CyberSecurity Malaysia –“CyberNEWS”
Bahasa | English Issue 4 | Quarter 1 - 2014
Digital Crime Consortium 2014 (DCC 2014)
  3-5 March 2014
  A three days conference Digital Crime Consortium DCC 2014 (DCC 2014) was organised by Microsoft Co. at the Marina Bay Sands, Singapore. Dr. Aswami Fadillah Mohd Ariffin, Vice President of Cyber Security Responsive Service, CyberSecurity Malaysia presented on the topic ‘Cyber Security in Malaysia’ at the conference.

This conference provided an opportunity to law enforcement officers and safety technology community from around the world to gather and discuss the current issues faced by law enforcement agencies in an effort to combat cybercrime around the world.

Various topics in the domain of digital crime, including techniques to analyze targeted attacks, botnet takedowns industry issues like mobile malware threats and security challenges posed by the public were presented and discussed at the conference.
Induction Program / Revision MySEF Organised by CyberSecurity Malaysia
  6 March 2014
  The purpose of the Induction Program / Revision MySEF (ICT Security Evaluation Facility Malaysia), hosted by CyberSecurity Malaysia, is to provide general information that helps new employees adjust to their work environment.

This program is not only focused on Quality Management System MySEF CyberSecurity Malaysia, but it also includes information pertaining to Information Security Management System (ISMS).

The purpose of induction / refresher program was to:
  1. Welcome the new staff and provide information for them to adapt to the work environment in order to produce consistent, comprehensive and effective quality work.
  2. Brief and explain the contribution and role of these employees, including sharing information on the Quality Policy and MySEF CyberSecurity Malaysia objectives.
  3. Provide exposure and overall understanding for staff on MySEF Quality Management System such as policies, guidelines, principles and other related documents.
  4. To honor obligations to employees by providing appropriate information to ensure a safe, healthy and well maintained environment.
  5. Review and update all documents if required.
This program is carried out to meet the criteria of ISO 17025 under which this program is required to be held at least once a year or whenever there is recruitment of new staff.
MySEF Surveillance Audit by Jabatan Standard Malaysia.
  13 March 2014
  CyberSecurity Malaysia successfully received the MS-ISO/IEC 17025 accreditation for the Laboratory Facility Security Assessment or MySEF ICT Malaysia in 2010 by the Department of Standards Malaysia which is measuring and monitoring MySEF Laboratory to ensure compliance on the procedures that have been set up according to MS-ISO ICE17025:2005 and Laboratory Accreditation Scheme of Malaysia (SAMM).

On March 13, 2014, MySEF Laboratory has undergone the audit process to maintain the accreditation.

The purpose of the evaluation and assessment activities are:
  1. To ensure compliance of MySEF Laboratory CyberSecurity Malaysia to MS-ISO IEC 17025:2005 and Laboratory Accreditation Scheme of Malaysia (SAMM);
  2. Verify implementation of corrective action for non-compliance (Nonconformity) which was raised in the evaluation conducted the previous year (if applicable).
With this accreditation, CyberSecurity Malaysia will gain confidence and assurance of the ICT products operators whose products’ safety features are being evaluated based on compliance to international standards.
Study Visit by students from Politeknik Ungku Omar, Ipoh, Perak
  13 March 2014
  CyberSecurity Malaysia received a visit from students from Politeknik Ungku Omar led by Ms Norliza Mohamed Piah, Lecturer of Polytechnic.

The group, consisting of 32 students and few lecturers, were briefed on the role and function of CyberSecurity Malaysia and they were also shown a corporate video of CyberSecurity Malaysia.

In addition to the corporate information, the delegation was briefed on the role and functions of the Department of Digital Forensics, MyCERT (Computer Emergency Response Team) and the CyberSAFE program.

Through such visits the students and lecturers were able to get a clearer picture of the role of CyberSecurity Malaysia. In addition, CyberSecurity Malaysia shared a critical message regarding the importance of cyber security through the presentations on the CyberSAFE program.
Industry Visit By College Students of PTPL Ampang, Selangor
  19 March 2014
  CyberSecurity Malaysia received a visit from 37 students and lecturers from the PTPL Ampang College. The delegation, headed by Mrs. Norma Mohamad, was briefed on the role and function of CyberSecurity Malaysia

In addition to sharing the corporate information, the delegation was also briefed by officials from the Department of Digital Forensics, MyCERT (Computer Emergency Response Team) and Outreach Department of CyberSAFE Program.

This visit is seen as an opportunity for CyberSecurity Malaysia to introduce and explain to participants about the function and role of its sub-agencies and bodies in detail.
Visit of the delegation of Pakistan Army
  21 March 2014
  On March 21, 2014, CyberSecurity Malaysia received a visit from a delegation of Pakistan Army consisting of five (5) officers headed by Major General Amer Azeem Bajwa, DG C41 Directorate.

Chief Operating Officer of CyberSecurity Malaysia, Zahri Yunos, welcomed the delegation and subsequently chaired the session. The Pakistani delegation was briefed on the functions and role of CyberSecurity Malaysia as an agency under the Ministry of Science, Technology and Innovation (MOSTI) as well as the Permanent Secretariat of the OIC-CERT.

