U.K Tripartite Authorities Plan to Conduct Cyber-attack Based Market-wide War Game Exercise
by iClass - Monday, February 14, 2011
The war game exercise will be based on an Olympic physical and cyber-attack scenario. The tests will also include the elements of financial stress. The exercise aims to test the crisis management of the firms during adverse conditions. The war game test will be organized by Bank of England, the Treasury and the Financial Services Authority, collectively known as tripartite authorities. The exercise will also test the communication between the tripartite authorities. While the authorities don’t expect any adverse scenario during the games, the tests aim to check the preparedness of the firms.
Threats in the cyber space are vibrant. Criminals may send fake e-mails with news on sport events and entice users to click on a malicious link. They may also place malicious ad links on vulnerable websites luring users with exciting offers during the Olympic Games. The links may either download malware into the computer systems of the user or direct a user to a seemingly genuine but fake website. Once a user enters the details on the fake website, the criminals extract the confidential information and defraud the user. An informed user may reduce the instances of data and security breach. As such, government and organizing bodies must create information security awareness among the public through online video clips and e-learning programs.
The exercises are organized periodically to test the preparedness of the financial systems to face different types of threats. The previous exercise was based on widespread flooding and heavy snowfall in United Kingdom (U.K).Organizing committees of the gigantic sports event must conduct regular pen testing of the websites to weed out the potential threat vectors.
Other stakeholders and business participants must also conduct regular security evaluation of the IT infrastructure to detect and mitigate vulnerabilities. IT professionals may be encouraged to undertake vulnerability assessment training to update their skills and ensure early identification and mitigation of threats.Organizations must have customized business continuity and disaster management plans in place to deal with different exigencies.
EC-Council is a member-based organization that certifies individuals in cybersecurity and e-commerce skills. It is the owner and developer of 16 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and EC-Council Certified Security Analyst (ECSA)/License Penetration Tester (LPT). Its certificate programs are offered in over 60 countries around the world.
EC-Council has trained over 80,000 individuals and certified more than 30,000 members, through more than 450 training partners globally. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. federal government via the Montgomery GI Bill, Department of Defense via DoD 8570.01-M, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted security conferences.
Read More Press Releases
Get press releases by email