This document complies with RFC 2350.
Please send any questions about updates to the ZmCIRT e-mail address:
report@cirt.zm
1.3. Locations where this Document May Be Found
The current version of this profile is always
available at http://www.cirt.zm/
2.1 Name of the Team
Full name: Zambia Computer Incident Response Team.
Short name: ZmCIRT
2.2 Address
Zambia Computer Incident Response Team (ZmCIRT)
ZICTA
36871 Independence Ave
Lusaka
ZAMBIA
2.3 Time Zone
GMT +2
2.4 Telephone Number
ZmCIRT Hotline number: 7070
2.5 Other Telecommunication
Twitter:
https://twitter.com/CirtZambia/
Facebook: https://www.facebook.com/zmcirt/
2.6 Electronic Mail Address
Please send incident reports to report@cirt.zm
Non-incident related mail should be
addressed to report@cirt.zm
2.7 Public Keys and Encryption Information
Please encrypt any sensitive e-mail
with the ZmCIRT's PGP key and send to report@cirt.zm
ZmCIRT's Public Key is available at Section 4.3.
Please sign messages using a key that is
verifiable using public keyservers.
2.8 Team Members
No public information is provided about ZmCIRT team members.
2.9 Other Information
Further information about ZmCIRT can be found at: http://www.cirt.zm/
2.10 Points of Customer Contact
The preferred method for contacting ZmCIRT is
e-mail.
For general inquiries, please send e-mail to: report@cirt.zm
For abuse or security issues, please
use report@cirt.zm
For network, server, or service
issues, please use report@cirt.zm
ZmCIRT hours of operation are generally restricted to regular business hours, or 08:00 to 17:00 Monday to Friday except public holidays. After business hours/weekends/public holidays ZmCIRT can be contacted via e-mail
3.1 Mission Statement
ZmCIRT shall coordinate and assist government agencies in
implementing proactive services to reduce the risks of computer security incidents as well as respond to
such incidents when they occur.
3.2 Constituency
ZmCIRT will have the following constituents at its initial stage:
3.3 Sponsorship and/or Affiliation
Member of ITU
Member of FIRST
Member of AfricaCERT
3.4 Authority
ZMCIRT ( www.cirt.zm ) is the national cyber security
specialist centre under the Zambia Information and Communication Technology Authority ( ZICTA ).
The Zambian Government has gazetted the role of CyberSecurity Zambia by identifying ZICTA as an agency that provides ICT security specialist services and continuously monitors threats to the national security.
4.1 Types of Incidents and Level of Support
All incidents are handled as according
to the SLA as below: click here
4.2 Co-operation, Interaction, and Disclosure of Information
All incoming
information is handled as CONFIDENTIAL by ZmCIRT, regardless of its priority.
When reporting an incident of sensitive nature, please state so explicitly (for example, by using the label SENSITIVE in the subject field of the e-mail) and, if possible, using encryption as well.
