DOCSLIB.ORG

Annual Report 2019 on the Activity of CERT Polska

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Annual Report 2019 on the Activity of CERT Polska Security of Polish Cyberspace NASK/CERT Polska ul. Kolska 12, 01-045 Warszawa tel. +48 22 38 08 274 fax +48 22 38 08 399 mail: [email protected] Security of Polish Cyberspace Scan the code to visit our website Annual report 2019 on the activity of CERT Polska 1 cert06.indd 1 20-06-04 10:12 Annual CERT Polska Report 2019 NASK PIB/CERT Polska ul. Kolska 12, 01-045 Warszawa Telefon: +48 22 38 08 274 Faks: +48 22 38 08 399 e-mail: [email protected] www.cert.pl Co-financed by the Collecting Europe Facility of the European Union 2 Security of Polish Cyberspace Annual report 2019 on the activity of CERT Annual CERT Polska Report 2019 We are more frequently dealing with so-called ransomware infections, i.e. software encrypting data and demanding ransom from the victim. Przemysław Jaroszewski Head of CERT Polska NASK 4 Security of Polish Cyberspace Table of contents About CERT Polska ....................6 Attack on Otomoto.pl customers Selected vulnerabilities .............104 Introduction .................................7 – text messages and fake Vulnerabilities in medical payments .................................51 equipment..............................104 The most important A genuine payment intermediary CVE-2019-3568 – buffer overflow observations from 2019 .............9 – Allegro phishing ....................53 in WhatsApp used for NSO Calendar of events ...................10 Account verification required / Group’s malware infection .....105 Protection of Polish negative transaction feedback ..54 Vulnerabilities exploited cyberspace and the activities Data breaches ............................55 by Chinese authorities for of CERT Polska .........................12 Warsaw University in attack against the Uyghur Handling of reports and incidents of Life Sciences .......................55 minority ..................................106 and responding to threats ...........12 Virgin Mobile Poland ...............56 CVE-2019-7286 ..................107 International exercise Sextortion scam.......................57 CVE-2019-7287 ..................108 and competitions ........................16 Taking over of .pl domains CVE-2019-8641 – remote Locked Shields 2019 ...............16 associated with a BadWPAD access to a device through European Cyber Security attack ..........................................58 iMessage ............................108 Challenge ................................17 What is Web Proxy Auto- Citrix Gateway / ADC CTF Scene .................................18 Discovery Protocol? ................58 and mass exploitation of SECURE.....................................20 20 years of BadWPAD! ............59 CVE-2019-19781................... 110 The OUCH! newsletter ...............21 DNS Devolution mechanism ...60 CVE-2019-0797 vulnerability Projects.......................................21 BadWPAD in Poland ...............61 in Windows ............................ 111 SISSDEN.................................21 Am I exposed? ........................62 Statistics.................................. 113 RegSOC ..................................23 Emotet malware campaigns .......63 Limitations ................................ 113 SOASP and AMCE ..................24 Android malware campaigns ........66 Botnets ..................................... 114 n6..........................................24 Genialny Kredyt .......................67 Botnets in Poland .................. 114 mwdb.cert.pl platform ...........25 Flash update............................68 Botnet activity broken down injects.cert.pl websitel...........27 PayU........................................69 by telecommunications DRAKVUF and DRAKMON ..28 InPost ......................................70 operators ............................... 114 Forensics .................................29 Polish Police / DHL ..................71 C&C servers .......................... 115 CyberExchange .......................29 Preventing infection .................71 Phishing .................................... 118 #BezpiecznyPrzemysł .............30 Reverse proxy phishing ..............72 Services enabling IoT Tracker ..............................31 Bombing alarms..........................74 DRDoS attacks ......................... 