Pakistan Computer Emergency Response Team

Last updated

Pakistan Computer Emergency Response Team (PKCERT)
AbbreviationPKCERT
FormationOctober 12, 2023
TypeGovernment agency
Legal statusActive
Purpose Cybersecurity
Location
  • Pakistan
Region served
Pakistan
Director General
Dr. Haider Abbas
Parent organisation
Ministry of Information Technology and Telecommunication (MoITT)
Website PKCERT Website

Pakistan Computer Emergency Response Team (PKCERT) is a national initiative aimed at strengthening cyber security in Pakistan. PKCERT was established to counter the growing cyber threats and hacking attempts targeting various public sector entities.

Contents

History

The Ministry of Information Technology and Telecommunication (MoITT) on 12 October 2023 announced the formation of the country's first National Computer Emergency Response Team (CERT). [1] The development was aimed at keeping Pakistan's cyberspace safe from emerging threats and hacking attempts targeting public sector institutions. [2] [3]

The Federal Cabinet of Pakistan approved the Computer Emergency Response Teams (CERTs) Rule 2023 on 17 July 2023. [4] The Ministry of Information Technology and Telecommunication officially notified the CERT Rules on 13 October 2023. [5]

Role and responsibilities

The primary objective of these CERT teams at both the national and sectoral levels is to enhance Pakistan's overall cyber security posture and resilience. [2] [3] CERTs are responsible for protecting against, detecting and responding to cyber security incidents, and will enhance the country's capacity to manage cyber security incidents. [6] The recently established CERT team is assigned to create a national framework that will manage responses to threats, assaults on vital infrastructure, information systems, data, or extensive breaches of information systems throughout Pakistan. [1]

Founding Director General / Head of Pakistan's CERT

Dr. Haider Abbas, an eminent professor from the National University of Sciences and Technology, has been designated as the founding Director General of Pakistan's National Cyber Emergency Response Team. [7]

Related Research Articles

<span class="mw-page-title-main">Computer security</span> Protection of computer systems from information disclosure, theft or damage

Computer security is the protection of computer software, systems and networks from threats that can lead to unauthorized information disclosure, theft or damage to hardware, software, or data, as well as from the disruption or misdirection of the services they provide.

The United States Computer Emergency Readiness Team (US-CERT) was a team under the Cybersecurity and Infrastructure Security Agency of the Department of Homeland Security.

<span class="mw-page-title-main">National Cyber Security Division</span>

The National Cyber Security Division (NCSD) is a division of the Office of Cyber Security & Communications, within the United States Department of Homeland Security's Cybersecurity and Infrastructure Security Agency. Formed from the Critical Infrastructure Assurance Office, the National Infrastructure Protection Center, the Federal Computer Incident Response Center, and the National Communications System, NCSD opened on June 6, 2003.

The Korea Internet & Security Agency is the Ministry of Science and ICT's sub-organization dealing with the allocation and maintenance of South Korea's IPv4/IPv6 address space, Autonomous System Numbers, and the .kr country code top-level domain (ccTLD), and also responsible for the cybersecurity of the Internet within South Korea, and runs the Korea Computer Emergency Response Team Coordination Center, a.k.a. KrCERT/CC, for the private sector of the country. Other roles include but are not limited to, the promotion of safe Internet usage and Internet culture, detecting and analyzing malware/viruses on the web, privacy protection, operating root CA, education on Internet and cybersecurity, and various other cybersecurity issues.

A computer emergency response team (CERT) is an incident response team dedicated to computer security incidents.

<span class="mw-page-title-main">CERT Coordination Center</span>

The CERT Coordination Center (CERT/CC) is the coordination center of the computer emergency response team (CERT) for the Software Engineering Institute (SEI), a non-profit United States federally funded research and development center. The CERT/CC researches software bugs that impact software and internet security, publishes research and information on its findings, and works with businesses and the government to improve the security of software and the internet as a whole.

<span class="mw-page-title-main">Internet police</span> Term describing governmental and official involvement in cyber policing

Internet police is a generic term for police and government agencies, departments and other organizations in charge of policing the Internet in a number of countries. The major purposes of Internet police, depending on the state, are fighting cybercrime, as well as censorship and propaganda.

An insider threat is a perceived threat to an organization that comes from people within the organization, such as employees, former employees, contractors or business associates, who have inside information concerning the organization's security practices, data and computer systems. The threat may involve fraud, the theft of confidential or commercially valuable information, the theft of intellectual property, or the sabotage of computer systems.

The Indian Computer Emergency Response Team is an office within the Ministry of Electronics and Information Technology of the Government of India. It is the nodal agency to deal with cyber security incidents. It strengthens security-related defence of the Indian Internet domain.

Cyber threat intelligence (CTI) is a subfield of cybersecurity that focuses on the structured collection, analysis, and dissemination of data regarding potential or existing cyber threats. It provides organizations with the insights necessary to anticipate, prevent, and respond to cyberattacks by understanding the behavior of threat actors, their tactics, and the vulnerabilities they exploit. Cyber threat intelligence sources include open source intelligence, social media intelligence, human Intelligence, technical intelligence, device log files, forensically acquired data or intelligence from the internet traffic and data derived for the deep and dark web.

