This cybersecurity initiative had 64 participants from 26 different institutions, divided into 10 groups. The winning team of this computer attack and defense exercise promoted by Foundation for Science and Technology, through the FCCN unit, was formed by elements from the University of Coimbra and the Polytechnic Institute of Cávado and Ave.

For two hours, each group had to discover vulnerabilities in the other teams' systems, as well as defend the three systems they had access to. To build a platform that would allow this attack and defense exercise, in a completely remote format, vulnerabilities in PHP, PERL and WORDPRESS, among others, were used.

Carlos Friaças, service manager RCTS CERT from the FCCN unit and responsible for organizing the 1st Cyberrange RCTS, tells us what the first edition of the initiative was like:

How did the dynamic unfold?

Each team received access to three servers. The idea was to mitigate any vulnerabilities they found so that other teams couldn't carry out successful attacks.

Since all teams' servers were on the same network, participants also had the opportunity to attack other teams' servers, exploiting existing vulnerabilities.

Three servers were also created with different vulnerabilities, where there was no intentional mitigation effort.

The exercise also consisted of a leaderboard, which recorded points for successful attacks, and deducted points when vulnerabilities were exploited.

What was the purpose of the exercise?

Train defense and attack in a controlled environment. Given the difficulties created during the exercise, our objective was for participants to acquire knowledge about some security vulnerabilities.

Who were the participants?

We had members from the 26-member IT teams RCTS – Science, Technology and Society Network, who perform cybersecurity or systems administration functions.

How were the teams formed?

The teams were selected by the organization. Each team consisted of 7-8 members, and geographic criteria were adhered to as closely as possible.

When is the next Cyberrange RCTS expected?

Along these same lines, it is difficult to determine, but once the platform is available, it will only be necessary to provide servers with vulnerabilities different from those of this exercise in order to carry out another. We are probably aiming for 2025.

What conclusions were drawn from this challenge?

THE debriefing was carried out immediately after the end of the two-hour exercise, explaining what vulnerabilities existed.

Carlos Friaças concludes his testimony with a positive assessment and a request to the participants: “The level of participation was excellent and it is important to thank everyone for their willingness to participate in an initiative of this type, and also take the opportunity to request that fill out the questionnaire/survey that was sent”.

Other related articles

Spear-Phishing: Hacking the Mind and Accessing the Network

Phishing is one of the most common forms of cybercrime. This type of attack occurs when an attacker attempts to steal sensitive information, such as...

Read article

My first experience at BlackHat

Understanding how important it is to stay up-to-date on the latest techniques and methods used by attack teams and threat actors, I was able to attend the BlackHat USA 2023 conference for the first time.

Read article

Email malware attack. What it is and how to protect yourself.

It's crucial to understand the threats that can attack your organization and how to mitigate them. One such threat is malware, which often infiltrates organizations through seemingly harmless emails.

Read article

FCCN Conference Testimony: Rui Canizes – IPDJ

Rui Canizes, Head of the Technological Infrastructure Division at the Portuguese Institute of Sport and Youth (IPDJ), tells us what the Conferences have been like for him.

Read article

Cybersecurity student represents Portugal at TNC25

Aurora Vasconcelos, a master's student in Cybersecurity at the Polytechnic Institute of Viana do Castelo, is the Portuguese student chosen to take the stage at TNC25.

Read the news

European Commission invites industry and academia to form Cybersecurity Network

Applications for expressions of interest in joining the network are open until January 5, 2025.

Read the news

New training for cybersecurity teams

The training “CSIRT in a Box: Initial Training for Incident Response Teams”, available on the NAU platform.

Read the news

“Security is like a football referee: the more unnoticed, the better”

For 24 years, FCCN, FCT's digital services, has responded to cybersecurity incidents at national Higher Education and Research Institutions.

Read the news

Safer Internet Day (SID) 2024: Viseu hosts the initiative dedicated, this year, to Artificial Intelligence

February 6th marks the 21st Safer Internet Day (SID). The Safe Internet Center Consortium is organizing this national commemorative event, which takes place this year in Viseu. The SID Summit 2024 program is dedicated to Artificial Intelligence.

More information

Registration for FCCN Conference 2023 is now open

The 14th edition of the FCCN Conference will take place at the Naval School - Alfeite Base in Almada, between June 27th and 29th, 2023. Registration is now open and can be done through the event's new dedicated website.

More information

CSIRT-in-a-box 2022

RCTS CERT organizes, on November 3rd and 4th, a new edition of the CSIRT-in-a-Box Workshop.

More information

"The FCCN Unit exists to serve the community. The FCCN Unit Conferences are of enormous importance."

"One of our goals in organizing the Conferences is to take them around the country. We enjoy visiting the institutions we work for. We get to know them better, and they get to know us better."

More information