Rostelecom-Solar held cyberexercises with the Center of financial technologies

2019: Holding cyberexercises

On January 21, 2020 the Rostelecom-Solar company reported that it held joint cyberexercises with the Center of Financial Technologies (CFT), the Russian financial technical-provider. The project was directed to check of monitoring systems and working off of processes of reflection of the attacks, tactics, the technician and procedures of reaction of a command of cyber defense.

A half of clients of the company — banks of TOP-50 level, therefore protection of critical information and business processes — a question of the top priority. Working off the technician and procedures of protection and also quality check of work of own Security Operations Center (SOC) CFT became the purpose of cyberexercises. Experts Rostelecom-Solar were on the side of a command of attacking (red team), and specialists of CFT protected own IT infrastructure (blue team), at the same time the blue team command did not knew of the staged drills.

Finance applications and systems — the most priority purpose for the hacker as in case of cracking give instant monetization. Having got access to source codes of popular banking systems or to cloud bank services, the malefactor can carry out already mass attack on financial institutions and their clients that is absolutely inadmissible. As our solutions are used in general in financial market, both in banks, and in insurance companies, in IFI, we as the developer understand the level of the responsibility and constantly we improve mechanisms and technologies of protection of our assets. Cooperation about Rostelecom-Solar allowed us to perfect skills of response to the attacks in 'fighting' conditions, comments Alexey Leonov, the director of directorate of cybersecurity of CFT

Unlike testing for penetration, in the course of the cyberexercises any of possible vectors of the attacks to the company are used. Experts Rostelecom-Solar emulated actions of violators, applying modern hacker techniques. Experts of red team developed for gaining access to internal infrastructure and implemented different scenarios of the attacks: phishing mailings on employees; attacks to Wi-Fi-networks; search and operation of shortcomings and vulnerabilities on external perimeter and in the protected perimeter; simulation of actions of the internal violator.

As a result of cyberexercises the CFT company received independent efficiency evaluation of work of the SOC, the used technologies of protection of data assets and business and also it helped to improve skills of operational detection and prevention of the purposeful attacks in actual practice.