Hong Kong-based ICT service provider DYXnet has hosted its first cross-region simulated attack and defence exercise to strengthen cyber security capabilities.
This event brought together cybersecurity experts from offices in mainland China, Hong Kong, and Taiwan, forming multiple blue teams tasked with defending against attacks from a red team led by DYXnet’s Hong Kong cybersecurity experts.
The exercise provided DYXnet’s security team with invaluable experience, strengthening the overall incident response capabilities of its Security Operations Center and improving the protection of clients’ networks and digital assets.
The simulated attack and defence exercise, also known as the purple team exercise, was organised by cybersecurity experts from DYXnet’s product and pre-sales departments. They created a simulated enterprise network within One Cloud Director’s controlled environment, acted as the red team attackers, and exploited the latest vulnerabilities and weaknesses.
Meanwhile, eight defending blue teams, consisting of members from DYXnet’s SOC, network operations centre, and quality and service management departments, participated online. These teams developed defence strategies and employed techniques to detect incidents and respond promptly.
The simulated attacks included data breaches, suspicious internal communications, OWASP, enterprise application vulnerabilities, DDoS, and phishing emails. These scenarios tested the teams’ abilities in alert investigation, incident assessment, and response. The blue teams raced against time to solve the attack scenarios, requiring professional knowledge and familiarity with defensive measures, tools, and configurations to adapt to dynamic attack patterns. After three hours of intense competition, the team that responded most accurately and quickly was awarded the championship.
“Due to the increasing severity of cybersecurity threats, Hong Kong is considering new legislation for the Protection of Critical Infrastructures (Computer Systems) Bill,” said DYXnet’s Joe Sze. “This law will require critical infrastructure operators to implement measures safeguarding their computer information systems and enhancing overall security in Hong Kong.”
“As a key player in the industry and a provider of cybersecurity services, DYXnet is dedicated to maintaining exceptional defence capabilities,” he added. “We prioritise the training of cybersecurity professionals and consider purple team exercises essential training practices. These exercises allow our teams to engage in real-world scenarios, understand the latest attack trends and advanced persistent threats, and improve their response capabilities and teamwork. Ultimately, this enhances our overall cybersecurity posture.”
At the Cyber Attack and Defence Competition 2024, hosted by Fortinet last year, DYXnet distinguished itself among twelve competing teams, achieving second place. The DYXnet team comprised four members: a cybersecurity consultant, a product manager, and two engineers.
Each member focused on identifying vulnerabilities, formulating security strategies, assessing incidents, and executing technical solutions. Their extensive experience in daily operations enabled them to respond swiftly to various types of attacks during the competition. This achievement serves as a testament to the team’s capabilities and expertise.
“The purple team exercises emphasise teamwork and time management, as real security incidents often require racing against the clock,” said Sze. “DYXnet’s managed detection and response service provides enterprises with professional support, ensuring that our SOC team 24×7 monitors and responds promptly, maintaining clients’ business operations and minimising impacts during security incidents.”
