Security incidents
DeiC Security/DKCERT handles incidents against and on the research network from networks.
When an institution on the research network is exposed to an attack, it can contact DeiC Security / DKCERT and state which IP address the attack comes from. DeiC Security / DKCERT will then contact the network to which the IP address belongs, make the administrators aware of the problem and ask them to take action.
When computers on the research network send unwanted traffic, for example because they are infected with malicious software, the traffic hits computers out on the Internet. Those responsible for the affected network complain to DeiC Security / DKCERT, which is responsible for receiving complaints about IP addresses on the research network. DeiC Security / DKCERT contacts the institution with the IP address in question and asks it to take action.
We then coordinate information between the affected parties and other organizations, such as foreign response teams and the police. DeiC Security / DKCERT has an advisory role and does not have the authority to order others to take specific actions.
DeiC Security / DKCERT can be an intermediary of information between different parties who wish to remain anonymous. Confidential communication can be established between different national and international parties so that information about incidents and vulnerabilities can be handled confidentially.
DeiC Security / DKCERT also advises on possible threats and can help analyze e.g. log files in order to identify a given method of attack.
DeiC Security/DKCERT handles incidents against and on the research network from networks.
Get help
You're always welcome to contact us if you need help.
Security incidents are reported via email.