Maskirovka Winter arrives in Canberra
Context researchers run security counter intelligence simulation exercise at BSides 2017
Researchers from Context Information Security will debut a unique security counter intelligence exercise called Maskirovka Winter this week at BSides 2017 in Canberra. Maskirovka Winter is a high-stakes simulated global threat hunt designed to test participants’ abilities in using threat intelligence analysis and critical reasoning to prevent a cyber attack on an energy substation in Chechnya that could disrupt electricity supplies to thousands of Russian and Georgian citizens and potentially lead to global conflict.
The challenge is designed around the ability to incorporate social network and link analysis, statistics with large data and using the diamond model method. Participants will play the role of cyber counter intelligence analysts assigned to search, track and reveal the truth surrounding the event and deliver intelligence reports to make the appropriate response.
“This is not a normal Capture the Flag challenge” said Richard Davies, Technical Director of AsiaPac at Context. “Maskirovka Winter has been created in our Sydney Office and is quite unique. It is the first time we have run this exercise anywhere in the world and will present exciting new challenges for participants that could reflect real-life situations. The challenge will be preceded by a hands-on workshop that will introduce participants into the world of intelligence analysis, critical thinking.”
Also at Bsides 2017 in Canberra, Fatih Ozavci, Managing Consultant at Context Information Security, will deliver a talk on the security risks presented by VoIP and Unified Communications systems and the need for penetration testing. The talk will aim to improve the testing skills of assurance teams through practical attack demonstrations, testing tips and automated actions.
“Unified Communications and VoIP are used widely by large organisations for video conferences, office collaboration, cloud services and mobile communications and also have key roles in the IP Multimedia Subsystem (IMS) implementations of next generation mobile networks,” said Fatih Ozavci. “But these technologies often come with design issues, well-known security vulnerabilities and legacy services, which present real security risks that often go undetected.”
For more information on Fatih Ozavci’s talk visit here
For more information on BSides Canberra visit here
Context is a leading cyber security consultancy with a comprehensive portfolio of advisory and advanced technical services, from network security monitoring, penetration testing and assurance to rapid incident response and intrusion analysis, training and technical security research. Context is focused on helping clients avoid potential breaches and to deter, detect and respond to the most sophisticated cyber-attacks.
Established in 1998, Context is certified by NCSC and CPNI in the UK for the Cyber Incident Response scheme and helped to establish the not-for-profit industry body CREST and its associated standards and accreditations.
Context’s client base includes some of the world’s leading blue chip companies, alongside public sector and government organisations, for technical assurance, incident response and investigation services. An exceptional level of technical expertise and detailed methodology underpin all Context services and help clients to attain a deeper understanding of security vulnerabilities, threats and incidents. With offices in the UK, Australia and Germany, Context is ideally placed to work with clients worldwide.