CSIRT - CZ.NIC Technical support

HomepageAbout the associationDomainsOther activities

CSIRT (CSIRT = Computer Security Incident Response Team) is a security team to coordinate the resolution of security incidents in computer networks operating in the Czech Republic. It is operated by the domain registry CZ.NIC and public contract with National Cyber and Information Security Agency.

For more information, you can go directly to the CSIRT.CZ website or use the help section below.

Rychlý rozcestník

I want to resolve	Contact / form
Phishing on a domain other than .cz	abuse@csirt.cz
Phishing on a .cz domain	csirt@nic.cz
Web Scanner	podpora@skenerwebu.cz
Trademark or brand	pravni@nic.cz
Child pornography	https://stoponline.cz/cs/
Fraud or theft (of financial resources or identity)	Police

Frequently asked questions

WHAT IS THE DIFFERENCE BETWEEN CSIRT.CZ AND CZ.NIC-CSIRT?

CSIRT.CZ is the National CSIRT of the Czech Republic. The team primarily fulfills its duties according to the Cybersecurity Act (hereinafter referred to as CA). The scope of CSIRT.CZ's operations covers the entire address range of the Czech Republic, excluding critical infrastructure. Network administrators who need help with incident resolution, require coordination, or suspect that an incident could have a nationwide impact can contact us. More information about CSIRT.CZ can be found on the csirt.cz website.

CZ.NIC-CSIRT is the internal security team of the CZ.NIC association and is responsible for handling incidents within AS25192 and AS200070, as well as incidents related to the nameservers for the .cz domain and 0.2.4.e164.arpa. More information about this team can be found at nic.cz/csirt.

HOW CAN I CONTACT THE CSIRT.CZ TEAM?

HOW CAN I CONTACT THE CZ.NIC-CSIRT TEAM?

WHERE CAN I REPORT PHISHING, MALWARE, DDOS, PORT SCANNING, AND OTHER INCIDENTS?

WHAT IS STOPONLINE USED FOR?

WHERE CAN I FIND FORMS FOR COMMUNICATION IN COMPLIANCE WITH THE CYBERSECURITY ACT (CA)?

WHERE CAN I FIND INFORMATION ABOUT THE PENETRATION TESTING SERVICE?

WHERE CAN I FIND INFORMATION ABOUT THE STRESS TESTING SERVICE?

WHAT SHOULD I DO IF I DON'T WANT TO RECEIVE DATA FROM THE PROKI PROJECT?

WHERE CAN I FIND MORE INFORMATION ABOUT THE PROKI PROJECT?

WHO IS THE WEB SCANNER SERVICE INTENDED FOR?

WHERE CAN I ORDER THE WEB SCANNER SERVICE?

WHERE CAN I FIND MORE INFORMATION ABOUT SECURITY TESTS FOR INSTITUTIONS WORKING WITH CHILDREN?

HOW DO YOU HANDLE RISKY (FAKE) E-SHOPS?

Upon receiving information that a fake e-shop is hosted on a domain within the .cz ccTLD, we do not remove or cancel the domain from the zone. However, we will check the domain holder's details, and based on the findings, the domain may be included in the verification process, which could lead to the cancellation of the registration (but not due to the content of the domain, rather due to incorrect registration details).

If we receive a decision from one of the relevant authorities (most often the Czech Police), and this pertains not only to risky e-shops, the domain may be blocked from transfer or removed from the zone (or both, depending on the decision's wording).

We monitor the list of risky e-shops on the Czech Trade Inspection Authority's website, as well as similar lists issued by the State Agricultural and Food Inspection Authority and the State Institute for Drug Control, and we include the contacts in the data verification process.

Chybí Vám zde nějaká informace?

Pomozte nám vylepšit nápovědu.

Pro úplné infomrace můžete navštívit webové stránky projektu