As you are aware, the Irish Higher Education Sector was affected by a recent cybersecurity incident and as always, we are here to help.
HEAnet provides a number of operational security services for our clients.
The SOC & SIEM service provides 27/4 monitoring of logs and network activity – https://www.heanet.ie/services/security-services/soc-siem-services Our DDoS mitigation service will automatically activate in the case of a high-volume attack. The service can also be manually activated by contacting the HEAnet NOC. https://www.heanet.ie/services/security-services/ddos-mitigation
We would recommend reminding all staff and students not to click on links in emails unless absolutely sure of the source of the email. If in doubt, check with the sender by phone or in person conversation, noting that all phone numbers or URLs should be independently confirmed. Additionally, we recommend reminding all staff and students to be extra mindful when entering credentials and don’t enter credentials if prompted from an unexpected source.
The HEAnet NOC maintains contact with bodies such as the Irish National Cyber Security Centre (NCSC), the Garda National Cyber Crime Bureau (GNCCB), NREN CERTs and cyber security companies and can provide contacts and coordination in the case of an incident.
We would recommend that contacting HEAnet should be a step in your cyber security, major incident or DR/BCP planning, as it is essential for us to stay informed about any changes to or events on the network so we can best support you.
In case of an incident or urgent query, please don’t hesitate to contact us 01 6609040.
If more information becomes available, we will send a further communication via our community security mailing list. If you are a HEAnet member and you wish to join this list, please email noc@heanet.ie . Should the situation warrant, we may also organise a townhall event for HEAnet clients.
Additionally, we will continue to publish news and updates on our Security Updates webpage – https://www.heanet.ie/services/security-services/security-updates
