Security
Through its specialised structure CERT-AgID, the Agency is responsible for developing preventive security services and support functions useful for the growth and dissemination of cyber culture. In collaboration with other relevant authorities, AgID defines recommendations, strategies, and technical standards to raise awareness and inform public administrations about cybersecurity issues and related emergencies.
Index
Index
Strategies
Strategies
Chapter 7 of the Three-Year Plan outlines the areas for improvement in the cybersecurity of the Public Administration. These include: governance measures, procurement management and cyber risk management and mitigation.
AgID is committed to promoting initiatives that improve the cyber culture within the public sector. AgID provides proactive support through tools for self-assessment plans, dissemination of Indicators of Compromise (IoC), and training and information support for Digital Transition Officers.
The Three-Year Plan for Information Technology in Public Administration can be found here:
For more information and research materials, please visit the CERT-AgID website.
Tools
IoC (indicators of compromise) feed
The IoC Feed is a tool to prevent and combat cyber threats such as malware and phishing in real time. Through this feed, CERT-AgID shares information about malicious campaigns detected during its monitoring activities. Public administrations can join by filling in the accreditation form.
Minimum ICT security measures for public administration
These measures are a practical reference to evaluate and improve the IT security level of administrations, in order to contrast the most common cyber threats.
Transport Layer Security Protocol
This document has been produced in collaboration with the MiD/Department for Digital Transformation. It provides a set of recommendations on security protocols and cipher suites that reflect the state of the art at the time of writing.
Hashr
Hashr was developed in Python 2.7 by CERT-AgID analysts. It is a commonly used tool for hashing files and searching for the correct match on a given list of hashes (IoC of hash).
HTTPS and CMS& Autocheck set up
This service allows users to request a report to check the HTTPS setup and CMS update status of public administration websites.
Digital Skills
Digital Skills
To promote a culture of IT security in public administrations, AgID regularly organises training events for employees and individuals responsible for digital transformation. For more information on the latest courses, please visit this page.
Monitoring
Monitoring
CERT-AgID periodically publishes reports on the main malware campaigns affecting Italy. Sources and methods include reports from private entities, public administrations, surveys obtained through CERT's automated systems, detailed analyses of malware samples and surveys of incidents handled. All available data can be consulted on the CERT-AgID website.
Malware campaigns
monitoring-data__static
1713
Identified in 2023
Most used channel
monitoring-data__static
76 %
Email malware campaigns
Documents and regulations