CSIRT

17 May 2014 at 12:16am

AusCERT 2014

James Davis
auscert
CSIRT
infosec
bigdata
nsa
Privacy
Thanks to the generosity of my host, AusCERT, I’ve been able to spend this week in Queensland at AusCERT’s annual conference. Whilst not part of the Australian NREN AARNet, AusCERT fulfils a similar role to Janet CSIRT and provides incident response services to the Higher Education sector in Australia.
Read more
9 May 2014 at 11:03am

Interpreting incident statistics

Natalie Allred
Information Security
CSIRT
Just a reminder that the Janet Security Incident Classification Scheme is available here to help you with this.
Read more
15 April 2014 at 4:01pm

Incident statistics for March 2014

James Davis
CSIRT
incident
statistics
infosec
Category Count Compromise 16 Copyright 3 Denial of Service 18 General Query 4 LEA Query 2 Legal/Policy Query 0 Malware 519 Net/Security Query 5 Other 7 Phishing 19 Scanning 9 Social Engineering 1
Read more
17 April 2014 at 2:49pm

Heartbleed OpenSSL Vulnerability CVE-2014-0160

Lee Harrigan-Green
CSIRT
openssl
vulnerability
Software Vulnerabilities
We have responded to the announcement of the OpenSSL vulnerability today, 8th April 2014. Technical advice (detailed below) has been issued to colleagues across the sector to assist them in responding to this vulnerability. In addition, replacement certificates, for those organisations affected by this vulnerability, will be issued at no cost by the Janet Certificate Service. If your organisation is affected by the OpenSSL vulnerability and is taking steps to address this, and requiring a replacement certificate, then please visit the following url for further information.
Read more
2 April 2014 at 11:35am

Update on filtering of large ntp packets

James Davis
ntp
filtering
DDOS
infosec
CSIRT
We continue to monitor the effect of the filtering of large ntp packets (> 128 bytes) at the Janet borders. Where people have had concerns we've been working with them to make sure that their work is impacted as little as possible by this measure. The filtering has had a large reduction on the impact to Janet infrastructure but the current filtering limits still allow enough traffic through the Janet border to cause disruption for customers with 100Mb/s, or busy 1Gb/s, connections.
Read more
13 March 2014 at 3:38pm

Incident statistics for February 2014

James Davis
incident
statistics
CSIRT
infosec
Category Count Compromise 111 Copyright 7 Denial of Service 61 General Query 7 LEA Query 2 Legal/Policy Query 1 Malware 380 Net/Security Query 15 Other 11 Phishing 27 Scanning 10 Social Engineering 0
Read more

Hands on Security Testing (Live Online Course)

Sammy Ashby
24 February 2014 at 10:51am
Security Testing
CSIRT
Online Learning
The 'Hands on Security Testing' live online learning course covers the basics of Security Testing, from port scanning using the freely available nmap tool, through to vulnerability exploitation using the metasploit tool. This course takes place over six sessions.   
Read more
21 February 2014 at 2:10pm

Limiting ntp traffic on Janet

James Davis
CSIRT
block
ntp
DDOS
The increasing frequency, number and size of ntp based DDoS attacks against Janet connected organisations has at times briefly degraded connectivity to sections of the network. Whilst we are able to react to these attacks as and when they occur, the impact upon our customers can be significant. This situation is far from unique to Janet - ISPs globally are struggling with this issue.
Read more
6 February 2014 at 9:55am

Incident statistics for January 2014

James Davis
CSIRT
incident
statistics
infosec
Category Count Compromise 9 Copyright 1 Denial of Service 149 General Query 9 LEA Query 4 Legal/Policy Query 1 Malware 422 Net/Security Query 19 Other 17 Phishing 30 Scanning 15 Social Engineering 0
Read more
21 January 2014 at 8:42am

Incident statistics for December 2013

James Davis
incident
statistics
CSIRT
infosec
Category Count Compromise 152 Copyright 2 Denial of Service 16 General Query 6 LEA Query 1 Legal/Policy Query 1 Malware 618 Net/Security Query 4 Other 11 Phishing 14 Scanning 14 Social Engineering 0
Read more
Subscribe to CSIRT