119 Security of IoT devices ...............33 Social engineering attacks on Open DNS servers ................121 Vulnerable routers ...................33 points of sale ..............................77 SNMP ....................................122 Vulnerable smartwatches ........34 Selected worldwide incidents Portmapper............................123 Publicly available printers ........35 and threats worldwide ..............79 NTP .......................................124 IoT botnets in Polan ................36 Ransomware ..............................79 mDNS ....................................125 ENISA research and projects .....38 Pegasus......................................81 SSDP .....................................126 Training material ......................38 Malicious applications NetBIOS ................................127 Study on early detection on Google Play ...........................83 Vulnerable services ..................128 of incidents ..............................39 Android banking trojan................87 POODLE ...............................130 Domestic threats Anubis .....................................88 CWMP ...................................131 and incidents ............................41 Cerberus..................................89 TFTP .....................................132 Disinformation and cybersecurity..41 Gustuff .....................................90 Telnet .....................................133 The hunt for an American Ginp .........................................91 RDP .......................................134 soldier ......................................41 Preventing infection .................... 92 BadWPAD .............................135 Evacuation involving Dragon 19 FaceApp controversy..................93 Vulnerable services ..................136 exercises .................................42 Shutdown of the Internet in Iran ..94 Analysis of threats in Polish Dispossession and transfer Cryptocurrency exchanges .........96 hosting companies....................138 of real property to German Liquidation of Bitmarket ...........96 General threats......................138 citizens ....................................43 Attack on Binance.......................97 Services enabling DRDoS Summary .................................44 How to trade safely? ..................97 attacks ...................................141 Ransomware in Poland ..............44 Operation ShadowHammer ........98 Vulnerable services ...............142 “BLIK” scams involving social Operacja ShadowHammer ......98 media ..........................................46 Russian APTs: Turla, Sofacy Fake stores .................................49 (APT-28), Dukes (APT-29) ......99 Scams involving popular Asian APTs: Lazarus, advertising sites ..........................50 APT-41, Platinum ..................101 5 Annual CERT Polska Report 2019 About CERT Polska Responsibility to maintain secure network CERT Polska operates within the structures of NASK – a national research institute which conducts scientific studies, operates the national .pl domain registry and provides advanced IT services. CERT Polska is the first Polish computer emergency response team. Active since 1996 in the response teams community, it has become a recognized and experienced entity in the field of comput- er security. Since its launch, the core of the team’s activity has been handling security incidents and cooperation with similar units worldwide. CERT Polska also conducts extensive security-related R&D. In 1998 CERT Polska became a member of the international forum of response teams (FIRST), and since 2000 it has been a member of the working group of the European response teams: TERENA TF-CSIRT, accredited by Trusted Introducer. In 2005 by the initiative of CERT Polska, a forum of Polish abuse teams, Abuse FORUM, was created. In 2010 CERT Polska joined the Anti- Phishing Working Group, an association of companies and institutions which actively fight on-line crime. In accordance with the National Cybersecurity System Act (2018), NASK is selected as one of Com- puter Security Incident Response Teams, the so-called CSIRT, coordinating the handling of incidents reported by essential service providers, digital service providers, and local governments. On top of that, all users can report incidents to CSIRT NASK. In addition, NASK establishes the analyti- cal and R&D base for the domestic cybersecurity system. CERT Polska is responsible for a large number of these tasks. Main responsibilities of CERT Polska include: • registration and handling of network security incidents; • active response in case of direct threats to users; • cooperation with other CERT teams in Poland and worldwide; • fulfilment of the obligations specified in the National Cybersecurity System Act; • participation in national and international projects related to the IT security; • research into methods of detecting security incidents; • analysis of malware, systems for exchanging information on threats; • development of proprietary and open source tools for detection, monitoring, analysis, and correla- tion of threat; • regular publication of the annual CERT Polska Report on security of Polish cyberspace; • informational and educational activities, aimed at raising awareness in relation to IT security,
Load more

Recommended publications
  • Ransom Where?
