31 st August 2017) Total Budget:
Jinhyun CHO Senior Researcher Korea Internet and Security Agency.

Jinhyun CHO Senior Researcher Korea Internet and Security Agency.
CPT Aneta COUFALÍKOVÁ, Ph.D. CIRC Centre, 34.zKIS, Czech Army CIRC.

CPT Aneta COUFALÍKOVÁ, Ph.D. CIRC Centre, 34.zKIS, Czech Army CIRC.
Radware DoS / DDoS Attack Mitigation System Orly Sorokin January 2013.

Radware DoS / DDoS Attack Mitigation System Orly Sorokin January 2013.
SESSION ID: #RSAC Chaz Lever Characterizing Malicious Traffic on Cellular Networks A Retrospective MBS-W01 Researcher Damballa,

SESSION ID: #RSAC Chaz Lever Characterizing Malicious Traffic on Cellular Networks A Retrospective MBS-W01 Researcher Damballa,
1. 2 A High Tech Crime Investigation Lessons learned by the National High Tech Crime Center Hans Oude Alink, project leader NHTCC November 2005.

1. 2 A High Tech Crime Investigation Lessons learned by the National High Tech Crime Center Hans Oude Alink, project leader NHTCC November 2005.
Registrars and Security Greg Rattray Chief Internet Security Advisor.

Registrars and Security Greg Rattray Chief Internet Security Advisor.
1 Case Study ESTABLISHING NATIONAL CERT By Saleem Al-Balooshi Etisalat - AE.

1 Case Study ESTABLISHING NATIONAL CERT By Saleem Al-Balooshi Etisalat - AE.
(Geneva, Switzerland, September 2014)

(Geneva, Switzerland, September 2014)
NIS Directive and NIS Platform

NIS Directive and NIS Platform
Geneva, Switzerland, 15-16 September 2014 Overview of Kenya’s Cybersecurity Framework Michael K. Katundu Director, Information Technology Communications.

Geneva, Switzerland, September 2014 Overview of Kenya’s Cybersecurity Framework Michael K. Katundu Director, Information Technology Communications.
Matteo Cavallini – ULS MEF/Consip Digital Agenda Assembly – Cybersecurity: barriers and incentives Matteo Cavallini Cybersecurity: State of the Art and.

Matteo Cavallini – ULS MEF/Consip Digital Agenda Assembly – Cybersecurity: barriers and incentives Matteo Cavallini Cybersecurity: State of the Art and.
BOTNETS & TARGETED MALWARE Fernando Uribe. INTRODUCTION  Fernando Uribe   IT trainer and Consultant for over 15 years specializing.

BOTNETS & TARGETED MALWARE Fernando Uribe. INTRODUCTION  Fernando Uribe   IT trainer and Consultant for over 15 years specializing.
The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions 631-692-5175 Steve Katz, CISSP Security.

The Difficult Road To Cybersecurity Steve Katz, CISSP Security Risk Solutions Steve Katz, CISSP Security.

Similar presentations

Ads by Google