Security

Through its specialised structure CERT-AgID, the Agency is responsible for developing preventive security services and support functions useful for the growth and dissemination of cyber culture. In collaboration with other relevant authorities, AgID defines recommendations, strategies, and technical standards to raise awareness and inform public administrations about cybersecurity issues and related emergencies.

Index

Index

Strategies

Strategies

Chapter 7 of the Three-Year Plan outlines the areas for improvement in the cybersecurity of the Public Administration. These include: governance measures, procurement management and cyber risk management and mitigation.
AgID is committed to promoting initiatives that improve the cyber culture within the public sector. AgID provides proactive support through tools for self-assessment plans, dissemination of Indicators of Compromise (IoC), and training and information support for Digital Transition Officers.

The Three-Year Plan for Information Technology in Public Administration can be found here:

PDF | 2,8 MB | 06/14/2024

For more information and research materials, please visit the CERT-AgID website.

Tools

IoC (indicators of compromise) feed

The IoC Feed is a tool to prevent and combat cyber threats such as malware and phishing in real time. Through this feed, CERT-AgID shares information about malicious campaigns detected during its monitoring activities. Public administrations can join by filling in the accreditation form.

 

Minimum ICT security measures for public administration

 

These measures are a practical reference to evaluate and improve the IT security level of administrations, in order to contrast the most common cyber threats.

 

Transport Layer Security Protocol

 

This document has been produced in collaboration with the MiD/Department for Digital Transformation. It provides a set of recommendations on security protocols and cipher suites that reflect the state of the art at the time of writing.

 

Hashr

 

Hashr was developed in Python 2.7 by CERT-AgID analysts. It is a commonly used tool for hashing files and searching for the correct match on a given list of hashes (IoC of hash).

 

HTTPS and CMS& Autocheck set up

 

This service allows users to request a report to check the HTTPS setup and CMS update status of public administration websites.

Digital Skills

Digital Skills

To promote a culture of IT security in public administrations, AgID regularly organises training events for employees and individuals responsible for digital transformation. For more information on the latest courses, please visit this page.

Monitoring

Monitoring

CERT-AgID periodically publishes reports on the main malware campaigns affecting Italy. Sources and methods include reports from private entities, public administrations, surveys obtained through CERT's automated systems, detailed analyses of malware samples and surveys of incidents handled. All available data can be consulted on the CERT-AgID website.

bln, mln, k
miliardi, milioni, migliaia

Malware campaigns

monitoring-data__static1713

Identified in 2023

Most used channel 

monitoring-data__static76 %

Email malware campaigns

Documents and regulations

Documents and regulations