    Ransom where? Holding data hostage with ransomware May 2019 Author With the evolution of digitization and increased interconnectivity, the cyberthreat landscape has transformed from merely a security and privacy concern to a danger much more insidious by nature — ransomware. Ransomware is a type of malware that is designed to encrypt, Imani Barnes Analyst 646.572.3930 destroy or shut down networks in exchange [email protected] for a paid ransom. Through the deployment of ransomware, cybercriminals are no longer just seeking to steal credit card information and other sensitive personally identifiable information (PII). Instead, they have upped their games to manipulate organizations into paying large sums of money in exchange for the safe release of their data and control of their systems. While there are some business sectors in which the presence of this cyberexposure is overt, cybercriminals are broadening their scopes of potential victims to include targets of opportunity1 across a multitude of industries. This paper will provide insight into how ransomware evolved as a cyberextortion instrument, identify notorious strains and explain how companies can protect themselves. 1 WIRED. “Meet LockerGoga, the Ransomware Crippling Industrial Firms” March 25, 2019; https://www.wired.com/story/lockergoga-ransomware-crippling-industrial-firms/. 2 Ransom where? | May 2019 A brief history of ransomware The first signs of ransomware appeared in 1989 in the healthcare industry. An attacker used infected floppy disks to encrypt computer files, claiming that the user was in “breach of a licensing agreement,”2 and demanded $189 for a decryption key. While the attempt to extort was unsuccessful, this attack became commonly known as PC Cyborg and set the archetype in motion for future attacks.
    [Show full text]
  • Monthly Threat Report November 2020
    NTT Ltd. Global Threat Intelligence Center Monthly Threat Report November 2020 hello.global.ntt report | GTIC Monthly Threat Report: November 2020 Contents Feature article: Security in the app economy 03 Spotlight article: The Trickbot takedown 07 Spotlight article: Snapshot of threats to retail 08 About NTT Ltd.’s Global Threat Intelligence Center 09 2 | © Copyright NTT Ltd. hello.global.ntt report | GTIC Monthly Threat Report: November 2020 Security in the app economy Lead Analyst: Zach Jones, Sr. Director of Detection Research, WhiteHat Security, US It used to be simple; a retailer Attack vectors and security spending when organizations are trying to enable was a retailer and a bank was are misaligned customer access in our ‘there’s an app for that’ world. The problem is that a bank. Initially, the role of According to our 2020 NTT Ltd. represents a pipeline where benign and Global Threat Intelligence Report, 33% software in non-technology malicious traffic alike enter networks of observed attacks globally were sectors stayed behind the straight through firewalls and DMZs. The application-specific and 22% of attacks protocol was never designed for secure scenes, supporting the core were web-application based. This means application delivery so building HTTP competencies of that industry, a total of 55% of attacks detected globally applications is prone to error. Threat like inventory management occurred at the application layer. for retailers and account actors will continue to abuse these virtual According to Gartner Group, the 2020 front doors and windows. They are easy management for banks. Security Market Segment spend is to access and are often the weakest link This is no longer the case.
    [Show full text]
  • Virtual Currencies and Terrorist Financing : Assessing the Risks And
    DIRECTORATE GENERAL FOR INTERNAL POLICIES POLICY DEPARTMENT FOR CITIZENS' RIGHTS AND CONSTITUTIONAL AFFAIRS COUNTER-TERRORISM Virtual currencies and terrorist financing: assessing the risks and evaluating responses STUDY Abstract This study, commissioned by the European Parliament’s Policy Department for Citizens’ Rights and Constitutional Affairs at the request of the TERR Committee, explores the terrorist financing (TF) risks of virtual currencies (VCs), including cryptocurrencies such as Bitcoin. It describes the features of VCs that present TF risks, and reviews the open source literature on terrorist use of virtual currencies to understand the current state and likely future manifestation of the risk. It then reviews the regulatory and law enforcement response in the EU and beyond, assessing the effectiveness of measures taken to date. Finally, it provides recommendations for EU policymakers and other relevant stakeholders for ensuring the TF risks of VCs are adequately mitigated. PE 604.970 EN ABOUT THE PUBLICATION This research paper was requested by the European Parliament's Special Committee on Terrorism and was commissioned, overseen and published by the Policy Department for Citizens’ Rights and Constitutional Affairs. Policy Departments provide independent expertise, both in-house and externally, to support European Parliament committees and other parliamentary bodies in shaping legislation and exercising democratic scrutiny over EU external and internal policies. To contact the Policy Department for Citizens’ Rights and Constitutional Affairs or to subscribe to its newsletter please write to: [email protected] RESPONSIBLE RESEARCH ADMINISTRATOR Kristiina MILT Policy Department for Citizens' Rights and Constitutional Affairs European Parliament B-1047 Brussels E-mail: [email protected] AUTHORS Tom KEATINGE, Director of the Centre for Financial Crime and Security Studies, Royal United Services Institute (coordinator) David CARLISLE, Centre for Financial Crime and Security Studies, Royal United Services Institute, etc.