4.3 Communication and Authentication
For Secure communication, below is ZmCIRT's
PGP key
Click Here
ZmCIRT's PGP Keybase OpenPGP
Bits: 2048
-----BEGIN PGP PUBLIC KEY BLOCK----- Version: Keybase OpenPGP v1.0.0
xsBNBGB1q2oBCADYe58J+936UWpGSelTTCNd0I2Atdes8V4C+A8gwe8p8FFAA1hd 9FIH4CuHTGOj6Cd7PcLZ5NWXNT8RhZoZdt96Rrd71+x5l+Lp9DN3zfbwXs8QPSvr Bce3jZINwO9+gbul51YjeOII29+v9sd+hUtwISVc155jMIujxXLNynmxBRd4eoo1 X9k4VBAY4XUu7OAsiOFL9a7yBF9YIIEC59uRNo51jFXgw56HzmCn+E2dCmfc5v0b FBXeBpJVA19OwEj9sKSDDfw7/S2QsyFjdc1AI2o/XxqB62owfiKejwfDnLQTHMk9 dK0AdO9a6nQ3sm5W847odEmhh8NgVeOLPyp/ABEBAAHNGENpcnQgPGluY2lkZW50 c0BjaXJ0LnptPsLAbQQTAQoAFwUCYHWragIbLwMLCQcDFQoIAh4BAheAAAoJELBW VuEKCj4JKwIH/iybIEhU2vOGSTnvrCOYG30g40GuIfTuzrQHw+1oEvkASkPpehOc VcD1RucQTHywAK/82DBn2mGm/gaSdWwCAJvnlD+0l5Rt8bf2G0W7k2Y3FalcFLUc aM6PEvcd99B+9MApBIQumhtAmmOL61EX4X7XDFdrOCRHKnGR5hUTCXP4ag6i8uiH S5bhHYKelGFdN57VYXHYyJkDholgr0B3IrdAyTKveWz6Z5DmSGY0Dr/EAWhxd3ba 1H73bm/vl9huO2ggWr/WZCta7iilp9QIdgw4V/ILoy+Wfx7Hzx25KQVPmPiFsMwi i+2e0L+yz1hKq2l2LW5DCgEdqO2hNEHoXvDOwE0EYHWragEIAMXTTyjkSOZRN2ir P2gbrDXuT1zWkIBKUxp1ixbxlpTbgjT5tcjRB8GOlqsuvSftgYAFjbrCRJLSLcOS fhzuDGenbSH+A/hirbPhpNYBxuHplb8uu9dL4OhBMYUIO4KpxgTALfn7yPeaXQAy EDzz/bT+GDx3B74pxIJZlYXLJyhI1GnKoZwLC1u/DZlkmsl0UnXSrGi39bog638L N43Cb3DPXheG+XDAeZuW5cRpMFnn8a3wl2zMjVl1bjZbgsNsJCvXBW4jProNGJRt AJE0gx0oZGxUfyVh+gx1foDisTr+LOvYd4yVgMt6ZYHFJPkt6RxU0vrqwRrz6sHP mjLCWOcAEQEAAcLBhAQYAQoADwUCYHWragUJDwmcAAIbLgEpCRCwVlbhCgo+CcBd IAQZAQoABgUCYHWragAKCRBJn5tXc8ZHMRThCACwwwly7QxpncWYcVEjA/k2TblG o3Yl+X08FXzGm/V5suFEcmK88lfDOpoKk3odafF3q2OyOVYToHcS2jv+5m5uEtch pfj1pPrSyOINUP485A3na/dL8ftn+so/nsArPi33gMTspgIw/HMMr0ORebHPcdRd GjA/hyvUBJElMkY1DQEaaSttUJZW+p+BzPM2xpj77oiNr4VOvpAB7snBa1Dj2xNt vCV3TAqkpcl6mpF0R9n1adIRdOJcOVUeiK5Fbd4Y3CvrJt/mMmuIhLYq9RppOB/r MU2e2lq9Gljlx0heJXuumFeJvd45dz/iGaToaY7vslm4G6lR9o8R/IBzc7bR24kH /1ZmvkR9siLeohOiygAYtXsddQujLxKiB8uGm1a1EbDaN0I1AZupy9hphMHmM0Tq KZoYl7HS7zsHCh7Ch2IAT4BZ9aoBb5B29O9LCPYL0pz6zp3YX3C7Q5KJbIj52i8V FAXuRa0CMeU3I0jpyy/zLIHGuHg8VBbV3nz0P8qq987wOstay+pnna8oh9zlE+nm 0hXJDdM44BrRscYqzJ1DZQ4FVgdu9zeSYlTjW/BWd9Eu/Bqq6+NeaztFEY4dcULd 40BHFNx8V77DckTJVi6XJ26ylTrxFiK7y7xFt4d1auzTZhnuwVlXEz3prGSsNBWp xkjoOnwZwm7B+VgJHDDADerOwE0EYHWragEIAKy6QHu/P0YCmqchU24mPHcnpf1x pRpYHbSaBSX03IjL16PvNQ8OtLBDhZ2Gg94cvZlFLZoe5b9eo4nSMpjd5aJgSUM3 bFhqwHFgWkI111EvkPTi0Pfpftj51fZ9Gf3QMa4mJVDmNLYc9viH5u0gkcXTiewH