DKCERT

DKCERT's trend report 2021 is out now

DKCERT has just published its annual trend report. A report, which is partly DKCERT's report on the past year, and partly DKCERT's bid for the trends we expect to be prevalent.

The report begins with a brief view of the cyber situation picture that DKCERT has observed over the past year. This is followed by an assessment of the threats to the university and research sector. This, the threat assessment, is mostly aimed at the sector and indicates that the threat from cyber espionage, crime and insiders against the sector is very high.

English

The DPO service has doubled the number of agreements

Universities and other institutions on the research network must - like everyone else - comply with the EU Data Protection Regulation, whose rules have been enforced since 25 May 2018.

For many educational institutions, the DPO task at the individual institution will not have a sufficient scope for it to be necessary to employ a separate DPO. Likewise, many educational institutions also do not have the necessary competencies to ensure compliance with the new data protection rules.

English
Keywords: 

TF-CSIRT Trusted Introducer

The Trusted Introducer Service forms the trusted backbone of infrastructure services and serves as clearinghouse for security and incident response teams. It lists well known teams and accredits as well as certifies teams according to their demonstrated and checked level of maturity.

Trusted Introducer is a service under the TF-CSIRT.

DKCERT, the security incident handling organization of DeiC is accredited by Trusted Introducer since 2002.

English

TF-CSIRT

TF-CSIRT (Task Force Computer Security Incident Response Teams) is a task force under the European research and education networking organization GÉANT. Its members are organizations handling security incidents.

TF-CSIRT allows members to meet with other similar organizations and discuss topics of common interest. TF-CSIRT also arranges training and promotes the use of common standards and procedures for handling security incidents.

DeiC is represented in TF-CSIRT via DKCERT.

English

DKCERT CAB

Members

  • CISO Ole Boulund Knudsen, Aarhus University (recommended by the CISO Forum), Chairman
  • CIO Mads Sinkjær Kjærgaard, Roskilde University (recommended by the CIO Forum of the Danish Rectors' Conference)
  • Network administrator Lasse Birnbaum Jensen, University of Southern Denmark (recommended by the Technical Reference Group for Network Infrastructure)
  • CISO Poul Halkjær Nielsen, Copenhagen University (recommended by the CISO Forum)
  • Vacant (a representative from another partner)
English

Security Information

Newsletter

Every Monday DKCERT issues a newsletter to anyone interested in staying informed about information security and threats against their IT systems. 

The newsletter informs about the latest news in the field of IT security, including security risks and illegal activities in the research network. The newsletter includes the following topics: 

English

Scanning of servers

DKCERT offers as a free service to scan it systems and applications exposed to the internet for vulnerabilities. The purpose is to identity existing vulnerabilities that allow external intrusion via the internet. 

The result of the vulnerability scanning is documented in a report. It acts as a management tool which is presented to the system owner. The report gives the system operator an overview of which vulnerabilities that need to be corrected to secure the network of the institution.

Registration for scanning is done by contacting DKCERT.

English

Incident Response

DKCERT receives reports from persons who have been exposed to a security incident related to Forskningsnettet (the Danish Research Network). It may be attacks on computers connected to the network or attacks from the network aimed at others. The role of DKCERT is of an intermediary and advisory nature.

The Incident Response service includes direct technical support to handle the security incident. DKCERT proposes solutions to the problems and warns others who are at risk of a similar incident. This takes into account the stakeholders' wish for anonymity and confidentiality. 

English

Pages

Subscribe to RSS - DKCERT