Professional Documents
Culture Documents
1 HIGHLIGHTS OF 2022 3
2 ABOUT CERT-IN 5
2.1 Introduction 5
2.2 Establishment 6
2.3 Constituency 6
Services
4.1 Training 14
5 INTERNATIONAL COLLABORATION 17
6 CONCLUSION 21
CONTACT INFORMATION 21
area of Cyber Security with the latest security threats, needs and
security risk.
drills in 2022.
g) CERT-In has trained & enabled sectoral entities to conduct sector specific
13 September 2022.
c) CERT-In has trained and enabled sectoral entities to conduct sector specific
data analysis on audit findings from across country. The project enabled
2. About CERT-In
2.1 Introduction
Services.
(Amendment 2008). CERT-In operates 24x7 incident response Help Desk for
https://www.csk.gov.in).
2.3 Constituency
CERT-In provides:
networks.
The summary of activities carried out by CERT-In during the year 2022 is given
Advisories Published 38
Security Drills 14
Trainings Organized 23
In the year 2022, CERT-In handled 1391457 incidents. The types of incidents
Phishing 1714
Others 5517
Total 1391457
CERT-In has been tracking the defacements of Indian websites and suggesting
Defacements in 2022
15702
3582
194 315
India and to notify, enable cleaning and securing systems of end users to
Currently, CSK is covering ~94% of the subscriber base for notifications about
& Manufacturing’, Energy and Smart Cities are collaborating and being
February 2022 and ‘Special Cyber Swachhta Campaign 2.0’ in October 2022, in
CSK provides three Free Bot Removal Tools (FBRTs) developed in collaboration
with “QuickHeal”, “K7” and "eScan" with a cumulative of 28.04 lakh downloads
recorded till December 2022. These FBRTs are available for Microsoft Windows
262377
191614
Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec
CSK also provide following security tools to users via web portal:
Team (CERT-In) has created a panel of ‘IT security auditing organizations’ for
frequently by the entities in Government and critical sectors for their information
CERT-In has implemented data science platform for conducting periodic data
analysis on audit findings from across country. The project enabled identification
of areas for policy interventions. CERT-In has published guidelines for Auditee
Government and critical sector organizations are implementing the security best
practices in accordance with ISO 27001 standard and as per the advice issued by
being used for technical as well as compliance audits. CERT-In has also carried out
episodic security audits of key organizations for enhancing their security posture.
A core part of CERT-In’s mission as the first responder with respect to Incident
alerts, advisories & vulnerability notes to update the Government and critical
sector organizations about the existing and potential threats and suitable
CERT-In has operationalized its own Threat Intelligence eXchange platform based
counterparts and stakeholders in near real time in automatic fashion, thus helping
pushes to the partners in near real time with Traffic Light Protocol (TLP) tags. The
shared data can be consumed by the recipients into their automated workflows.
This will help to streamline their threat detection, management, analysis and
defensive process.
benefitted by the curated operational and tactical threat intelligence digest shared
need for near-real time situational awareness and rapid response to cyber security
incidents. Realizing the need, Government has taken steps to set up the National
The centre scans the cyberspace in the country at meta-data level and generates
Cyber Forensics Lab of CERT-In is equipped with the equipment and tools to carry
out data retrieval, processing and analysis of the raw data extracted from the
digital data storage and mobile devices using sound digital forensic techniques. The
primary task of the Lab is to assist the Incident Response (IR) team of CERT-In on
further investigation.
agencies, etc. The Cyber Forensics Lab of CERT-In has been notified as Examiner
partnered with the CVE Program, MITRE Corporation, USA. In this regard, Indian
Computer Emergency Response Team (CERT-In) has been authorized by the CVE
use CVE Records to ensure they are discussing the same issue, and to coordinate
their efforts to prioritize and address the vulnerabilities. The vulnerabilities are
discovered then assigned and published by organizations from around the world
that have partnered with the CVE Program. Partners publish CVE Records to
CNAs are organizations responsible for the regular assignment of CVE IDs to
vulnerabilities, and for creating and publishing information about the Vulnerability
in the associated CVE Record. The CVE List is built by CVE Numbering
Authorities (CNAs). Every CVE Record added to the list is assigned by a CNA. The
attacks.
4.1 Training
In order to create security awareness within the Government, Public and Critical
officials of Government, critical sector, public sector, industry, financial & banking
(NCSAM) during October 2022 by organizing various events and activities for
"See Yourself In Cyber”. The total outreach of National Cyber Security Awareness
Month October 2022 is 71,16,57,905. CERT-In also observes “Safer Internet Day”
on 1st Tuesday of February Month every year and carrying out various activities
and awareness campaigns for sensitizing internet users on cyber frauds, crimes
Cyber security exercises are being conducted by CERT-In to help the organizations
increasing the cyber security awareness among the key sector organizations.
complexities, including table top exercises, with participation from about 990
(Railways & Civil Aviation), IT/ ITeS/ BPO sectors and State Data Centers.
issues has been one of the main focus areas of the Government. As such, this
aspect is being dealt with by way of security cooperation arrangements in the form
Response Team and its overseas counterpart agencies that are willing to work
together and share information in a timely manner for preventing cyber incidents
incidents.
In 2022, CERT-In Signed bilateral agreements in the area of cyber security with
The National Centre for Information Technology (NCIT), Republic of Maldives and
Response Team (BGD e-Gov CIRT), People’s Republic of Bangladesh and Cyber
coordinating with leading service providers and product vendors within and
outside the country to obtain advance information on latest cyber threats and
Teams (APCERT). CERT-In is the convener of “IoT Security working group” across
APCERT to address security threats and evolve best practices to secure IoT
devices.
CERT-In is also member of various other working groups under APCERT such as
member of APCERT Drill WG, CERT-In has also contributed in APCERT drill
5.2.1 Training
a) CERT-In officials attended the 54th Asia Pacific Network Information Centre
April 2022.
India. The theme of the exercise was “Building Network Resiliency to counter
Ransomware Attacks”. The exercise scenario was derived from real life cyber
which was conducted with the objective to test the response capability of
leading Computer Security Incident Response Teams (CSIRT) within the Asia
Pacific economies. The theme of APCERT Drill 2022 was “Data breach
2022.
e) CERT-In participated in the 2nd Africa Cyber Drill 2022 and played in four
October 2022. The theme of ACID Drill 2022 was ‘Dealing with Disruptive
CERT-In is the national agency for incident response in the Indian constituency.
Contact Information
Postal Address 1:
Government of India
Electronic Niketan
Postal Address 2:
Phone: +91-11-22902600
Phone: +91-11-24368572
Fax: +91-11-24368546
Email: incident@cert-in.org.in
Expires: 2024-12-31
Finger Print: A768 083E 4475 5725 B81AA379 2156 C0C0 B620 D0B4
Email: info@cert-in.org.in
advisory@cert-in.org.in
subscribe@cert-in.org.in
Expires: 2024-12-31
Finger Print: EABE 086A 6FC4 CB47 3F29 A90B DE30 A071 275C CACF
Email: csk@cert-in.org.in
Expires: 2025-05-31
Finger Print: E204 D43D 0296 40FB 8DB9 0290 706D EF4D 4EE1 1788
Email: international@cert-in.org.in
Expires: 2025-05-31
Finger Print: 0A71 3343 F7E2 A8D7 09FA A71E 9ED3 D110 ECCB 2102