Results: NATO’s 2021 Cyber War Game

Uploaded on 2021-04-19 in FREE TO VIEW, GOVERNMENT-Defence

The team from Sweden ranked highest at the largest and most complex international live-fire cyber defence exercise Locked Shields 2021. Blue Teams from Finland and the Czech Republic took second and third place respectively.

The importance of international collaboration in cyber security has become increasingly evident and the 2021 exercise highlighted the growing need to enhance dialogue between technical experts, civil and military participants and decision-making levels.

The event was organised by the NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE) based in Tallinn, Estonia. The CCDCOE integrates the technical and strategic game, enabling participating nations to practice the entire chain of command in the event of a severe cyber incident involving both civilian and military players.

 For the first time, the exercise also included satellite mission control systems needed to provide real time situational awareness to facilitate military decision-making. 

Military cyber security specialists play-out the largest cyber war game in the world, that used a fictional NATO member state of Berylia that came under attack. The scenario was based on an attack on the fictional country of Berylia and an adversary called Crimsonia that is creating some artificial islands.

In the exercise, non-NATO member “Crimsonia” attacks vital infrastructure such as water supplies and mobile networks on the island state of “Berylia,” as well as the financial sector.  In addition to maintaining more than 150 complex IT systems per team, the Blue Teams had to be efficient in reporting incidents, executing strategic decisions, solving forensic, legal and media challenges and dealing with hostile information operations. Crimsonia is also engaging in information warfare, persuading the people of Berylia that their government is responsible for a series of accidents through fake news and social media posts.

Understanding the interdependencies of national IT systems is at the heart of protecting a nation under a massive cyber attack.

The exercise tested NATO allies and other states’ abilities to protect vital services and critical infrastructure. Technical and strategic games will facilitate participating nations with whole-command-chain rehearsals in the context of a major cyber incident, affecting both military and civilian systems.

Merle Maigre, head of government relations at CybExer Technologies commented that “The exercise scenario consolidates a number of real-life situations and follows recent threat trends which show that cyber criminals are targeting vital service providers more and more often... Our critical information infrastructure companies will be extremely vulnerable in a situation where long supply chains, unclear procurement mechanisms and, more often than not, saving pennies will result in purchasing security solutions from the countries whose software and developers we never see, know or monitor.”

More than 2000 participants from 30 nations test and train their entire chain of command in the event of a severe cyber incident, ranging from the strategic to the operational and tactical levels and involving both civilian and military capabilities.

Reflecting real world cyber threats, the exercise deals with the protection of vital services and critical infrastructure that are fundamental for modern societies to operate, including critical information infrastructure, power and water supply and national defence systems.

The exercise was taking place alongside a real-world cyber defense conference in Tallinn at which NATO Deputy Secretary-General Mircea Geoana on Thursday 15th April warned that the pandemic has made countries more vulnerable to cyber attacks. “Russia and China have tried to use the COVID-19 crisis to exploit vulnerabilities, including those in cyberspace, with cyber-enabled disinformation campaigns, designed to sow distrust and division in our democratic societies,” he said.

“Congratulations to the teams, whose strategy proved to be the best, however every single participating team is a winner for tackling the unrivaled complex cyber challenges of Locked Shields exercise,” said Carry Kangur, Head of Cyber Exercises at the CCDCOE. “This year the exercise involved in total more than 5000 virtualised systems that had to be defended against over 4000 attacks.

CCDOE:   e-Estonia:     The Defense Post:       European Defence Agency:      Sky:     I-HLS:      

You Might Also Read: 

NATO Live-Fire Cyber Exercise

 

« Trump's Family Get Blocked On Facebook
Maritime Cyber Security Has Missing Parts »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

MetricStream

MetricStream

MetricStream provide integrated GRC solutions across business, IT, and security functions.

Attivo Networks

Attivo Networks

Attivo Networks is an award winning provider of deception for in-network threat detection, attack forensic analysis, and continuous threat response.

Oppida

Oppida

Oppida provides tailored IT security services to help you identify security gaps and assist in finding the most effective remediation.

Cybersecurity Competence Center (C3)

Cybersecurity Competence Center (C3)

The Cybersecurity Competence Center was created to further strengthen the Luxembourg economy in the field of cybersecurity.

PROOF

PROOF

PROOF is a Brazilian leader in cybersecurity. Our goal is to assist our Customers in managing security efficiently and in tune with business needs.

Nakivo

Nakivo

NAKIVO is dedicated to delivering the ultimate backup, ransomware protection and disaster recovery solution for virtual, physical, cloud and SaaS environments.

Tier1Asset (T1A)

Tier1Asset (T1A)

T1A is Europe’s leading IT refurbisher. We offer certified data erasure using blancco on site and at our facilities, providing environmentally sound disposal of your used equipment.

CybrHawk

CybrHawk

CybrHawk is a leading provider of information security-driven risk intelligence solutions focused solely on protecting clients from cyber-attacks.

usecure

usecure

usecure is a global provider of computer-based cyber security awareness training, offering the market’s most time-efficient, cost-effective and admin-lite solution for reducing insider threats.

Gen Digital

Gen Digital

At Gen™, our mission is to create technology solutions for people to take full advantage of the digital world, safely, privately, and confidently – so together, we can build a better tomorrow.

Triangle

Triangle

Triangle enable innovative business transformation by ensuring critical hybrid infrastructures are optimised, interoperable and secure.

Dion Training Solutions

Dion Training Solutions

Dion Training Solutions offer comprehensive training in areas such as project management, cybersecurity, agile methodologies, and IT service management.

Orbis Cyber Security

Orbis Cyber Security

Orbis is one of the leading cybersecurity company in USA. Our cybersecurity specialist defends your data, combat threat, and modernize your compliance.

Razilio

Razilio

Razilio is a boutique cybersecurity consultancy located in Sydney, Australia and serving the world.

Keeran Networks

Keeran Networks

Established in Edmonton in 1999, Keeran specializes in delivering comprehensive IT support and solutions aimed at optimizing technology investments for businesses.

ModelOp

ModelOp

ModelOp is the leading AI Governance software for enterprises and helps safeguard all AI initiatives.