Background and Project Description
“The recent Equifax and WannaCry attacks have highlighted within the network security community the need for an improved incident response.” – APNIC, Sept. 14, 2017
“The first six months of 2017 have seen an inordinate number of cybersecurity meltdowns. And they weren't just your standard corporate breaches. It's only July, and already there's been viral, state-sponsored ransomware, leaks of spy tools from US intelligence agencies, and full-on
campaign hacking. And that's just the beginning.” – Wired, July 1, 2017
“In 2015, there were numerous media and researchers stating that ransomware was not all it’s cracked up to be. Ransomware accounted for roughly USD325 million in damages in 2015, according to Microsoft. After a surge of attacks the following year, Cybersecurity Ventures predicted that ransomware damages and related costs would reach USD1 billion annually in 2016. According to the Cisco 2017 Annual Cybersecurity Report, ransomware is growing at a yearly rate of 350%.” – Cybersecurity Ventures, May 18, 2017.
Agreeing with the need to improve cybersecurity incident responses and emphasizing the importance of threat intelligence handling processes, Malaysia in collaboration with the Asia-Pacific Network Information Centre (APNIC), will be hosting the Cybersecurity Incident Management Awareness Workshop with the aim to provide a forum to raise awareness among the regulators and policy makers, as well as discuss and share the lessons learned by Malaysia and the APNIC in monitoring and responding to attacks, including the potential solutions to addressing the root cause of attacks.
Consistent with Priority Area 5.2 of the APEC TEL Strategic Action Plan 2010-2015, i.e. the promotion of a secure, resilient and trusted ICT environment, this project aims to share the following objectives and expected outcomes with the APEC member economies on cybersecurity incident management:
a) To raise awareness on the imminent and pervasive nature of cybersecurity attack cases;
b) To share best practices and lessons learned by Malaysia during recent incident handling cases;
c) To share APNIC’s regional perspective on incident handling; and
d) To share the methodology and best practices on the gathering and handling of threat intelligence through semi-technical tutorial exercises.
2 Securit Tracks during the half day workshop which will be conducted by MCMC and the APNIC:
a) Track One: Incident Management
b) Track Two: Threat Intelligence Handling
Parties relevant to/ interested in cybersecurity issues such as policy makers, regulatory bodies and related business operators are invited to share views on the findings and similar issues experienced in their respective economies.
A half-day workshop for presentation and information sharing during TEL56 on 12 December 2017.