Telecomunicaciones de Ecuador EcuCERT FIRST/TF-CSIRT Technical - PowerPoint PPT Presentation

Superintendencia de Telecomunicaciones de Ecuador EcuCERT FIRST/TF-CSIRT Technical Colloquium Zurich 2014

Ecuador LANGUAGE: SPANISH POPULATION: AROUND 16’ ITS POSTITION IS 66 IN THE WORLD SIMILAR TO NETHERLANDS 65 IN THE WORLD AREA : 256,370 KM2 , IT`S POSITION IS AROUND 80 IN THE WORLD SIMILAR TO UNITED KINGDOM SIMILAR TO NEW ZELAND

1 2 3 4

Galápagos - Islands

Coast – Pacific Ocean

Los Andes – Highlands

Amazon – Rain Forest

Cities - Quito

Cities - Guayaquil

Cities - Cuenca

People of Ecuador

FAIR PLAY

Superintendencia de Telecomunicaciones

EcuCERT’s Team

Ecuador Telecommunication Statistics: 2’ million fixed lines, 6 operators 15’2 million mobile users, 3 operators 10´4 millions internet users, 234 ISP Domains: general use .ec - clubsuizo.ec Government use .gob.ec - supertel.gob.ec Commercial use .com.ec - casadelsuizo.com.ec

INDIVIDUAL EFFORTS

In which areas we are working? • National Coordination • Constituency, mission, services, • Establishing Policies • Appropriated Workplace • Incident handling • Training • Membership to FIRST

COORDINATION • CYBER SECURITY COMMITTEE • NATIONAL CYBER SECURITY PLAN • PERSONAL DATA PROTECTION LAW • TELECOMMUNICATIONS AND CYBER SECURITY LAW

CONSTITUENCY • Our constituency will be at the beginning: – The telecommunication sector – The government • But in the future we will increase to all the citizens

APPROPRIATED WORKPLACE • Installing the ECUCERT's data center • Buying the better tools of hardware and software • Equipping the forensic laboratory • Improving the network infrastructure • Improving the physical and logical security

INCIDENT HANDLING • We are using RTIR – How to recive an incident – Incident handling process – Reports

RECIVED TRAINING • Our personal has been trained in courses that are aimed to potential CSIRT knowledge, to gain a good grounding in the main aspects of working in an incident handling and response team: – EC-Council: 1) Incident Handler, 2) Ethical Hacking, 3) Certified Security Analysis. – TERENA: Transits 1 – LACNIC: Proyecto Amparo – ITU – IMPACT: Workshops, Ciberdrills. – USCERT-ICSCERT: Industrial Control Systems Cybersecurity – USTTI: Cybersecurity and ICT Policy – and a large number of local trainings

Registered cyber crimes CSIRT Nacional Ecucert - Supertel January 2012 – December 2013 IP-PBX FRAUD  232 registred cases  Companies and Institutions (Grupo de abogados, Servicios petroleros, IESS, Cancillería, Uniandes, Banco del Austro, Cabired, Motransa, Servidinámica, LG, Uniplex, Telecuatro, entre otros)  Economic damage (over 5´ USD)  Atypical destinations(Guinea, Ghana, Austria, Gambia, Iridium, Cuba)

Registered cyber crimes CSIRT Nacional Ecucert - Supertel January 2013 – December 2013 “ Defacement ”  943 registered cases  Government and private domains  Attacked domains (Registro Civil, Bomberos, Registro de la Propiedad, Puerto de Esmeraldas, Movistar, Armada, Universidad Israel, CCI, ESPOL, Yamaha, aesoft, entre otros).

Registered cyber crimes Defacements 0,40% 0,37% 0,25% 1,80% 4,32% .com.ec 4,75% .gob.ec / .gov.ec 9,67% .ec 41,23% .edu.ec .org.ec .mil.ec .fin.ec 37,21% .net.ec .med.ec