| |
|
|
Here are the answers to the most Frequently Asked Questions (FAQs) about CERT-MU. We also have portal-specific FAQs that include frequently asked questions about the work in that particular area.
Additional questions are welcome - please email them to
|
 |
| |
| Introduction to the CERT-MU |
| |
|
What is CERT-MU? |
|
What does CERT-MU do? |
|
Who can report computer security incidents to CERT-MU? |
|
What can be reported to CERT-MU? |
|
How to report incidents to CERT-MU? |
|
How to report a vulnerability to CERT-MU? |
|
What information is available online from CERT-MU? |
| |
Important Terms on CERT-MU Website
|
| |
|
What is a computer security incident? |
|
What is a vulnerability? |
|
What are security guidelines? |
|
What is an incident note? |
|
What is an advisory? |
|
What is a vulnerability note? |
|
What is incident handling & response? |
| |
| |
| Introduction to the CERT-MU |
| |
| What is CERT-MU? |
| |
CERT-MU is the Mauritian National Computer Security Incident Response Centre for major computer security incidents in its constituency i.e. Mauritian cyber community |
| |
| What does CERT-MU do? |
| |
| CERT-MU has three main goals: |
| |
• handle security incidents and monitor security problems occurring within public and private sectors;
• provide guidance to providers of critical information infrastructure to adopt best practices in information security;
• warn and educate systems administrators and users by means of information distribution.
|
| |
| Who can report computer security incidents to CERT-MU? |
| |
All users, system administrators of Mauritian cyber community |
| |
| What can be reported to CERT-MU? |
| |
Users and System Administrators can report computer security incidents and vulnerabilities to CERT-MU.
1. If you encounter any of the violations given below, you may contact CERT-MU for technical assistance
(i) Attempts (either failed or successful) to gain unauthorised access to a system or data therein
(ii) Disruption or denial of service
(iii) Unauthorised use of a system for the processing or storage of data
(iv) Changes to system hardware, firmware, or software characteristics without owner's knowledge, instruction, or consent
(v) Email-related security issues, spamming, mail bombing etc.
2. Users of different systems working on various platforms and using different applications may report any vulnerability found in these systems, platforms, applications, services and devices to CERT-MU.
|
| |
| How to report incidents to CERT-MU? |
| |
You can report an incident to CERT-MU by filling up the form on our website, electronic mail, telephone hotline or by Fax. |
| |
| Website |
| The incident can be reported by filling up incident reporting form on our website. Fill in as many of the fields as possible to enable us to assess the severity and nature of the incident and assist in recovery, as needed. |
| |
| Electronic Mail |
The CERT-MU email address for reporting incidents is:
For all other inquiries and correspondence, write to:
Occasionally, a compromised system's electronic mail may be under surveillance by the intruder. If that is suspected, you are advised to use other means (telephone or fax) to file your report.
|
| |
| Telephone Hotline |
| You can contact the CERT-MU on 800 2378 |
| |
| Fax |
| Incident report can be faxed to CERT-MU at 466 9840 |
| |
| How to report a vulnerability to CERT-MU? |
| |
A vulnerability can be reported to CERT-MU by filling up the Vulnerability Reporting Form provided on our website. The information about a particular vulnerability can also be sent to CERT-MU by Fax or by e-mail :
|
| |
| What information is available online from the CERT-MU? |
| |
For details please follow the link for CERT-MU Site Map |
| |
| Important Terms on CERT-MU Website |
| |
| What is a computer security incident? |
| |
A computer security incident is any real or suspected adverse event in relation to the security of computer systems or networks. It is an act of violating explicit or implied security policy resulting in, unauthorised access, denial of service/disruption, unauthorised use of a system for processing or storage of data or changes to system software, hardware, firmware characteristics without the owner's knowledge. |
| |
| What is vulnerability? |
| |
A vulnerability is the existence of a flaw or weakness in hardware or software that can be exploited resulting in a violating of an implicitly or explicit security policy. |
| |
| What are security guidelines? |
| |
CERT-MU has prepared best practices & system specific security guidelines to help the Mauritian cyber community enhance security of their systems and networks. |
| |
| What is an incident note? |
| |
An incident note is the information provided to its constituents by CERT-MU in response to wide spread exploitation of a specific vulnerability, which is based on statistical analysis of incidents reported to CERT-MU and our observations thereof. |
| |
| What is an advisory? |
| |
An advisory is the information provided by CERT-MU in response to a critical vulnerability, affecting or potential to affect a large number of systems or networks in its constituency. |
| |
| What is a vulnerability note? |
| |
A vulnerability note is the information provided by CERT-MU to its constituents in response to a new vulnerability discovered in a system, platform, service or device. |
| |
| What is incident handling & response? |
| |
CERT-MU will provide assistance to System Administrators in handling computer security incidents by providing advice and support in recovering from an incident, and containing the damage, restoring system to operation. Refer to Incident Reporting page. |
| |
| |
