CIRCL - Operational Statistics

Updated on August 31, 2021 — Creative Commons Attribution 4.0

Computer Incident Response Center Luxembourg

The Computer Incident Response Center Luxembourg (CIRCL) is a government-driven initiative designed to provide a systematic response facility to computer security threats and incidents. CIRCL is the CERT for the private sector, communes and non-governmental entities in Luxembourg. CIRCL provides a…

6 datasets

Informations

License
Creative Commons Attribution 4.0
ID
5a4e4c16cc765e5e177f0832

Temporality

Frequency
Monthly
Creation date
January 4, 2018
Latest resource update
January 4, 2018

Embed

Permalink

Description

The operational statistics cover the activities related to the incident response activities of CIRCL especially in regards to the reporting (e.g. incident reports, request for analysis or support during computer security incident) and notifications (e.g. take-down notification, notification about vulnerability) from/to third parties. The statistics exclude automatic structured notifications and information exchange happening via threat intelligence platforms such as the CIRCL MISP information sharing platform or any other automatic exchange setup with partners.

In this section some statistics are presented about incidents handled by CIRCL between 2011 and 2017. During this time frame the attackers evolved, forcing CIRCL to adapt its internal procedures. Although the reporting to CIRCL is not mandatory, the reporting behaviour of constituents has changed. On one hand, the reputation of CIRCL increased, thereby increasing the amount of reporting to CIRCL. On the other hand, due to the trainings such as Introduction to incident response, forensic analysis and many others offered by CIRCL, have helped local organisations build up their own incident response capacities thereby reducing the number of reported incidents. This makes comparing the statistics of successive years challenging. Tickets are no indicators for the overall workload as there are some tickets that are very resource intensive whereas others are quickly solved. Nevertheless, the workload for the overall triage of the tickets is increasing and showing an increase in diversity when it comes to attacker practices.

Files 1

Community resources 0

You have built a more comprehensive database than those presented here? This is the time to share it!

Reuses 0

Explore the reuses of this dataset.

Did you use this data ? Reference your work and increase your visibility.

Discussion between the organization and the community about this dataset.