Celebrating Milestones (European CERT/CSIRT Report Coverage)

February 23, 2020

Note: List of newly added Nation CSIRTs and countries is at the bottom of the blog post. Please help us continue to reach more.

The Shadowserver Foundation has always taken a deliberately low key approach to publicly promoting what we do. Instead, we prefer to work quietly behind the scenes to help raise the bar on Internet security. We want our trusted partners, such as international Law Enforcement Agencies, to take the credit they rightly deserve for the successful cybercrime take-down operations which we are happy supporting. So we generally only talk publicly about investigations when specifically asked to do so by those trusted partners.  This is also true of the overall impact we have had on remediation and victim notification.  We have had many opportunities to speak about our successes, but have always preferred to focus on the mission rather than fighting for public opinion and PR glory.

We have been told many times over the years that we don’t celebrate achieving many of our internal milestones very publicly. Instead, we often seem to only blog about those occasional times when something major has gone wrong.  We do try to make those situations seem as funny as possible, despite it never feeling truly amusing while it is happening! We enjoy showing our failures as a lesson to remind us as well as showing what could happen to anyone else.

As engineers and analysts focused on our public benefit mission, we spend a lot of our time working to battle complex cybercrime issues and concerns. Blowing our own trumpets does not come naturally to us. But we have tried to get better at it – previously highlighting some significant events, such as exceeding one billion unique malware samples in our malware repository or on-boarding our 100th National CERT/CSIRT.

However, we recently achieved one particular milestone that anyone who has seen us present at a conference during the past few years will know has taken a long time to happen. So we are very happy to report that our internal map of which National CERTs/CSIRTs receive our free daily remediation reports has finally turned entirely green for Europe:

20200223 Shadowserver National CERT/CSIRT Coverage Europe

2020-02-23 Shadowserver National CERT/CSIRT Coverage Europe

(note that there is currently no officially assigned ISO code for Kosovo, so the open source mapping software does not display a green country by official ISO code, despite KOS-CERT receiving our data)

This change was due to the Albanian national CERT signing up. This long anticipated event takes us to 107 National CERTs/CSIRTs in 136 countries now receiving our free daily network reports. Great job everyone involved!

While taking a moment to celebrate this particular milestone, we’d like to also draw attention to the list of remaining countries where we are still seeking national CERT/CSIRT relationships – particularly in Africa, Asia and Central/South America:

20200223 Shadowserver National CERT/CSIRT Coverage World

2020-02-23 Shadowserver National CERT/CSIRT Coverage World

20200223 Shadowserver National CERT/CSIRT Coverage Africa / Asia

2020-02-23 Shadowserver National CERT/CSIRT Coverage Africa / Asia

20200223 Shadowserver National CERT/CSIRT Coverage Central / South Americas

2020-02-23 Shadowserver National CERT/CSIRT Coverage Central / South Americas

The full list of individual countries/territories we are still seeking contacts for is:

Andorra, Afghanistan, Netherlands Antilles, Angola, Antarctica, Aland Islands, Burkina Faso, Bahrain, Burundi, Bermuda, Bolivia, Bouvet Island, Botswana, Belize, Cocos Islands, Democratic Republic of the Congo, Central African Republic, Republic of the Congo, Ivory Coast, Cook Islands, Cameroon, Cape Verde, Christmas Island, Djibouti, Algeria, Western Sahara, Eritrea, Ethiopia, Fiji, Falkland Islands, Micronesia, Faroe Islands, Gabon, French Guiana, Guernsey, Gibraltar, Gambia, Guinea, Guadeloupe, Equatorial Guinea, South Georgia and the South Sandwich Islands, Guinea-Bissau, Heard Island and McDonald Islands, Isle of Man, British Indian Ocean Territory, Iraq, Jersey, Kyrgyzstan, Kiribati, Comoros, North Korea, Kuwait, Laos, Lebanon, Liberia, Lesotho, Libya, Madagascar, Marshall Islands, Mali, Myanmar, Macao, Martinique, Mauritania, Mauritius, Maldives, Namibia, New Caledonia, Niger, Norfolk Island, Nicaragua, Nepal, Nauru, Niue, Peru, French Polynesia, Pakistan, Saint Pierre and Miquelon, Pitcairn, Palestinian Territory, Palau, Reunion, Rwanda, Solomon Islands, Seychelles, Sudan, Saint Helena, Svalbard and Jan Mayen, Sierra Leone, San Marino, Senegal, Somalia, South Sudan, Sao Tome and Principe, Syria, Chad, French Southern Territories, Togo, Tajikistan, Tokelau, East Timor, Turkmenistan, Tuvalu, Vatican, Venezuela, Wallis and Futuna, Samoa, Yemen, Mayotte, South Africa, Zambia, Zimbabwe

If you represent one of the above countries/territories, or have contacts within any functional CERT/CSIRT organizations there, please do reach out and get in touch.

There is no cost for any of our daily network reports, and we would be more than happy to help the appropriate organizations get set up with the right tools and training on how to better secure the networks within their country.

Over 4,600 organizations, of many different sizes, and over 90% of the IPv4 Internet (by address space/ASN) are currently using Shadowserver’s free daily data to protect their networks. With your help, we can hopefully increase that number and continue raising the bar on Internet security together.

Updates:

Update: 2020-03-17 – added Sierra Leone = 109 CSIRTs in 138 countries

Update; 2020-03-16 – added Samoa = 108 CSIRTs in 137 countries

Recent Articles