Whaller CSIRT

To ensure a high level of cybersecurity for its customers and partners, Whaller is setting up a CSIRT.

This will enable it to collaborate effectively on a national scale with other entities in sharing elements but also in providing its customers with monitoring services.

Whaller CSIRT is based in France and is responsible for :

The response to incident.
Vulnerability tracking.
Malware analysis.
Collection of technical artefacts (IOC).
Be the single point of contact for internal or external cyber incidents.
Monitor internal and external threats.

Contact

Incident reports should be made via the address: csirt@whaller.fr.
The following information is requested:

Date and time of occurrence and/or detection of the incident.
Technical elements (IP addresses, user login...) that will enable precise targeting in the search for IOC.

It is advisable to encrypt the message using our PGP key:

Login: 0x8750B7A947E35C41
Fingerprint: 11B8 1371 FD27 E007 8E71 C91C 8750 B7A9 47E3 5C41
Download key

RFC 2350

RFC 2350 is a standardised document describing CSIRT services, roles, responsibilities and means of communication.

Download our RFC 2350

👉 Document signature

Reporting vulnerabilities

Whaller has a Bug Bounty programme accessible at https://vdp.whaller.com

Quality control

Because it is better for our weaknesses to be detected by White Hats than by Black Hats, Whaller is part of a Bug Bounty approach.

Are you a hunter? Have you detected a vulnerability in our product?

👉 Go to our dedicated website