The General Directorate of Information Systems Security organized the sixth edition of its annual cyber simulation exercise (CyberDrill-2022) on November 15th and 17th, 2022, under the theme: 'EARLY DETECTION.'

Sixty-one teams from administrations, public agencies, and critical infrastructure participated in this event.

The exercise took place in a virtual environment where teams were tasked with analyzing collected security events, identifying compromise indicators, discovering the most probable attack scenario, and proposing an appropriate response plan.

The main objective was to highlight the practices and reflexes necessary to deal with phishing attacks, particularly:

•  Understanding the Tactics, Techniques, and Procedures (TTP) used as well as the tools widely employed by attackers.
•  Conducting investigations on cybersecurity incidents related to phishing, internal reconnaissance, credential dumping, etc.
•  Identifying indicators to detect and respond to such incidents.

Thanks to the involvement of all participants, the expected objectives were achieved, and the majority of participants were able to solve the problems they faced.