The New Jersey Cybersecurity and Communications Integration Cell (NJCCIC), also known as the New Jersey Office of Homeland Security and Preparedness' (NJOHSP) Division of Cybersecurity, is the first American state-level information sharing and analysis organization in the United States that exchanges cyber threat intelligence and conducts incident response for governments, businesses, and citizens in New Jersey. Located at NJ’s Regional Operations and Intelligence Center (ROIC), and acting in a cyber fusion center capacity the NJCCIC is composed of staff from NJOHSP, the NJ Office of Information Technology, and the NJ State Police. The NJCCIC's nomenclature is derived from its federal counterpart, the National Cybersecurity and Communications Integration Center, which encompasses the U.S. Department of Homeland Security's Computer Emergency Readiness Team (US-CERT).

National Critical Information Infrastructure Protection Centre (NCIIPC) is an organisation of the Government of India created under Section 70A of the Information Technology Act, 2000 (amended 2008), through a gazette notification on 16 January 2014. Based in New Delhi, India, it is designated as the National Nodal Agency in terms of Critical Information Infrastructure Protection. It is a unit of the National Technical Research Organisation (NTRO) and therefore comes under the Prime Minister's Office (PMO).

The Department of Home Affairs is a department of the Government of Australia that is charged with responsibilities for national security, protective services, emergency management, border control, immigration, refugees, citizenship, transport security and multicultural affairs. The Home Affairs portfolio reports to the Minister for Home Affairs, currently held by Tony Burke, and is led by the Secretary of the Department of Home Affairs, Stephanie Foster.

The National Cybersecurity and Communications Integration Center (NCCIC) is part of the Cybersecurity Division of the Cybersecurity and Infrastructure Security Agency, an agency of the U.S. Department of Homeland Security. It acts to coordinate various aspects of the U.S. federal government's cybersecurity and cyberattack mitigation efforts through cooperation with civilian agencies, infrastructure operators, state and local governments, and international partners.

The 2019 cyberattacks on Sri Lanka were a series of powerful cyberattacks on at least 10 Sri Lankan domestic websites with the public domains of .lk and .com. The cyberattack is speculated to have been conducted on 18 and 19 May 2019, the day following the Vesak festival and amid the persistent temporary social media ban in the country. The website of the Kuwaiti Embassy operating in Sri Lanka was also affected by the cyberattacks. The investigations are currently carried out by Sri Lanka Computer Emergency Readiness Team along with Sri Lanka Signals Corps.

AusCERT is a non-profit organisation founded in 1993 that provides advice, education and solutions to cybersecurity threats and vulnerabilities.

<span class="mw-page-title-main">TR-CERT</span>

TR-CERT is an organization within the Information and Communication Technologies Authority (ICTA) which is the national regulatory authority of the Turkish electronic communication sector. It is responsible for the analysis and risk mitigation of large-scale cyber threats and vulnerabilities, communicating information regarding malicious cyber activities or possible vulnerabilities to computer security incident response teams (CSIRT) and the public.

<span class="mw-page-title-main">OIC Computer Emergency Response Team</span> Affiliated organ of the Organisation of Islamic Cooperation

The OIC Computer Emergency Response Team, commonly known as OIC-CERT, is a computer emergency response team and one of the 17 affiliated organs of the Organisation of Islamic Cooperation. Focused on global cybersecurity in the 27 member and non-member states, it is considered the world's third-largest computer emergency response team coordinated by the 27 countries. The OIC-CERT is primarily focused on providing emergency support in cyber resilience with global collaboration with its associated members and information security organizations. It also encourages member states to implement cybersecurity policies by their respective CERTs.

Brunei Computer Emergency Response Team, commonly known as BruCERT, is a computer emergency response team and national cybersecurity organization of Brunei Darussalam. Affiliated with the OIC Computer Emergency Response Team, the Asia Pacific CERT (APCERT), Forum of Incident Response and Security Teams (FIRST) and other international organizations in the information technology sector, it is tasked with preventing, analysing, and maintaining cybersecurity in addition to serving as a national research centre for IT infrastructure in the country.

Azerbaijan Computer Emergency Response Team, officially known as Azerbaijan Government CERT, is a computer emergency response team of the Republic of Azerbaijan responsible for cybersecurity and gathering data concerning information technology. It operates under the Special Communication and Information Security State Service of the government of Azerbaijan. It collects data within its framework from relevant sources, including internet users, computer engineering groups, individuals or organizations and software developers. It coordinates with the foreign countries for gathering and analysing data from cybersecurity incidents involving both software and hardware tools designed for the prevention of internet and computer security.

References

  1. 1 2 Desk, Web (12 October 2023). "Pakistan's first national 'Computer Emergency Response Team' established". Hum NEWS.{{cite web}}: |last= has generic name (help)
  2. 1 2 "IT ministry to form CERT to counter cyber attacks". Daily Times. 7 November 2021. Retrieved 29 November 2023.
  3. 1 2 "IT ministry to form CERT to counter cyber attacks". 2 November 2021.
  4. "Cabinet approves Computer Emergency Response Teams Rule 2023: Amin". The Nation. 17 July 2023.
  5. Amin, Tahir (13 October 2023). "CERT Rules, 2023 notified to bolster cyber security defences". Brecorder.
  6. "Fortifying cybersecurity: Pakistan's CERT Rules 2023 and their implications". www.ibanet.org.
  7. https://nust.edu.pk/news/prof-dr-haider-abbas-to-lead-pakistans-national-cybersecurity/