The meeting also discussed the opportunity to expand the cooperation between the two entities in the ICT domain, especially in the field of cyber security.

The delegation also visited the various laboratories at CyberSecurity Malaysia such as the Digital Forensic laboratories, centers and laboratories operating the MyCERT Security Assurance program.

From this visit, the delegation of Pakistan Army has shown interest in collaborating with CyberSecurity Malaysia in several areas such as:
  1. The training programs provided based on MyCERT and Digital Forensics expertise and experience.
  2. Development of the National Computer Emergency Response Team;
  3. Development in IT network cyber security; Policy development in cyber security management.
Asean Regional Forum (ARF) Workshop – “Cyber Confidence Building Measures”
  25-26 March 2014
  Workshop on the ASEAN Regional Forum (ARF), “Cyber Confidence-Building Measures” was held on 25 and 26 March 2014 at the Hilton Hotel, Kuala Lumpur. The workshop was jointly organized by the Department of Foreign Affairs and Trade of Australia and the National Security Council (NSC), Malaysia.

The opening address was delivered by Ir. Md. Nuri Shah Md. Ayala, Secretary, Security Policy, Space and Cyber, National Security Council, and John Quinn, Assistant Secretary, International Security, Department of Foreign Affairs and Trade, Australia.

Implementation of this workshop was divided into the following four modules:
  1. Module One: The Nature, Importance and Need for Cyber Confidence Building Measures and Transparency;
  2. Second Module: National Cyber Security Architectures - Which are Vital Points of Contact?;
  3. Third Module: Desktop Simulation;
  4. Fourth Module (Part One): The Role and Importance of Point of Contact; and
  5. Fourth Module (Part Two): Building a Regional Network of Contacts.
The purpose of this workshop is to enhance cooperation, promote transparency and help in capacity building of ARF participants in cyber security. The workshop was attended by 27 countries of the ASEAN and ASEAN partners from the Asia Pacific, Europe & America.

As a technical agency in the Malaysian cyber security domain, CyberSecurity Malaysia has participated as a facilitator in the Third Module: Desktop Simulation and moderator in the Fourth Module (Part Two): Building a Regional Network of Contacts. A total of 10 officers from CyberSecurity Malaysia were actively involved in the workshop’s successful organization.
Working visit of the Director of Information Technology, Organization Of Islamic Cooperation (OIC), Saudi Arabia
  28 March 2014
  On March 28, 2014, CyberSecurity Malaysia received a visit from the Director of Information Technology Organization of Islamic Cooperation (OIC), Wajdi H. Al-Quliti.

CyberSecurity Malaysia Chief Executive Officer, Dr. Amirudin Abdul Wahab, had received the guests and chaired the session.

Wajdi was briefed on the functions and role of CyberSecurity Malaysia as an agency under the Ministry of Science, Technology and Innovation (MOSTI) and as the Permanent Secretariat of the OIC-CERT. He was also given a tour of the laboratory facilities in CyberSecurity Malaysia such as MyCERT and Digital Forensics Laboratory.

Through this visit, Wajdi has shown interest to collaborate with CyberSecurity Malaysia in several areas such as:
  1. Expanding the activities of the current OIC-CERT;
  2. Explore potential areas of collaboration with CyberSecurity Malaysia - OIC and OIC-CERT through ICANN and gTLDs.
  3. Get advice on actions in developing cyber security capabilities on Cyberbullying Safeguards for Children among the OIC countries.
Cyber Security Awareness Program – CyberSAFE in March 2014
  March 2014
  Various activities in cyber security awareness program or CyberSAFE have been held throughout the month of March 2014 to help raise cyber security awareness among public and private organizations, and communities, especially school children and adolescents. The activities have also raised various issues of cyber security and the best way to deal with these issues and prevent people from becoming victims of cyber threats.

Some of the CyberSecurity awareness programs which were carried out in March 2014 are:
Date Program Venue
4 Mac 2014 Seminar Kesedaran Internet-CyberSAFE KDN 2014 Dewan Gemilang,Block D1,Ministry of Home Affairs,Complex D, Federal Government Administrative Center Putrajaya
5 Mac 2014 Kesedaran ICT-Adab Digital Citizen PWTC,KL
7 Mac 2014 CyberSAFE Ambassador Program with UTHM UTHM Pt Raja, Batu Pahat.
11 Mac 2014 Kursus Kesedaran ICT Institut Pembangunan Modal Insan Zon Timur, Kelantan
13 Mac 2014 Seminar Kesedaran Siber SK Sekyen 19 Shah Alam
14 Mac 2014 Knowledge Sharing Session Jalan Tun Hussein, Precinct 2
18 Mac 2014 Hari Bersama ICT 2014 Dewan Tun Dr.Ismail, Blok 11, Agensi Nuklear Malaysia,Kajang
20 Mac 2014 Seminar Kesedaran Siber-Adab Digital Citizen Politeknik Ungku Omar Ipoh
  These cyber ​​security awareness programs and initiatives promote CyberSecurity services such as Cyber999 and CyberSAFE portal. These programs are also able to generate awareness of the threats to computer and internet users, highlighting the changes in the reality of everyday life, due to the advances in communications technology.