India’s Computer Emergency Response Team (CERT-In) has given many of the nation’s IT shops a big job that needs to be done in a hurry: complying with a new set of rules that require organizations to report 20 different types of infosec incidents within six hours of detection, be they a ransomware attack or mere compromise of a social media account.
The national infosec agency stated the short deadline is needed as it has identified “certain gaps causing hindrance in incident analysis.”
Organizations can use email, phone, or fax to send incident reports. Just how the analog mediums will improve improve analysis gaps is uncertain.