Exercises to protect the Runet from threats conducted and recognized successful – review

Today, December 23, in Russia have passed exercises to protect the integrity and sustainability of the Internet, which have been recognized as successful. During the cyber orders, several scenarios were worked out to ensure the operation of cellular communications, as well as smart devices and communication systems of critical facilities.

The exercises took place over several days in Moscow, Rostov, Vladimir and other cities. They were attended by the Ministry of Communications and Mass Media, Roskomnadzor, the Ministry of Emergencies, security agencies, “Rostelecom“, Positive technologies,Tele2, Group-ib, MTS, “Megaphone“,”VimpelCom“,”Kaspersky Lab” etc.

Each company or structure was responsible for its segment of work. Positive Technologies, for example, tested the possibility of an attack through social networks. Telecommunications operators worked out attack scenarios through signaling networks of the SS7 and Diameter protocol (12 and 6 attacks, respectively). Each scenario lasted about 20 minutes, while the success of the attacks ranged from 50 to 62.5 percent.

It took 2-3 minutes to detect each attack.

It is noted that such exercises should be held at least once a year, which requires the law on “sovereign Runet”. Also, according to the law, operators will have to install equipment to filter traffic. Testing of these systems should be completed before the end of the year and will cost more than 30 billion rubles.