Christmas Is Cancelled: EU Running A Big Cyberwar Simulation

Uploaded on 2016-10-27 in NEWS-Cybersecurity News, GOVERNMENT-Defence, FREE TO VIEW

Public and private sector cyber officials from 30 European nations have kicked off a massive cyber war game that includes hacks against internet-connected infrastructure and the cyber-induced blackout of an entire nation—during Christmas, no less.

The two-day war game, known as Cyber Europe 2016, will also incorporate drones, cloud computing, cyberattacks against mobile devices and ransomware, according to a news release from the European Union Agency for Network and Information Security, known as ENISA.

In a ransomware attack, hackers seize and scramble an organization’s records and won’t unscramble them unless the organization pays up.

This is the EU’s third biennial cyber exercise. The exercises revolve around fictional scenarios including cyberattacks that technology, policy and political leaders must respond to.

The 2014 exercise scenario, for example, centered on a series of increasingly sophisticated cyberattacks aimed at destabilizing EU energy markets and preventing EU leaders from passing a new tax to promote green energy, according to an after-action report.    

The 2016 scenario, for the first time, will include simulated news coverage and social media responses aimed at “bringing in the public affairs dimension associated with cyber crises” and “increasing realism to a level never seen before in cybersecurity exercises,” ENISA said.  

ENISA shared few details about the 2016 scenario beyond the Christmas season attack. The agency did, however, release a slick video announcing the exercise that appears to portray a cyberattack against a nation’s electricity grid, replete with lightning flashes, sweaty brows, flashing computer code and an ominous figure in a hoodie. One scene in the video shows the lights going out across an urban landscape.

All 28 EU member nations will participate in the exercise along with Switzerland and Norway, ENISA said. Participants come from more than 300 organizations, including nations’ cybersecurity agencies, EU offices, internet, software and cloud computing companies, the agency said.

An after action report on the exercise is due out in 2017. The biennial exercises are vital to help EU member nations stay prepared to combat evolving cyber threats, ENISA Director Udo Helmbrecht said in a statement.

“We are better prepared than we were, but that does not mean we have done enough and the work must continue,” Helmbrecht said. He added that “cyberattacks are more sophisticated than before” and “cybersecurity is not a state it is a process.”

NextGov:
 

 

« Using The Internet Competitor Analysis Effectively (£)
Meet The Fancy Bears »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Verimatrix

Verimatrix

Verimatrix is a global provider of innovative cybersecurity solutions that protect content, devices, software and applications.

SISA

SISA

SISA is a global forensics-driven cybersecurity solutions company, trusted by leading organizations for securing their businesses with robust preventive and corrective cybersecurity solutions.

ODVA

ODVA

ODVA is a global trade and standards development organization whose members comprise the world’s leading industrial automation companies.

Teramind

Teramind

Teramind provides a user-centric security approach to monitor employee behavior in order to identify suspicious activity, detect possible threats, monitor efficiency, and ensure industry compliance.

Seqrite

Seqrite

Seqrite offers a highly advanced range of enterprise and IT security solutions to protect your organization's most critical data.

CryptoCurrency Certification Consortium (C4)

CryptoCurrency Certification Consortium (C4)

The CryptoCurrency Certification Consortium is a non-profit organization that provides certifications to professionals who perform cryptocurrency-related services.

Bitfury Group

Bitfury Group

Bitfury Group is the largest full-service blockchain technology company in the world.

Deft

Deft

Deft (formerly ServerCentral Turing Group) is a trusted provider of colocation, cloud, and disaster recovery services.

Contextual Security Solutions

Contextual Security Solutions

Contextual Security Solutions is a leading provider of penetration testing services and IT security & compliance audits.

Blacksands

Blacksands

Blacksands is a leader in network architecture, identity & services management, threat analysis, industrial IoT architecture, and invisible dynamic networks.

Computacenter

Computacenter

Computacenter is a leading independent technology partner, trusted by large corporate and public sector organisations. We help our customers to source, transform and manage their IT infrastructure.

Network Contagion Research Institute (NCRI)

Network Contagion Research Institute (NCRI)

NCRI provides pioneering technology, research, and analysis to identify and forecast cyber-social threats targeting individuals, organizations, and communities.

GovSky

GovSky

GovSky streamlines CMMC compliance, saving time and significantly reducing cost.

IndoSec

IndoSec

IndoSec is an annual cybersecurity summit that powers an in-person gathering of cybersecurity leaders from Indonesia’s major corporations, leading businesses and key government entities.

True Corporation

True Corporation

True Corporation is Thailand’s leading Telecom-Tech company, empowering people and businesses with connected solutions that advance society sustainably.

DRTConfidence

DRTConfidence

DRTConfidence is the proven solution for today’s organizations needing to meet rigorous compliance standards across the enterprise.