What is an incident?

Security incident is a single or series of security events* that violates cyber-related law or have significant probability of adverse consequences to an information system or the information that the system processes, stores, or transmits and that may require a response action to mitigate the consequences.

(*Security events – any situation reported by computer system or human being to the BGD e-GOV CIRT – no matter where it comes from – internal or external sources, which is a potential cyber threat or potential cyber-related law breach for the constituency covered by the BGD e-GOV CIRT)

All received incident information will be classified as TLP:AMBER (more information could be found here: Traffic Light Protocol.

Report an incident

1. Contact information

Your Name (required)

Your Email (required)

Your Phone number

Your Organisation

2. Incident description

General description (dates, noticed signs of the attack, methods of attacks, used tools of the attacker, software versions, vulnerability details, purpose of the target of the attack, estimated loss or damage, measures taken, expectations from CIRT, other relevant information) (required)

Incident type (describe and categorize according to your knowledge and understanding)

3. Target of the Attack

IP address (required)

DNS name

TCP/UDP port

4. Source of the Attack

IP address (required)

DNS name

TCP/UDP port

5. Additional information

Time zone

Log entries

Description of actions taken