CyberGym launches South African arena

October 2018 Editor's Choice, Cyber Security, News, Training & Education

Wolfpack recently introduced a new cybersecurity training service to South Africa. CyberGym is an Israeli company that specialises in real-life cyber training, teaching students with real world simulations.

Wolfpack’s CEO, Craig Rosewarne, launched CyberGym by pointing out that the lack of cyber skills is a serious issue around the world. This is exacerbated by the fact that companies are generally prepared to spend large amounts on cyber protection technology, but skimp when it comes to training – and this applies to technical cyber skills as well as training users on how to best protect themselves from attacks, such as phishing or ransomware. It is in the technical skills arena that CyberGym looks to make a difference.

CyberGym’s New York arena.
CyberGym’s New York arena.

CyberGym’s Ofer Rachman explained that the company was started out of Unit 8200 in the Israeli Defence Force (IDF). This unit was set up as a strategic response to the cyber threats against Israel – which faces about 1000 cyberattacks each day – and comprises thousands of ‘cyber warriors’.

The defence process has been adapted from the NIST Cybersecurity Framework, which includes all levels in an organisation as it seeks to identify, protect, detect, respond and recover from attacks. (More on the framework can be found at As with all security, there are layers in place to deal with the cyber threat. These include the data level, the application level, then the hosting, internal network, perimeter and physical levels, and finally, training, policies and procedures.

Realistic simulations

The CyberGym training process is based on the concept of an arena, as opposed to a traditional learning environment. The company has expanded to include arenas in various countries, from Israel through to the Czech Republic, Portugal, Lithuania, Japan, Australia, US and now South Africa. Each arena is set up to emulate a real world IT infrastructure in which the students would work. The training process is comprised of three teams.

The White Team is made up of the instructors working for CyberGym (veterans of the Israeli National Security Authority) who observe, teach and evaluate students. The Blue Team is made up of the students and their task is to defend their emulated IT systems by proactively recognising and responding to cyberattacks using a variety of tools.

The Red Team in action.
The Red Team in action.

The Red Team is located in Israel and its job is to play the role of cyber attackers and perform strategic attacks on the Blue Team’s infrastructure. The Red Team is made up of experienced hackers, which the company says provides students with “unique insights into a hacker’s mindset and point of view”.

Each training session, which can last up to three days, is customised to the trainees’ requirements. For example, it can simulate a financial institution or an electrical utilities infrastructure, with the Red Team directing attacks aimed at those organisations and their infrastructure. The courses available start from half-day courses aimed at C-level executives and then move on to various cybersecurity courses. The technical courses are aimed at the level of the trainees, but can be boosted to give even the most experienced defenders a serious challenge.

An electrical utility simulation.
An electrical utility simulation.

One of CyberGym’s Red Team members, Elad Hagai, was also on hand to provide some insights into real-world attacks he was involved with, in the form of two case studies of defence strategies. The first was from one of Israel’s largest credit card issuers, which was faced with an insider data breach. The ex-employee and his cohorts tried to hold sensitive data to ransom for millions of dollars. The problem was resolved within two weeks and all the data was recovered before it could be published.

Hagai also outlined the changes made in the company to prevent such an occurrence from happening again. The second study was about how a network infiltration attack on another organisation was detected and resolved.

Ready to roll

Rosewarne closed the launch event by telling the attendees that CyberGym SA has been set up and kitted out with a variety of infrastructure components which will allow it to train cyber defenders of any skill level. The venue not only has the required kit, but a VPN link to the Red Team in Israel is also in place so that they can launch attacks and test students’ skills.

Find out more at or by emailing


Share this article:
Share via emailShare via LinkedInPrint this page

Further reading:

Kaspersky uncovers zero-day in Chrome
October 2019, Kaspersky Lab , News, Cyber Security
Kaspersky’s automated technologies have detected a new exploited vulnerability in the Google Chrome web browser.

A platform approach to innovation and value
CCTV Handbook 2019, Technews Publishing , Editor's Choice, CCTV, Surveillance & Remote Monitoring, Integrated Solutions, IT infrastructure
Moving to the platform model of doing business holds tremendous advantages for end users and smaller developers, but also for the whole technology supply chain.

Open does not always mean easy integration
CCTV Handbook 2019, VERACITECH, Technews Publishing , Editor's Choice, CCTV, Surveillance & Remote Monitoring, Integrated Solutions
Customers who opt for best-of-breed solutions will have to rely on their integrators to develop customised integrated solutions for them.

The impact of AI on the surveillance industry
CCTV Handbook 2019, G4S South Africa, Hikvision South Africa, Myertal Tactical Security, Technews Publishing , Editor's Choice, CCTV, Surveillance & Remote Monitoring
What the impact of AI will be on companies, the services and solutions they supply, as well as on the jobs people do.

Video analytics and AI
CCTV Handbook 2019, Axis Communications SA, Dallmeier Electronic Southern Africa , Hikvision South Africa, Technews Publishing, Dahua Technology South Africa , Editor's Choice, CCTV, Surveillance & Remote Monitoring, Integrated Solutions
Artificial intelligence has the potential to deliver real benefits in the world of video analytics and many companies are already delivering customer benefits.

Cloudy with a chance of AI
CCTV Handbook 2019 , Editor's Choice, CCTV, Surveillance & Remote Monitoring, Integrated Solutions
One local company has developed an AI solution that can be added to existing surveillance installations, offering 24-hour intelligence.

Security surveillance architecture
CCTV Handbook 2019, Technews Publishing , Editor's Choice, CCTV, Surveillance & Remote Monitoring
IP video surveillance solutions typically have two distinctive surveillance architectures: centralised and distributed. Dean Coleman explains the difference.

Selecting the right surveillance storage
CCTV Handbook 2019, Capsule Technologies, Technews Publishing , Editor's Choice, CCTV, Surveillance & Remote Monitoring, IT infrastructure
Storage is an integral part of a surveillance installation and the solution chosen can make or break the success of your project.

Cyber-securing your surveillance infrastructure
CCTV Handbook 2019, Genetec, Hikvision South Africa , Editor's Choice, CCTV, Surveillance & Remote Monitoring, Cyber Security
When it comes to cybersecurity, understanding the risks and the solutions as well as engaging in open communication helps everyone.

Speak up with audio
CCTV Handbook 2019, Axis Communications SA , Editor's Choice, CCTV, Surveillance & Remote Monitoring
Video surveillance systems are traditionally used as forensic tools, but what if you can use your surveillance system to proactively deter incidents before they happen?