Supertel

Superintendencia de
Telecomunicaciones de Ecuador
EcuCERT
FIRST/TF-CSIRT Technical Colloquium
Zurich 2014
Ecuador
LANGUAGE: SPANISH
POPULATION: AROUND 16’ ITS POSTITION IS 66 IN THE WORLD
SIMILAR TO NETHERLANDS 65 IN THE WORLD
AREA: 256,370 KM2 , IT`S POSITION IS AROUND 80 IN THE WORLD
SIMILAR TO UNITED KINGDOM
SIMILAR TO NEW ZELAND
1
2
3
4
Galápagos - Islands
Coast – Pacific Ocean
Los Andes – Highlands
Amazon – Rain Forest
Cities - Quito
Cities - Guayaquil
Cities - Cuenca
People of Ecuador
FAIR PLAY
Superintendencia de Telecomunicaciones
EcuCERT’s Team
Ecuador
Telecommunication
Statistics:
2’ million fixed lines,
6 operators
15’2 million mobile users,
3 operators
10´4 millions internet users,
234 ISP
Domains:
general use .ec - clubsuizo.ec
Government use .gob.ec - supertel.gob.ec
Commercial use .com.ec - casadelsuizo.com.ec
INDIVIDUAL EFFORTS
In which areas we are working?
•
•
•
•
•
•
•
National Coordination
Constituency, mission, services,
Establishing Policies
Appropriated Workplace
Incident handling
Training
Membership to FIRST
COORDINATION
• CYBER SECURITY COMMITTEE
• NATIONAL CYBER SECURITY PLAN
• PERSONAL DATA PROTECTION LAW
• TELECOMMUNICATIONS AND CYBER SECURITY
LAW
CONSTITUENCY
• Our constituency will be at the
beginning:
– The telecommunication sector
– The government
• But in the future we will
increase to all the citizens
APPROPRIATED WORKPLACE
• Installing the ECUCERT's data center
• Buying the better tools of hardware and software
• Equipping the forensic laboratory
• Improving the network infrastructure
• Improving the physical and logical security
INCIDENT HANDLING
• We are using RTIR
– How to recive an incident
– Incident handling process
– Reports
RECIVED TRAINING
• Our personal has been trained in courses that are
aimed to potential CSIRT knowledge, to gain a
good grounding in the main aspects of working in
an incident handling and response team:
– EC-Council: 1) Incident Handler, 2) Ethical Hacking, 3)
Certified Security Analysis.
– TERENA: Transits 1
– LACNIC: Proyecto Amparo
– ITU – IMPACT: Workshops, Ciberdrills.
– USCERT-ICSCERT:
Industrial
Control
Systems
Cybersecurity
– USTTI: Cybersecurity and ICT Policy
– and a large number of local trainings
Registered cyber crimes
CSIRT Nacional
Ecucert - Supertel
January 2012 – December 2013
IP-PBX FRAUD
 232 registred cases
 Companies and Institutions (Grupo de abogados, Servicios
petroleros, IESS, Cancillería, Uniandes, Banco del Austro,
Cabired, Motransa, Servidinámica, LG, Uniplex, Telecuatro, entre
otros)
 Economic damage (over 5´ USD)
 Atypical destinations(Guinea, Ghana, Austria, Gambia, Iridium,
Cuba)
Registered cyber crimes
CSIRT Nacional
Ecucert - Supertel
January 2013 – December 2013
“Defacement”
 943 registered cases
 Government and private domains
 Attacked domains (Registro Civil, Bomberos, Registro de la
Propiedad, Puerto de Esmeraldas, Movistar, Armada,
Universidad Israel, CCI, ESPOL, Yamaha, aesoft, entre
otros).
Registered cyber crimes
Defacements
0,40%
1,80%
4,75%
0,37%
0,25%
4,32%
.com.ec
.gob.ec / .gov.ec
9,67%
41,23%
.ec
.edu.ec
.org.ec
.mil.ec
.fin.ec
37,21%
.net.ec
.med.ec