Q-CERT - Home

Learn

Q-CERT attends FIRST...: Q-CERT attended FIRST 22nd annual conference in Miami, US from June 13-18, 2010. Titled “Past the faded perimeter, threat and incident response”, the full week event discussed threat and incident response in 3 tracks: incident response, management and technical. Topics like DNS security, cloud incident response, botnets, malware analysis and others were discussed in addition to the future of collaboration within the FIRST community. Keynotes emphasized on the importance of collaboration, how the All-IP world would impact attack scenarios, why attackers win, why the security industry has been turned upside down and others. One of the most interesting keynotes was the one presented by Heather Adkins from Google, US where she discussed incident response at scale using the Arora attack as a showcase.
With more than 470 attendees, FIRST 22nd conference was a huge success. More details about the event can be found in the conference page.

Q-CERT website...: After a year worth of work, Q-CERT announced the release of its new portal. The new portal was developed based on extensive research among our constituency, their needs and the most usable interface. The site serves both technical and non-technical users interested in Cyber Security.

In its home page, the site provides a list of aggregated and automatically filtered feeds. The feeds are split into “General RSS” and “Technical RSS”. The “General RSS” aggregates news feeds from various sources that publish generic as well as specific sector information security news. Whereas the “Technical RSS” aggregates security advisories and vulnerabilities reports from major vendors including Microsoft, Adobe, Apple, CISCO and Oracle. You can subscribe to the aggregated General or Technical RSS feeds on Q-CERT website and receive all the relevant alerts to your system without having to subscribe to multiple RSS.

The highlighted area provides you with a quick way to spot the most significant news, press releases, announcements, publications, etc on Q-CERT website. For example, when we announce a new event or publish an interesting podcast, a brief on that new announcement will be displayed in this box. You can click more to go directly to the item.

The “Learn” section splits into two subsections. The “Library” includes “Reading library” with various white papers and reading materials, “Media library” hosting valuable cyber security and safety podcasts and videos, and “Links” section listing a set of relevant external links to online resources grouped in a logical manner in addition to a description of the underlying web resource behind the URL. The “Training” subsection hosts Q-CERT’s “Course Catalog”, “Training Events” calendar and certification news. Through the training events calendar, you can identify upcoming events/workshops and register online.

Among the most interesting new features we’ve added is the “Threat Status”. People can argue that threat status monitors are available from different security organizations. However, Q-CERT threat status monitor is based on threats that target Qatar and the GCC region rather than global ones. The threat level will always be green unless there are specific threats we are seeing that targets our region. We will then raise the threat level accordingly and detail the reasons for doing that. When you click on “Threat Status” on the top of the page, you will find a subpage called “Dashboard”. In the “Dashboard” you can visualize the results of our monitoring for threats targeting Qatar. The six screens can be clicked for a larger view and to show details and/or comments regarding Malware in Qatar, Botnet activity trend, C&C servers, Daily number of IPs sending spam from Qatar, Daily number of corporate IPs sending spam from Qatar and Top countries sending spam to Qatar.

The “Report Incidents” section provides our constituency with the traditional incident reporting guidelines including our PGP key (sending sensitive data section). Under the “Incident reporting form” subpage, you will find an easy and secure way of reporting incidents to Q-CERT. The form enables you to report your incidents to Q-CERT without storing information on the server while encrypting the traffic submitted. Your submitted incident report will then be sent in an encrypted mail to our incident reporting team who will, as usual, support you in managing the incidents while abiding to our strict confidentiality measures.
Finally, the “Contact” section provides, in addition to the traditional contact information, a feedback form through which you can send us your comments. We hope you like Q-CERT website, but are open to receive your comments and feedback that are always valuable to help us serve you better.

e-transaction law...: On the 19th of August, 2010 HH the Deputy Emir and Heir Apparent Sheikh Tamim bin Hamad al-Thani issued a decree to enact Qatar’s e-transaction law. The law comes in 70 articles under 10 chapters. While chapter 1 goes through the definition of terms, chapter 2 addresses the domain to which the law applies and chapter 3 details the components of e-transactions. In chapter 4, the law addresses the legal effects and the authoritative nature of e-transactions mainly denoting integrity concerns. Chapter 5 states on the means of identifying integrity and non-repudiation, namely digital signature and its related aspects. In the 6th chapter, the law specifies the regulations of digital certification authorities. Chapter 7 identifies issues of data storage and transmission and chapter 8 is concerned with consumer protection regulations. In chapter 9, the law stipulates ictQATAR’s authorities and chapter 10 lists the offences and penalties.
The new law puts e-transactions locally in its legal context, and opens new horizons for business and services in Qatar. As the law assigns ictQATAR a group of responsibilities, CS/Q-CERT is gearing up to take its share in the coming few weeks.

SANS SEC501 Exam (GIAC...: The GCED builds on the security skills measured by the GSEC. It assesses more advanced, technical skills that are needed to defend the enterprise environment and protect an organization as a whole.

Gov INFOSEC 2012: Cyber Security Division (Q-CERT) is organizing an Information Security Conference (gov.INFOSEC 2012) targeted at the government and the semi government sector.

Gov.INFOSEC 2012 will be held on 12th January 2012 at the Diplomatic Club.

The conference will discuss the latest trends in Information Security and the changing information security threat landscape.

It will also be an excellent opportunity to network with your peers in the sector and share the experiences and challenges faced by the government sector in handling information security.

Please register at the following website if you wish to attend this conference.

English: http://www.govinfosec2012.org/en/

Arabic: http://www.govinfosec2012.org/ar/

RSS General

RSS

	System.NullReferenceException: Object reference not set to an instance of an object. at SmilingGoat.SharePoint.WebParts.RssFeedReader._RefreshFeedCache()
	http://feeds.feedburner.com/BankinfosecuritycomRSSMain had a problem reading the feeds from the URL. Error returned from FeedReader: Object reference not set to an instance of an object.:SmilingGoat.SharePoint.WebParts.Rss

RSS Alerts

RSS