Internet Storm Center
The Internet Storm Center (ISC) is an organization of the computer security SANS institute that monitors the number of malicious / harmful activities on the Internet .
The ISC developed from the website "Incidents.org", a site also founded by the SANS Institute, which supported the public and private sector with the year 2000 changeover. In 2000, "Incidents.org" started working with DShield to create the Consensus Incidents Database (CID) and collected security-related information from several agencies and from several websites for a mass analysis.
On March 22, 2000, the SANS CID succeeded in detecting attacks by the “Lion” worm early on. The rapid warning and countermeasures organized by the CID helped to control and limit the damage caused by the worm .
Afterwards DShield was integrated more closely into incidents.org with financial support from the SANS Institute. The CID has been renamed the Internet Storm Center to reflect the way in which it uses a distributed sensor network , much like a weather service .
Since then, the ISC has continued to expand its surveillance business; their website speaks of more than 20 million intrusion detection log entries per day ( log entries from detected intrusion attempts (in computer systems)). From this analysis and warnings of security threats are provided to the internet community.
During the last hours of 2005 and the first few weeks of 2006, the ISC had its longest "yellow alert" period due to a security flaw in WMF format .
The most important feature of the ISC is its daily "Handler Diary" (event diary), which is created by one of the 40 volunteers and summarizes the events of the day. This is regularly the first published source of new attack trends, the strength of which is the ability to work together to seek and gather more information.
The ISC is currently staffed by around 40 volunteers and represents 8 countries and many industries.