Reporting a cyber incident

Reporting environment raport.cert.ee

Via the reporting environment, you can send a notification to RIA regarding a cyber incident. The report is intended primarily for authorities and service providers for sending more detailed information.

raport.cert.ee

Simple incident notifications can also be sent to [email protected].

Sharing information with CERT-EE regarding cyber incident is protected as information intended for internal use in accordance with Cybersecurity Act and Public Information Act.

Any malicious activity believably originating from the Estonian networks/resources should be reported directly to the resource owner (eg ISP or web hosting provider). If you cannot find the contacts of this resource owner or they do not reply, please escalate the issue to CERT-EE. Large scale incidents involving Estonian resources can be reported directly to CERT-EE.

Encryption

You can use the following methods to send us encrypted messages:

CERT-EE’s organisations certificate (CDOC): Riigi Infosüsteemi Amet: CERT
PGP public key: 7B96 A5C7 079D 0CAF 9BEA C713 B05D BD10 A32A FB7D

Contacts of CERT-EE

663 0299
[email protected]
CERT-EE is operating 24/7

About security incidents

Security incident is a situation where the confidentiality, integrity and the processability of the information system and/or the information of an organisation, institution or a person is being violated. Security incidents are also situations where somebody else’s information system is used without an authorisation or its functionality is being deliberately interfered with.

Security incidents are prioritised according to their potential severity and scope. The following aspects are taken into account in the prioritisation of security incidents:

the number of affected users;
the type of an incident;
the target of an attack as well as the attack’s point of origin;
resources required to handle the incident.

As CERT-EE does not render services to end users, the latter should, in case of security incidents, turn to system administrators either at their Internet service provider or in their organisation, to network administrators or customer support.

CERT Reporting cyber incidents Cyber Security

Data exchange platforms

People-centred data exchange

Data-based governance and reuse of data

Reusing the components of the digital state

Electronic identity (eID) and trust services

Raising public awareness about the information society

Personal services

State network services

Development of election information systems

Studies and analyses

Instructions

National Cyber Security Centre NCSC-EE

Handling cyber incidents CERT-EE

Administrative and national supervision

Cyber defence of critical infrastructure

Management of the state information security measures

National Coordination Centre (NCC-EE)

International projects

Cyberspace analysis and prevention

Studies and analyses

Instructions

Authority and management

News, media contact

Contacts

Reporting a cyber incident

Reporting environment raport.cert.ee

Encryption

Contacts of CERT-EE

About security incidents

Related links