RCTS CERT - Unit Security Service FCCN

Carlos Friaças
Service Manager

RCTS Exclusive

Coordination of IT security incidents

RCTS CERT is a computer security incident response service whose origin or target is RCTS.

In a more preventive component, RCTS CERT provides an alert service and produces recommendations regarding potential security risks and malicious activities.

One of the aims of this strand is to develop an internet safety culture.

Who is it intended for?

It is intended for the Institutions' Computer Support Centres:

Higher Education
Research and Development
Non-profit Institutions whose main objective is Research and Development activities.

About RCTS CERT

The RCTS CERT contributes to the cybersecurity effort in the context of the RCTS user community, having obtained international recognition in its area of action.

In early 2011 it became a member of FIRST (Forum of Incident Response and Security Teams) and achieved Trusted Introducer certification in 2015, becoming the first certified team nationally.

Since its creation until the end of 2014 the RCTS CERT used the name CERT.PT, gradually taking on a national, de facto, security incident response coordination mission.

After the creation of the National Cybersecurity Center, this entity assumed responsibility for the national incident response coordination component, and the unit's incident response team FCCN has since adopted the current name "RCTS CERT", reflecting its new scope of action.

What we do

In the prevention area RCTS CERT issues security alerts and produces recommendations regarding vulnerabilities, potential security risks and malicious activities.

Specifically, RCTS CERT features several sub-services available to the RCTS community:

Incident handling: In a reactive manner, it analyses and distributes the information necessary to mitigate the problems that are presented to it, safeguarding the privacy of the individuals or entities involved in accordance with full compliance with the RGPD;

Websiteaudits;

Phishing Campaigns: Prepares, raises awareness and trains the institutions' employees to deal with situations of fraud through e-mail messages, simulating a phishing campaign and subsequently holding an awareness session.

DNS Firewall: Protects RCTS users from communication with malicious nodes if that communication involves name resolution.

Vulnerability management: Produces periodic automated reports regarding computer security vulnerabilities on a set of web services/servers.

Terms of Use

The RCTS CERT team focuses on coordinating incident response for the RCTS research and higher education communities. See more information about the service.

Documents

Technical Data Sheet RCTS CERT

Computer Security Incident

Computer security incident means any action or set of actions taken against a computer or computer network and which results, or may result, in the loss of confidentiality, integrity or performance of a data communication network or computer system.

Unauthorised access, tampering with or removal of information, interference/interception of communications, and denial of service are incidents.

How to Report an Incident?

You can report a cybersecurity incident occurring within the RCTS by emailing report@cert.rcts.pt.

In the incident handling process, the RCTS CERT safeguards the privacy of the individuals or entities involved in accordance with its Privacy Policy.

More on Security

My first experience at BlackHat

Understanding how important it is to be up-to-date on the latest techniques and methods used by attack teams and threat actors, I was able to attend the BlackHat USA 2023 conference for the first time.

Read article

Malware attack by e-mail. What it is and how to protect yourself.

It is crucial to know the threats that can attack your organization and how to mitigate them. One such threat is malware, which often infiltrates organizations through apparently harmless emails.

Read article

Testimonial Jornadas FCCN: Rui Canizes - IPDJ

Rui Canizes, Head of Technological Infrastructures Division at the Portuguese Institute for Sports and Youth (IPDJ), tells us what the Jornadas have been for him.

Read article

Testimonial Jornadas FCCN: António Luís Lopes - ISCTE-IUL

António Luís Lopes, responsible for the information systems development team at ISCTE-Instituto Universitário de Lisboa, tells us what the conference usually means to him and what are the expectations for the 2023 edition.

Read article

1st RCTS Cyberrange: a controlled space to train in defending and attacking computer systems

This cybersecurity initiative had 64 participants from 26 different institutions, divided into 10 groups. The winning team was made up of members from the University of Coimbra and the Polytechnic Institute of Cávado and Ave.

Read the news

7 tips for safe online shopping

Safe online shopping is especially important on Black Friday and Cyber Monday. Here are seven tips to ensure safe transactions.

Read the news

European Cybersecurity Month. Protecting the community

October is another Cybersecurity Month. Throughout the month, the FCCN Unit will be taking part in this initiative coordinated by ENISA and the European Commission.

Read the news

Unit FCCN launches digital service catalog

FCCN launches a digital catalog of services, dedicated to the solutions it provides for the academic community. An up-to-date digital portfolio that is easy to consult.

Read the news

Safer Internet Day (SID) 2024: Viseu hosts this year's initiative dedicated to Artificial Intelligence

February 6th marks the 21st edition of Safer Internet Day (SID). The Safer Internet Center Consortium is organizing this national commemorative event, which will be held this year in Viseu. The SID Summit 2024 program is dedicated to Artificial Intelligence.

More info

Registration for the Jornadas FCCN 2023 is now open

The 14th edition of the Jornadas FCCN will take place at the Naval School - Alfeite Base in Almada, between June 27 and 29, 2023. Registration is now open and can be done via the event's new dedicated website.

More info

CSIRT-in-a-box 2022

RCTS CERT organizes, on November 3 and 4, a new edition of the CSIRT-in-a-Box Workshop.

More info

"Unity FCCN exists to serve the community. The Jornadas da Unidade FCCN are extremely important"

"One of the goals we have, in organizing the Days, is to take them around the country. We like to go to the institutions we work for. We get to know them better and they get to know us better."

More info

Testimonials

Alexandre Santos
ICT Infrastructure Division - University of Coimbra

The working relationship between the RCTS CERT and the UC has been marked by excellent bilateral communication links.
The working relationship between RCTS CERT and the UC has been characterized by excellent two-way communication. The service has open channels (direct and indirect) and responds promptly to critical and less critical situations. The team at FCCN is always available and cooperative at all levels.

Pedro Vapi
ICT Infrastructure Division - University of Coimbra

RCTS CERT support has been of crucial importance.
The support that the RCTS CERT has given to the UC, mainly with the use of tools for detection and assessment of occurrences, has been of crucial importance to bridge the weaknesses of the institution regarding the scarce resources existing for the area in question.

Want to know more information about this service? Contact us!

Contacts

(+351) 218 440 100

info@cert.rcts.pt

Av. do Brasil, nr. 101
(Campus do LNEC)
1700-066 Lisboa
Portugal

///straw.crouch.suitcase