upsJvi6tiFb2frNjH6YuWBUSOvsewAJV23Dj6AJl7yLubWFG42gxm/sNzDEl8KjE hgYBXEQbLSLBKto3MtavSJHgoR8CMxqLD8RCnM+6fzliOHw9qhXw4leSVdmPPXu9 CSf2174fz38Exn9vvOBNccIj3l79UjLgILORfqG0I9UupZs7kKZqdHtxoCsAEQEA AcLBhAQYAQoADwUCYHWragUJDwmcAAIbLgEpCRCwVlbhCgo+CcBdIAQZAQoABgUC YHWragAKCRDujJiQzDWakAozCACdI61RXtefprXqbXZCaNS0xD1JmUIDVWXJ507C zfAFocDMHv0o4aKPcUiKipVYQGEKQ1AnQBg8Qr3T0DRLx+yqpXTHGLTCItX5RND8 EjmN00iwO9PtQCl6UiFjeOwDl/0Y1Y5I04er5B1KjJBWY+WZlau4XlfjWq4yLGwA ZzTg3+orSGRVMvM/EFkcNMBp8F0IQicA5VM45sZkaA7Hk8iFhVEGH7mHIyAm4iF0 FudD+w/AYzGCbfWvd7tP7W/8tpcv7Z2oxbFJFUHZTe29tk90U5PYOTtBRPSs00zF oEGar1E/IyWRR4xrPZf1HSc6rbxN0nGBgi8XPVrXzWNyiIl7OIUH/1GlYAUjXlmk XO6AzdxvKI8I5UiWY+OkMvvnIHuFaabKmkJeFi4hzBcBrIndW+wLRBX34Dig+tjx W/nKun5TnltnCzZxbacrceIOHd5y/XlQ4x9NSb21ZkGMhuerBp3LFklDud+epJ8h r1eLkZ3ZqQ0Noe+7aQcHL8da4ld6NKhpCBpPLv2oZRaL83r0tWQ+cjANByEUmz6z fCzafjSVdEAMV3VJaoezVSM+p+WiqGty9F1Zw2LI0OlDuxWhrgfDfpbKsbMyy+b/ JNWsJkKkvBFQhAEuJZDlu8naNpfoW2tW23qxFrJ9oFvhpj8+7A1Tq6G/dxv5BT0F 4OknMW26p8Q= =nByj
-----END PGP PUBLIC KEY BLOCK-----
5.1 Incident Response (Triage, Coordination, and Resolution)
ZmCIRT assists system
administrators in handling the technical and organizational aspects of computer security incidents.
5.2 Security Quality Management services
Awareness and Training
ZmCIRT works towards the awareness of its constituents through publications such as on the www.cirt.zm website and through cyber cyber drills.
risk assessment
ZmCIRT performs cyber security risk assessment for Critical Information Infrastructure (CIIs) that include identifying, analyzing and evaluating risk.
5.3 Reactive services
Vulnerability assessment
ZmCIRT provides vulnerability assessment to find and measure the severity of vulnerabilities on constituent assets, upon request.
Digital Forensics
ZmCIRT assists Law Enforcement after an incident occurs by providing forensic support on evidence included in the incident.
5.4 Proactive Activities
Producing Alerts and Advisories for the
constituency.
List of Alerts and Advisories that had been produced are available at: Click Here
Penetration tests
ZmCirt caries out penetration test in order to breach assets security defences, and provide remediation for discovered vulnerabilities by signing rules of engagement with constituents.
Continuous Monitoring
ZmCIRT provides Threat Monitoring
Copyright @2023 ZAMBIA CIRT