    [Show full text]
  • CYBER ATTACK TRENDS Mid Year Report 2021 CONTENTS
    CYBER ATTACK TRENDS Mid Year Report 2021 CONTENTS 04 EXECUTIVE SUMMARY 07 TRIPLE EXTORTION RANSOMWARE—THE THIRD-PARTY THREAT 11 SOLARWINDS AND WILDFIRES 15 THE FALL OF AN EMPIRE—EMOTET’S FALL AND SUCCESSORS 19 MOBILE ARENA DEVELOPMENTS 2 22 COBALT STRIKE STANDARDIZATION 26 CYBER ATTACK CATEGORIES BY REGION 28 GLOBAL THREAT INDEX MAP 29 TOP MALICIOUS FILE TYPES—WEB VS. EMAIL CHECK POINT SOFTWARE MID-YEAR REPORT 2021 31 GLOBAL MALWARE STATISTICS 31 TOP MALWARE FAMILIES 34 Top Cryptomining Malware 36 Top Mobile Malware 38 Top Botnets 40 Top Infostealers Malware 42 Top Banking Trojans 44 HIGH PROFILE GLOBAL VULNERABILITIES 3 47 MAJOR CYBER BREACHES (H1 2021) 53 H2 2021: WHAT TO EXPECT AND WHAT TO DO 56 PREVENTING MEGA CYBER ATTACKS 60 CONCLUSION CHECK POINT SOFTWARE MID-YEAR REPORT 2021 EXECUTIVE SUMMARY CHECK POINT SOFTWARE’S MID-YEAR SECURITY REPORT REVEALS A 29% INCREASE IN CYBERATTACKS AGAINST ORGANIZATIONS GLOBALLY ‘Cyber Attack Trends: 2021 Mid-Year Report’ uncovers how cybercriminals have continued to exploit the Covid-19 pandemic and highlights a dramatic global 93% increase in the number of ransomware attacks • EMEA: organizations experienced a 36% increase in cyber-attacks since the beginning of the year, with 777 weekly attacks per organization • USA: 17% increase in cyber-attacks since the beginning of the year, with 443 weekly attacks per organization • APAC: 13% increase in cyber-attacks on organizations since the beginning of the year, with 1338 weekly attacks per organization In the first six months of 2021, the global rollout of COVID-19 vaccines gave hope that we will be able to live without restrictions at some point—but for a majority of organizations internationally, a return to pre-pandemic ‘norms’ is still some way off.
