This cybersecurity initiative involved 64 participants from 26 different institutions, divided into 10 groups. The winning team in this computer attack and defense exercise promoted by the Foundation for Science and Technology, through the FCCN unit, was made up of members from the University of Coimbra and the Polytechnic Institute of Cávado and Ave.

For two hours, each group had to discover vulnerabilities in the other teams' systems and defend the three systems they had access to. In order to build a platform that would allow this attack and defense exercise, in a totally remote format, they used vulnerabilities in PHP, PERL and WORDPRESS, among others.

Carlos Friaças, manager of the RCTS CERT service at FCCN and responsible for organizing the 1st RCTS Cyberrange, tells us how the first edition of the initiative went:

How did the dynamic unfold?

Each team was given access to three servers. The idea was to mitigate any vulnerabilities they found, so that the other teams couldn't carry out successful attacks.

Since all the teams' servers were on the same network, the participants also had the opportunity to attack the other teams' servers, exploiting existing vulnerabilities.

Three servers with different vulnerabilities were also created, where there was intentionally no mitigation effort.

The exercise also included a leaderboard, which recorded points for successful attacks and removed points when vulnerabilities were exploited.

What was the aim of the exercise?

Practice defense and attack in a controlled environment. Given the difficulties created during the exercise, our aim was for the participants to gain knowledge of some security vulnerabilities.

Who were the participants?

We had members of the IT teams of 26 members of RCTS - Rede Ciência, Tecnologia e Sociedade , who work in cybersecurity or systems administration.

How were the teams formed?

The teams were defined by the organization. Each team had 7/8 members and a geographical criterion was respected as far as possible.

When is the next RCTS Cyberrange expected?

In the same way, it is difficult to determine, but once the platform is available, it will only be necessary to provide servers with different vulnerabilities to those of this exercise in order to carry out another one. We are probably aiming for 2025.

What conclusions were drawn from this challenge?

The debriefing was held immediately after the end of the two-hour exercise, explaining what vulnerabilities there were.

Carlos Friaças concludes his testimony with a positive assessment and a request to the participants: "The level of participation was excellent and it is important to thank everyone for their willingness to take part in an initiative of this kind, and also to take the opportunity to ask them to fill in the questionnaire/survey that was sent out."

Other related articles

My first experience at BlackHat

Understanding how important it is to be up-to-date on the latest techniques and methods used by attack teams and threat actors, I was able to attend the BlackHat USA 2023 conference for the first time.

Read article

Malware attack by e-mail. What it is and how to protect yourself.

It is crucial to know the threats that can attack your organization and how to mitigate them. One such threat is malware, which often infiltrates organizations through apparently harmless emails.

Read article

Testimonial Jornadas FCCN: Rui Canizes - IPDJ

Rui Canizes, Head of Technological Infrastructures Division at the Portuguese Institute for Sports and Youth (IPDJ), tells us what the Jornadas have been for him.

Read article

Testimonial Jornadas FCCN: António Luís Lopes - ISCTE-IUL

António Luís Lopes, responsible for the information systems development team at ISCTE-Instituto Universitário de Lisboa, tells us what the conference usually means to him and what are the expectations for the 2023 edition.

Read article

7 tips for safe online shopping

Safe online shopping is especially important on Black Friday and Cyber Monday. Here are seven tips to ensure safe transactions.

Read the news

European Cybersecurity Month. Protecting the community

October is another Cybersecurity Month. Throughout the month, the FCCN Unit will be taking part in this initiative coordinated by ENISA and the European Commission.

Read the news

Unit FCCN launches digital service catalog

FCCN launches a digital catalog of services, dedicated to the solutions it provides for the academic community. An up-to-date digital portfolio that is easy to consult.

Read the news

"Tell me your password". Unit FCCN launches podcast on cybersecurity

FCCN launches podcast on cybersecurity. "Tell me your password" will divulge information that allows any citizen to understand "how to protect themselves and the data they share".

Read the news

Safer Internet Day (SID) 2024: Viseu hosts this year's initiative dedicated to Artificial Intelligence

February 6th marks the 21st edition of Safer Internet Day (SID). The Safer Internet Center Consortium is organizing this national commemorative event, which will be held this year in Viseu. The SID Summit 2024 program is dedicated to Artificial Intelligence.

More info

Registration for the Jornadas FCCN 2023 is now open

The 14th edition of the Jornadas FCCN will take place at the Naval School - Alfeite Base in Almada, between June 27 and 29, 2023. Registration is now open and can be done via the event's new dedicated website.

More info

CSIRT-in-a-box 2022

RCTS CERT organizes, on November 3 and 4, a new edition of the CSIRT-in-a-Box Workshop.

More info

"Unity FCCN exists to serve the community. The Jornadas da Unidade FCCN are extremely important"

"One of the goals we have, in organizing the Days, is to take them around the country. We like to go to the institutions we work for. We get to know them better and they get to know us better."

More info