RCTS CERT • Serviço de Segurança da Unidade FCCN

Service Manager

RCTS Exclusive

Coordination of IT security incidents

RCTS CERT is a response service for computer security incidents whose origin or target is RCTS.

In a more preventative component, RCTS CERT provides an alert service and produces recommendations regarding potential security risks and malicious activities.

One of the objectives of this strand is to develop an internet safety culture.

Who is it intended for?

It is intended for the IT support and assistance centers of the institutions:

Higher education
Research and Development
Non-profit institutions whose main objective is Research and Development activities.

About CERT

RCTS CERT contributes to the cybersecurity effort within the RCTS user community, having achieved international recognition in its area of activity.

In early 2011, it became a member of FIRST (Forum of Incident Response and Security Teams) and obtained the Trusted Introducer certification in 2015, becoming the first team certified nationwide.

From its creation until the end of 2014, RCTS CERT used the name CERT.PT, gradually assuming a national mission, in fact, of coordinating the response to security incidents.

After the creation of the National Cybersecurity Center, this entity assumed responsibility for the national incident response coordination component, with the FCCN unit's incident response team having since adopted the current name “RCTS CERT” reflecting its new scope of action.

What we do

In the area of prevention, RCTS CERT issues security alerts and produces recommendations regarding vulnerabilities, potential security risks and malicious activities.

Specifically, RCTS CERT offers several sub-services available to the RCTS community:

Incident handling: Reactively, it analyzes and distributes the information necessary to mitigate the problems presented to it, safeguarding the privacy of the individuals or entities involved in accordance with full compliance with the GDPR;

Website audits ;

Phishing Campaigns: Prepares, raises awareness, and trains institutional employees on how to deal with fraud via email messages, simulating a phishing campaign and then conducting an awareness session.

DNS Firewall : Protects RCTS users from communicating with malicious nodes if that communication involves name resolution.

Vulnerability Management: Produces periodic automated reports on computer security vulnerabilities across a set of web services/servers.

Terms of Use

The RCTS CERT team's work focuses on coordinating incident responses within the research and higher education communities within RCTS. See more information about the service.

Documents

RCTS CERT Technical Sheet

Computer Security Incident

A computer security incident is understood to be any action or set of actions carried out against a computer or computer network and which results, or may result, in the loss of confidentiality, integrity or performance of a data communication network or computer system.

Incidents include unauthorized access, tampering or removal of information, interference/interception of communications, as well as denial of service.

How to Report an Incident?

You can report a computer security incident that occurred within the scope of RCTS by email to report@cert.rcts.pt .

In the incident handling process, RCTS CERT safeguards the privacy of individuals or entities involved in accordance with its Privacy Policy .

More about Security

Spear-Phishing: Hacking the Mind and Accessing the Network

Phishing is one of the most common forms of cybercrime. This type of attack occurs when an attacker attempts to steal sensitive information, such as...

Read article

My first experience at BlackHat

Understanding how important it is to stay up-to-date on the latest techniques and methods used by attack teams and threat actors, I was able to attend the BlackHat USA 2023 conference for the first time.

Read article

Email malware attack. What it is and how to protect yourself.

It's crucial to understand the threats that can attack your organization and how to mitigate them. One such threat is malware, which often infiltrates organizations through seemingly harmless emails.

Read article

FCCN Conference Testimony: Rui Canizes – IPDJ

Rui Canizes, Head of the Technological Infrastructure Division at the Portuguese Institute of Sport and Youth (IPDJ), tells us what the Conferences have been like for him.

Read article

The Essentials for a Cybersecure Summer Break at Higher Education Institutions

This period can present opportunities for cyberattacks. Learn some tips on how to avoid them.

Read the news

Cybersecurity student represents Portugal at TNC25

Aurora Vasconcelos, a master's student in Cybersecurity at the Polytechnic Institute of Viana do Castelo, is the Portuguese student chosen to take the stage at TNC25.

Read the news

European Commission invites industry and academia to form Cybersecurity Network

Applications for expressions of interest in joining the network are open until January 5, 2025.

Read the news

New training for cybersecurity teams

The training “CSIRT in a Box: Initial Training for Incident Response Teams”, available on the NAU platform.

Read the news

Safer Internet Day (SID) 2024: Viseu hosts the initiative dedicated, this year, to Artificial Intelligence

February 6th marks the 21st Safer Internet Day (SID). The Safe Internet Center Consortium is organizing this national commemorative event, which takes place this year in Viseu. The SID Summit 2024 program is dedicated to Artificial Intelligence.

More information

Registration for FCCN Conference 2023 is now open

The 14th edition of the FCCN Conference will take place at the Naval School - Alfeite Base in Almada, between June 27th and 29th, 2023. Registration is now open and can be done through the event's new dedicated website.

More information

CSIRT-in-a-box 2022

RCTS CERT organizes, on November 3rd and 4th, a new edition of the CSIRT-in-a-Box Workshop.

More information

"The FCCN Unit exists to serve the community. The FCCN Unit Conferences are of enormous importance."

"One of our goals in organizing the Conferences is to take them around the country. We enjoy visiting the institutions we work for. We get to know them better, and they get to know us better."

More information

Testimonials

Pedro Vapi
ICT Infrastructure Division - University of Coimbra

The support of RCTS CERT has been of crucial importance.
The support that RCTS CERT has provided to the UC, particularly through the use of incident detection and assessment tools, has been crucial in addressing the institution's weaknesses regarding the limited resources available in this area.

Alexandre Santos
ICT Infrastructure Division - University of Coimbra

The working relationship between RCTS CERT and UC has been characterized by excellent bilateral communication ties.
The working relationship between RCTS CERT and the UC has been characterized by excellent bilateral communication. The service has open (direct and indirect) channels and a prompt response to both critical and less critical situations. The FCCN Unit team remains always available and cooperative at all levels.

Want to learn more about the RCTS Cert service? Contact us!

Contacts

(+351) 218 440 100

info@cert.rcts.pt

Avenida do Brasil, nº101
(LNEC Campus)
1700-066 Lisbon
Portugal

///straw.crouch.suitcase