    [Show full text]
  • Global Security Report End Year 2020 Executive Summary
    Global Security Report End Year 2020 Executive Summary The Zix | AppRiver Global Security Report for 2020 highlights the threats and trends Zix | AppRiver Security analysts saw throughout the year. In 2020, analysts saw attackers shift their tactics to take advantage of the unprecedented situation the world faced due to the Covid-19 pandemic. These attacks: • Aimed to take advantage of uncertainty surrounding the pandemic and the shift to “work from home” throughout much of the year. • Leveraged other world events, like the contentious US election, to distribute their attacks. • Multiplied "living off the land” attacks across many new and otherwise legitimate services. • Continued shift from high volume email blasts to a much more focused and customized attack style. • Posed impersonation attacks as internal executive communications and were persistent throughout 2020. In this report, we will take a deep dive into many of the threats and trends we saw in email security as well as discuss examples of prevalent attacks and explore potential impacts. Introduction Threat actors have always leveraged both local and world events to help spread their attacks. Never more so than in 2020. Early in the year, as the global pandemic came to fruition, attackers began launching spam, phishing and malware attacks utilizing interest in the pandemic. It wasn’t long before they had begun crafting attacks centered around the surge in remote work. Later in the year they took advantage of the contentious US Election cycle to distribute attacks. In 2020, Attackers continued to embrace the use of more targeted attacks versus the large volume email blasts we have seen in the past.
    [Show full text]
  • Compromised Connections
    COMPROMISED CONNECTIONS OVERCOMING PRIVACY CHALLENGES OF THE MOBILE INTERNET The Universal Declaration of Human Rights, the International Covenant on Civil and Political Rights, and many other international and regional treaties recognize privacy as a fundamental human right. Privacy A WORLD OF INFORMATION underpins key values such as freedom of expression, freedom of association, and freedom of speech, IN YOUR MOBILE PHONE and it is one of the most important, nuanced and complex fundamental rights of contemporary age. For those of us who care deeply about privacy, safety and security, not only for ourselves but also for our development partners and their missions, we need to think of mobile phones as primary computers As mobile phones have transformed from clunky handheld calling devices to nifty touch-screen rather than just calling devices. We need to keep in mind that, as the storage, functionality, and smartphones loaded with apps and supported by cloud access, the networks these phones rely on capability of mobiles increase, so do the risks to users. have become ubiquitous, ferrying vast amounts of data across invisible spectrums and reaching the Can we address these hidden costs to our digital connections? Fortunately, yes! We recommend: most remote corners of the world. • Adopting device, data, network and application safety measures From a technical point-of-view, today’s phones are actually more like compact mobile computers. They are packed with digital intelligence and capable of processing many of the tasks previously confined
    [Show full text]
  • Threat Landscape Report
    QUARTERLY Threat Landscape Report Q3 2020 NUSPIRE.COM THIS REPORT IS SOURCED FROM 90 BILLION TRAFFIC LOGS INGESTED FROM NUSPIRE CLIENT SITES AND ASSOCIATED WITH THOUSANDS OF DEVICES AROUND THE GLOBE. Nuspire Threat Report | Q2Q3 | 2020 Contents Introduction 4 Summary of Findings 6 Methodology and Overview 7 Quarter in Review 8 Malware 9 Botnets 15 Exploits 20 The New Normal 28 Conclusion and Recommendations 31 About Nuspire 33 3 | Contents Nuspire Threat Report | Q3 | 2020 Introduction In Q2 2020, Nuspire observed the increasing lengths threat actors were going to in order to capitalize on the pandemic and resulting crisis. New attack vectors were created; including VPN usage, home network security issues, personal device usage for business purposes and auditability of network traffic. In Q3 2020, we’ve observed threat actors become even more ruthless. Shifting focus from home networks to overburdened public entities including the education sector and the Election Assistance Commission (EAC). Many school districts were forced into 100% virtual or hybrid learning models by the pandemic. Attackers have waged ransomware attacks at learning institutions who not only have the financial resources to pay ransoms but feel a sense of urgency to do so in order to avoid disruptions during the school year. Meanwhile, the U.S. Elections have provided lures for phishers to attack. Nuspire witnessed Q3 attempts to guide victims to fake voter registration pages to harvest information while spoofing the Election Assistance Commission (EAC). Like these examples, cybercriminals taking advantage of prominent media themes are expected. We anticipate our Q4 2020 Threat Report 4 | Introduction Nuspire Threat Report | Q3 | 2020 to find campaigns leveraging more of the United report each quarter is a great step to gain that States Presidential election as well.
