go to Content

TWCERT/CC Taiwan Computer Emergency Response Team/Coordination Center


APCERT Conducts a Cyber Drill on “Data Breach Via Malware on IoT”

  • Department:TWCERT/CC
  • Update:2020-03-25
  • Count Views:904
APCERT Conducts a Cyber Drill on “Data Breach Via Malware on IoT”

The Asia Pacific Computer Emergency Response Team (APCERT) today has successfully completed its annual drill to test the response capability of leading Computer Security Incident Response Teams (CSIRT) from the Asia Pacific economies. For the fifth time, APCERT involved the participation of members from the Organisation of the Islamic Cooperation – Computer Emergency Response Team (OIC-CERT) in this annual drill.

The theme of the APCERT Drill 2018 was “Data Breach via Malware on IoT”. The exercise reflects real incidents and problems that exist on the Internet. The scenario, for this year, simulated an attack on the medical sector where initial compromised followed exfiltration of data and infection of IoT devices within the medical sector.

Throughout the exercise, the participating teams activated and tested their incident handling arrangements. This drill included the need to interact both locally and internationally, with CSIRTs/CERTs and victim organisations, for the coordinated suspension of malicious infrastructure, analysis of malicious code, as well as notification and assistance to affected entities. This incident response exercise, which was coordinated across many economies, reflects the collaboration amongst the economies and validates the enhanced communication protocols, technical capabilities and quality of incident responses that APCERT fosters in assuring Internet security and safety.

27 CSIRT teams from 20 economies (Australia, Bangladesh, Brunei Darussalam, People's Republic of China, Chinese Taipei, Hong Kong, India, Indonesia, Japan, Korea, Lao People's Democratic Republic, Macao, Malaysia, Mongolia, Myanmar, New Zealand, Singapore, Sri Lanka, Thailand and Vietnam) of the APCERT participated in the drill. From the external parties, CSIRT teams from 5 economies (Egypt, Morocco, Nigeria, Oman, and Pakistan) of the OIC-CERT participated.

TWCERT/CC participated in the drill this year as the scenerio designer, EXCON member, player and observer.

APCERT was established by leading and national Computer Security Incident Response Teams (CSIRTs) from the economies of the Asia Pacific region to improve cooperation, response and information sharing among CSIRTs in the region. APCERT Operational Members consist of 30 CSIRTs from 21 economies. Further information about APCERT can be found at: APCERT.

OIC-CERT was established in January 2009, to provide a platform for member countries to explore and to develop collaborative initiatives and possible partnerships in matters pertaining to cyber security that shall strengthen their self reliant in the cyberspace. OIC-CERT consists of 33 CERTs, cyber security related agencies and professional from 20 economies. Further information about OIC-CERT can be found at: OIC-CERT.