------------------------------------------------------------------- | PXS-LU-CSIRT | | Proximus Luxembourg CyberSecurity Incident Response Team | | ------------- | | Incident Reporting Form | | ------------- | | Version: 3.1 | Sensitivity: PUBLIC | TLP: CLEAR | ------------------------------------------------------------------- Immediately fill a complaint if you are the victim of a cyberattack, get closer to legal authorities in Luxembourg. • Police Grand-ducale du Luxembourg • Parquet du Luxembourg (Parquet du Tribunal d’Arrondissement du Luxembourg et Parquet du Tribunal d’Arrondissement de Diekirch) • Service de la Police Judiciaire, Section Nouvelles Technologies, Luxembourg In case of positive identification of a compromised server, don't forget to follow the data privacy regulation laws in Europe. It is necessary to identify the problem in detail, identify the leaked personal data and affected people, and contact CNPD (https://cnpd.public.lu/en/professionnels/obligations/violation-de-donnees.html) within 72 hours to comply with the law and in order to notify the affected people about the leak. The Proximus Luxembourg CSIRT (PXS-LU-CSIRT) is the response entity for the computer incidents related to the Autonomous System Number (ASN) AS56665. To report an incident, please complete as detailed as possible this form and send it to csirt(at)proximus(dot)lu preferably PGP/GPG encrypted (PGP KeyID 6E2EA9F8). PXS-LU-CSIRT hours of operation are restricted to regular business hours: 09h00-17h00 CET from Monday to Friday except during Luxembourg’s public holidays. Outside of these hours and in case of emergency, the email address, mainly dedicated to operational problems, can be contacted. All reported information will be treated confidentially according to our policies (please refer to our rfc2350 available at https://www.proximusnxt.lu/en/proximus-luxembourg-csirt). * About the reporter - Company : _____________________________________________________________________________ - Name : _____________________________________________________________________________ - Phone number : _____________________________________________________________________________ - Email address : _____________________________________________________________________________ * About the incident to be reported - Impacted systems / IP(s) address(es) : _________________________________________________________________________ - Type of incident : [ ] Unauthorized Access [ ] Denial of service [ ] Vulnerability exploitation [ ] Data Disclosure [ ] Malicious code [ ] Brand protection [ ] Phishing / Spam [ ] Social engineering [ ] Policy violation [ ] Other (precise): _______________________________________________ - Current status of the incident : [ ] Occuring [ ] Contained [ ] Occured [ ] Unknown - Reporter's description of the incident : Try to be as precise as possible about the description of the incident, its operational impact and all other damages, a first assessment and the actions already taken _________________________________________________________________________________________________ _________________________________________________________________________________________________ _________________________________________________________________________________________________ _________________________________________________________________________________________________ _________________________________________________________________________________________________ _________________________________________________________________________________________________ _________________________________________________________________________________________________ _________________________________________________________________________________________________ _________________________________________________________________________________________________