    [Show full text]
  • APT and Cybercriminal Targeting of HCS June 9, 2020 Agenda
    APT and Cybercriminal Targeting of HCS June 9, 2020 Agenda • Executive Summary Slides Key: • APT Group Objectives Non-Technical: managerial, strategic • APT Groups Targeting Health Sector and high-level (general audience) • Activity Timeline Technical: Tactical / IOCs; requiring • TTPs in-depth knowledge (sysadmins, IRT) • Malware • Vulnerabilities • Recommendations and Mitigations TLP: WHITE, ID#202006091030 2 Executive Summary • APT groups steal data, disrupt operations, and destroy infrastructure. Unlike most cybercriminals, APT attackers pursue their objectives over longer periods of time. They adapt to cyber defenses and frequently retarget the same victim. • Common HPH targets include: • Healthcare Biotechnology Medical devices • Pharmaceuticals Healthcare information technology • Scientific research • HPH organizations who have been victim of APT attacks have suffered: • Reputational harm Disruption to operations • Financial losses PII/PHI and proprietary data theft • HC3 recommends several mitigations and controls to counter APT threats. TLP: WHITE, ID#202006091030 3 APT Group Objectives • Motivations of APT Groups which target the health sector include: • Competitive advantage • Theft of proprietary data/intellectual capital such as technology, manufacturing processes, partnership agreements, business plans, pricing documents, test results, scientific research, communications, and contact lists to unfairly advance economically. • Intelligence gathering • Groups target individuals and connected associates to further social engineering
    [Show full text]
  • 2020 International Narcotics Control Strategy Report
    United States Department of State Bureau for International Narcotics and Law Enforcement Affairs International Narcotics Control Strategy Report Volume I Drug and Chemical Control March 2020 INCSR 2020 Volume 1 Table of Contents Table of Contents Common Abbreviations ..................................................................................................................................... iii International Agreements.................................................................................................................................... v INTRODUCTION ..................................................................................................................................... 1 Legislative Basis for the INCSR ......................................................................................................................... 2 Presidential Determination ................................................................................................................................. 7 Policy and Program Developments .................................................................................................... 12 Overview ......................................................................................................................................................... 13 Methodology for U.S. Government Estimates of Illegal Drug Production .......................................................... 18 Parties to UN Conventions ..............................................................................................................................
    [Show full text]
  • Q3 Malware Trends: Ransomware Extorts Education, Emotet and Crypto Mining Malware Evolve, and Android Malware Persists Cyber Threat Analysis
    CYBER THREAT ® ANALYSIS By Insikt Group CTA-2020-1105 Q3 MALWARE TRENDS: RANSOMWARE EXTORTS EDUCATION, EMOTET AND CRYPTO MINING MALWARE EVOLVE, AND ANDROID MALWARE PERSISTS CYBER THREAT ANALYSIS Key Judgments • More threat actors will very likely adopt the ransomware extortion model as long as it remains profitable. • Educational institutions continue to be a prime target for ransomware operators. We believe that disruptions caused by the COVID-19 pandemic have made the networks of universities and school districts attractive targets because these organizations feel increased pressure to stay operational with minimal disruptions and are therefore more likely to pay ransoms quickly. • Reports of NetWalker attacks increased, and reports of Sodinokibi attacks decreased. However, it is possible that victims of Sodinokibi attacks are simply paying the ransom more often. Based on activity on underground forums, we suspect that the operators of Sodinokibi are continuing to expand their operations. • While we expect Emotet’s operators to continue to employ major pauses, it is highly likely that Emotet will continue to be This report is an extension of analysis Recorded Future released, which outlined a major threat and impact organizations across a variety of the trends in malware use, distribution, and development throughout Q1 and Q2 industries throughout the end of the year and into 2021. 2020. Insikt Group used the Recorded Future® Platform to look at mainstream news, security vendor reporting, technical reporting around malware, vulnerabilities, and • In Q3 2020, threat actors have increasingly augmented their security breaches, and dark web and underground forums from July 1 to September cryptocurrency mining malware by adding functionalities 30, 2020, to examine major trends to malware impacting desktop systems and mobile such as credential stealing or access capabilities.
