Combating Worms Outbreaks: Malaysia Experience

Madihah Mohd Saudi
To add a paper, Login.

Many computer security programs and the standard operating procedures in handling computer incidents are not effective and efficient especially when dealing with new and less understood class of computer threats. Based on Malaysia Computer Emergency Response Center (MyCERT) testing and observations on report received from users, the eradication period for Code Red and Nimda was 3 months, Nachi and Sobig.F was 2 months and Blaster was 2 weeks. Why did it take 3 months, 2 months or 2 weeks to eradicate this worm? Can the eradication period become shorter? More organizations are spending endless hours repeating processes that are non-effective in completely eradicating the worm within the network due to uncoordinated efforts within the organization and non-efficient ways of handling worm or virus incidents. This paper compiled MyCERT experiences in combating worms' outbreak. The comparative study in this paper is based on MyCERT testing and observations on report received from users. This paper also will explain the five different worms, which had caused great detrimental impacts to Internet users worldwide. Few related issues will also discussed together with recommended guidelines to give better understanding of the worms and how to deal with them.

Keywords: Worms, Outbreak, Security breach, Education, Security threats
Stream: Community, Culture, Globalisation
Presentation Type: Paper Presentation in English
Paper: Combating Worms Outbreaks: Malaysia Experience

Madihah Mohd Saudi

National ICT Security and Emergency Response Center(NISER)

Madihah Mohd Saudi is the virus analyst for National ICT and Security Emergency Response Centre (NISER) and is responsible for conducting in-house testing for virus analysis, reviewing standard operating procedures for virus analysis, developing acceptable user policies, damage control and laboratory specifications. She is also accountable in responding to virus cases, as Malaysia Computer Emergency Response Team (MyCERT) 2nd level support and as the NISER's honeynet member. She is also the co-instructor for Incident Handling Training organized by NISER. Madihah earned her Bachelor's Degree in Computer Science from Universiti Kebangsaan Malaysia (UKM) in 2001(second class upper) and her Master's Degree in Software Engineering from Universiti Malaya (UM) in 2005. Her mission for NISER and for herself is to be one of the best security analysts in the nation. She is certified in GIAC Security Essentials (GSEC) from the SANS Institute, USA (2001)and Certified Ethical Hacker from Ec-Council, USA (2003).

Ref: L05P1185