CTI-LEAGUE volunteers protect against COVID-19 related cyber threats

The CTI-League issued its inaugural monthly report today on its efforts aggressively dismantling cyber criminal infrastructure and protecting healthcare organizations against cyber attacks. Since its founding on March 14, 2020, the initiative has:

Helped lawfully take down 2,833 cybercriminal assets on the Internet, including 17 designed to impersonate government organizations, the United Nations, and the World Health Organization.

Identified more than 2,000 vulnerabilities in healthcare institutions in more than 80 countries, notifying those organizations directly or through escalation to appropriate government or industry bodies, so the issues could be fixed before they are attacked.

Grown to over 1,400 vetted members in 76 countries, from 45 different sectors, including cybersecurity, healthcare, technology, telecommunications, Computer Emergency Response Teams (CERTs), government, and law enforcement.

The report and the blog announcing it can be found here:

Ohad Zaidenberg, the founder of CTI League and Lead Cyber Intelligence Researcher at Clearsky said: “More than 1400 volunteers from all around the world contributed their time and abilities pro bono, and showed the power of the Cyberthreat intelligence community.

This report provides an overview of our activities in our first month to achieve this goal. In only one month, we were able to make a change by harnessing a worldwide network of volunteers.”

“I would like to thank our members, law enforcement, government, and industry partners,” said Marc Rogers, co-founder of CTI League and VP of Cybersecurity Strategy for Okta. “Without their collaboration, none of this would have been possible. By overcoming the silos and barriers that normally slow the information security industry down we have been able to operate as one team, achieving results any enterprise would be proud of.”

Christopher Krebs, director of the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) said, “We have seen, and are likely going to continue to see, an increase in bad guys taking advantage of the COVID-19 pandemic to target businesses, governments and individuals alike.

“CISA is working around the clock with our public and private sector partners to combat this threat. This includes longstanding partnerships, as well as new ones that have formed as a direct result of COVID-19, including the COVID-19 Cyber Threat Intelligence (CTI) League, which has brought together more than 1,000 net defenders from around the world to help identify and prevent malicious activity.

“This work has helped disseminate indicators of compromise to network defenders, improve vulnerability management in the nation’s medical infrastructure, and manage supply chain risks in the medical sector.

“The voluntary nature of our work with stakeholders and our longstanding role facilitating coordinated vulnerability disclosure efforts allows us to easily collaborate with groups like this, which share threat information and mitigation techniques in near-real-time. We look forward to continuing to work with the CTI League and all of our partners to combat malicious cyber targeting during this complex and evolving  situation.”

Those who want to help or to benefit from the CTI-League’s efforts, particularly healthcare organizations, are encouraged to join via the website at https://cti-league.com.

About the CTI-League

The CTI-League is a volunteer-led initiative of 1,400 vetted volunteer cybersecurity experts, formed to neutralize cyber threats targeted at exploiting the COVID-19 pandemic. The initiative collaborates with government agencies, law enforcement, healthcare, telecommunications, and technology companies to lawfully take down cyber criminal infrastructure, protect healthcare organizations, and publicly share cybersecurity information. For more information or to contribute, visit https://cti-league.com.