    [Show full text]
  • Family Fun in Barton Food, Friendship & Fun for £8 a Night!
    www.ipa-uk.org Vol 55 No.4 2010 The magazine of the International Police Association, Section UK Family Fun in Barton Food, friendship & fun for £8 a night! Members took on the UK’s four highest peaks and returned to tell the tale An expedition to the Galapagos Islands with a few new friends How the Bond works “ The Holiday Property Bond has a flair The Bond invests, Police World after initial charges, The magazine of the International Police for finding perfect holiday locations. in properties and Association, Section UK securities. Properties Contents are booked for a no Not just sea and sun, but fascinating, profit ‘User Charge’ Editor Vol 55 No.4 2010 and Points issued with Lee Hemmings unforgettable places.” the Bond. There is a e-mail: [email protected] quarterly fee of around Sue Barker twenty-five pounds Deadline for article submission for Sportswoman, broadcaster and Bondholder since 2001 including VAT linked edition 2 is 28 February, 2011 Features to RPI, with all other Advertising management fees 4 Working on Your Behalf paid from securities. Elizabeth Howgill News from the National President Investment is from tel: (+44) 0115 981 3638 £4,000. You may e-mail: [email protected] 5 Cornish PC found in the corner encash after two years of a foreign field Stigliano, Tuscany at a value linked to General enquiries John Capp tells the story of a fallen hero that of the properties IPA, BSAC, Arthur Troop House, 6 Bryn gets hot and cold in Poland and securities but 1 Fox Road, you may not see a West Bridgford, Bryn Jones enjoys Polish police hospitality profit and may incur Nottingham.
    [Show full text]
  • Convention Against Torture and Other Cruel, Inhuman Or Degrading Treatment Or Punishment
    UNITED NATIONS CAT Convention against Torture Distr. GENERAL and Other Cruel, Inhuman CAT/C/44/Add.4 or Degrading Treatment 15 December 1998 or Punishment Original: ENGLISH COMMITTEE AGAINST TORTURE CONSIDERATION OF REPORTS SUBMITTED BY STATES PARTIES UNDER ARTICLE 19 OF THE CONVENTION Third periodic reports of States parties due in 1998 Addendum NETHERLANDS (ANTILLES AND ARUBA)* [3 September 1998] * The initial report submitted by the Government of Netherlands is contained in document CAT/C/9/Add.1; for its consideration by the Committee, see documents CAT/C/SR.46 and 47 and Official Records of the General Assembly, Forty•fifth Session, Supplement No. 44 (A/45/44), paras. 435•470. For the second periodic report, see CAT/C/25/Add.1, 2 and 5; for its consideration, see CAT/C/SR.210 and 211/Add.1 (closed) and Official Records of the General Assembly, Fiftieth Session, Supplement No. 44 (A/50/44), paras. 111•131. GE.98•05079 (E) CAT/C/44/Add.4 page 2 CONTENTS Paragraphs Page Part One • Netherlands Antilles .............. 1 • 62 4 I. INFORMATION OF A GENERAL NATURE ........... 1 • 12 4 II. INFORMATION RELATING TO THE ARTICLES IN PART I OF THE CONVENTION .................. 13 • 62 6 Article 1 ...................... 13 • 17 6 Article 2 ...................... 18 • 34 7 Article 3 ...................... 35 12 Article 4 ...................... 36 • 38 12 Article 5 ...................... 39 • 40 12 Article 6 ...................... 41 • 42 13 Articles 7 and 8 .................. 43 13 Article 9 ...................... 44 • 45 13 Article 10 ..................... 46 • 47 13 Article 11 ..................... 48 • 52 14 Articles 12 and 13 ................. 53 • 56 14 Article 14 ....................
    [Show full text]