EGI CSIRT
Computer Security Incident Response Team
MISSION
EGI CSIRT coordinates operational security activities within the EGI Infrastructure to deliver a secure and stable infrastructure, giving scientists and researchers the protection and confidence they require to safely and effectively carry out their research.
CONTACTS
To report a security incident:
- EGI data centres: follow SEC01 and report an incident
- Everyone else: abuse@egi.eu
To report a software vulnerability:
- report-vulnerability@egi.eu or use this web form
(don’t discuss on open forums)
Or contact us via email
WHAT WE DO
- Prevention of security incidents (security monitoring, software vulnerability handling, risk assessment and mitigation)
- Incident response
- Security policy and procedures
- Security Trainings
TRAININGS
Keeping the EGI infrastructure secure requires an understanding of attack and defense techniques that goes beyond the average skill set of system administrators. Security training is vital to guarantee that local teams are able to use available information for a complete incident response. EGI CSIRT has a diverse catalogue of training modules, developed by the team or by partner institutions.
Security training at EGI Conference in Poznan
EGI CSIRT will organise a security training at the EGI Conference 2023 in Poznan, on the 23rd of June. The training will focus on three key areas: Threat intelligence and SOCSecurity in OIDC deploymentsSSC Forensics Walkthrough You are all welcome to join. We are...
High risk RHEL 9 buffer overflow vulnerability in Linux Kernel Netfilter
A buffer overflow vulnerability was found in the Netfilter subsystem in the Linux Kernel. This issue could allow the leakage of both stack and heap addresses, and potentially allow Local Privilege Escalation to the root user via arbitrary code execution. For RHEL and...
