CybExer Organizes a Three-Day Exercise in Moldova
Let's take a look at the CTF exercise that CybExer team organized for government officials in Moldova to boost their cyber resilience.
Let's take a look at the CTF exercise that CybExer team organized for government officials in Moldova to boost their cyber resilience.
Between 14th and 16th June 2023 CybExer Technologies, in collaboration with e-Governance Academy, organized the Moldova Cybersecurity Capacity Building Exercise in Chişinău for officials from both the public and private sectors in Moldova. This exercise was part of a larger EU initiative to strengthen the country’s cybersecurity capacity.
One of the main objectives of this exercise was to establish a Cybersecurity community in Moldova, fostering the growth of this vital sector. The feedback from participants was overwhelmingly positive, as they found the event to be a valuable training experience. They expressed a desire for more similar events in the future.
The following outcomes were reported:
This exercise in Moldova consisted of 3 parts – individual CTF exercise plus preparation training on the 14th and 1.5 -day, team-based, Threat-Hunting exercise between the 15th – 16th of June. On the final day, a hotwash session was held to provide feedback to the participants.
Participants were introduced to the cyber range environment through a solo CTF exercise. They also received training on essential blue team systems and services like MISP and Security Onion.
This was the first exercise day. The first day of the exercise focused on blue teams investigating and reporting existing vulnerabilities and red team activity within their systems. Phase 1 was completed.
The exercise continued with Phase 2. Afterward, a Hotwash session was held to provide an overview of the red team campaign and offer feedback to the participants.
Participants faced Jeopardy-style tasks that required various cybersecurity skills to find specific answers. These exercises provided participants with proof of reaching the desired goals.
Participants familiarized themselves with the cyber range environment, learning the tools and systems necessary for the Threat Hunting exercise. The Blue Teams were introduced to security and information-sharing tools such as MISP and Security Onion, as an example.
Threat Hunting is an effective exercise format for practicing cyber-attack detection, use of monitoring tools, and reporting. During this exercise, the blue teams are discouraged from hardening their systems to facilitate fair Red Team attacks. The blue teams were discouraged from hardening their systems to facilitate fair red team attacks.
After the attacks occur, the blue teams are supposed to analyze their systems and find traces of the red team’s activity, or if they are proficient, they may catch the attacks live, making reporting easier. This happens in a competitive environment as participating teams rival each other to come out on top.
During the Threat Hunting exercise, the participants were evaluated in the following domains:
Organizing this project in Moldova was significant for enhancing the growth of the local cybersecurity community. The planned activities aimed to strengthen the resilience and expertise of Moldova’s government officials and critical service providers while raising awareness about the potential impact of cyber incidents.
Our team is delighted to take part in such initiatives and share our experiences with other organizations globally.
If you would like to learn more about how we can assist your organization in better preparing for cybersecurity challenges and threats, please don’t hesitate to contact us.
“From the outset, the team at CybExer demonstrated a high level of professionalism and expertise. They exhibited a thorough understanding of our organisation’s unique needs and tailored their training solutions accordingly.”
Captain D Preuss, British Army