Project Ares Mission - Stop Ransomware Attack - Crimson Wolf
Provided by QA
Overview
Missions are scenarios designed to help train and assess skill levels of learners within a realistic story that is either offensive or defensive (i.e. ransomware attack on a hospital). The network environment is more complex than a Battle Room scenario and requires the learner(s) to combine multiple skill sets to complete the learning objectives. They are played individually, or in teams to learn together. Facilitators can also choose to enable or disable hints and enter the scenario to tailor the learning experience.
Players enter an environment and are given mission orders, rules of engagement and must use their skills to compete objectives.
Mission Activity (Blue Team - Defensive)
A Hospital care in the United Kingdom is in a state of emergency, falling victim to a sophisticated ransomware attack. Records have been encrypted, affecting thousands of patients, including some that are during ongoing treatment. You are tasked with obtaining situational awareness of hospital networks and work to eradicate any active threats on their network.
Learners should be familiar with basic network management, vulnerability assessment, data forensics and incident response management.
Objectives
The learner will use network monitoring tools to derive accurate network map, identify email & domain policies for risk, asses hosts for risk while identifying abnormalities. The end state is to stop and remove any malicious actor artefacts.
Outline
Mission Video Briefing
Missions are scenarios designed to help train and assess skill levels of learners within a realistic story that is either offensive or defensive (i.e. ransomware attack on a hospital). The network environment is more complex than a Battle Room scenario and requires the learner(s) to combine multiple skill sets to complete the learning objectives. They are played individually, or in teams to learn together. Facilitators can also choose to enable or disable hints and enter the scenario to tailor the learning experience.
Players enter an environment and are given mission orders, rules of engagement and must use their skills to compete objectives.
Mission Activity (Blue Team - Defensive)
A Hospital care in the United Kingdom is in a state of emergency, falling victim to a sophisticated ransomware attack. Records have been encrypted, affecting thousands of patients, including some that are during ongoing treatment. You are tasked with obtaining situational awareness of hospital networks and work to eradicate any active threats on their network.
- Load Time - 15 min
- Time Limit - 40 hrs
- # of Tasks - 7
- Hints - Yes
- Save Session - Yes
- Team Based - Yes
Learners should be familiar with basic network management, vulnerability assessment, data forensics and incident response management.
Objectives
The learner will use network monitoring tools to derive accurate network map, identify email & domain policies for risk, asses hosts for risk while identifying abnormalities. The end state is to stop and remove any malicious actor artefacts.
Outline
Mission Video Briefing
Enquire
| Start date | Location / delivery | |
|---|---|---|
| No fixed date | United Kingdom | Book now |
01132207150
01132207150
Related article
CYBER PULSE: EDITION 179 | 18 MARCH 2022
QA's practice director of Cyber Security, Richard Beck, rounds up the latest cyber security news.