CyberGym launches South African arena

October 2018 Editor's Choice, Information Security, News & Events, Training & Education

Wolfpack recently introduced a new cybersecurity training service to South Africa. CyberGym is an Israeli company that specialises in real-life cyber training, teaching students with real world simulations.

Wolfpack’s CEO, Craig Rosewarne, launched CyberGym by pointing out that the lack of cyber skills is a serious issue around the world. This is exacerbated by the fact that companies are generally prepared to spend large amounts on cyber protection technology, but skimp when it comes to training – and this applies to technical cyber skills as well as training users on how to best protect themselves from attacks, such as phishing or ransomware. It is in the technical skills arena that CyberGym looks to make a difference.

CyberGym’s New York arena.
CyberGym’s New York arena.

CyberGym’s Ofer Rachman explained that the company was started out of Unit 8200 in the Israeli Defence Force (IDF). This unit was set up as a strategic response to the cyber threats against Israel – which faces about 1000 cyberattacks each day – and comprises thousands of ‘cyber warriors’.

The defence process has been adapted from the NIST Cybersecurity Framework, which includes all levels in an organisation as it seeks to identify, protect, detect, respond and recover from attacks. (More on the framework can be found at www.nist.gov/cyberframework.) As with all security, there are layers in place to deal with the cyber threat. These include the data level, the application level, then the hosting, internal network, perimeter and physical levels, and finally, training, policies and procedures.

Realistic simulations

The CyberGym training process is based on the concept of an arena, as opposed to a traditional learning environment. The company has expanded to include arenas in various countries, from Israel through to the Czech Republic, Portugal, Lithuania, Japan, Australia, US and now South Africa. Each arena is set up to emulate a real world IT infrastructure in which the students would work. The training process is comprised of three teams.

The White Team is made up of the instructors working for CyberGym (veterans of the Israeli National Security Authority) who observe, teach and evaluate students. The Blue Team is made up of the students and their task is to defend their emulated IT systems by proactively recognising and responding to cyberattacks using a variety of tools.

The Red Team in action.
The Red Team in action.

The Red Team is located in Israel and its job is to play the role of cyber attackers and perform strategic attacks on the Blue Team’s infrastructure. The Red Team is made up of experienced hackers, which the company says provides students with “unique insights into a hacker’s mindset and point of view”.

Each training session, which can last up to three days, is customised to the trainees’ requirements. For example, it can simulate a financial institution or an electrical utilities infrastructure, with the Red Team directing attacks aimed at those organisations and their infrastructure. The courses available start from half-day courses aimed at C-level executives and then move on to various cybersecurity courses. The technical courses are aimed at the level of the trainees, but can be boosted to give even the most experienced defenders a serious challenge.

An electrical utility simulation.
An electrical utility simulation.

One of CyberGym’s Red Team members, Elad Hagai, was also on hand to provide some insights into real-world attacks he was involved with, in the form of two case studies of defence strategies. The first was from one of Israel’s largest credit card issuers, which was faced with an insider data breach. The ex-employee and his cohorts tried to hold sensitive data to ransom for millions of dollars. The problem was resolved within two weeks and all the data was recovered before it could be published.

Hagai also outlined the changes made in the company to prevent such an occurrence from happening again. The second study was about how a network infiltration attack on another organisation was detected and resolved.

Ready to roll

Rosewarne closed the launch event by telling the attendees that CyberGym SA has been set up and kitted out with a variety of infrastructure components which will allow it to train cyber defenders of any skill level. The venue not only has the required kit, but a VPN link to the Red Team in Israel is also in place so that they can launch attacks and test students’ skills.

Find out more at www.cybergym.com/sa or by emailing sa@cybergym.com



Credit(s)




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Duxbury Cybersecurity sharpens reseller offering
Duxbury Networking Information Security News & Events
Duxbury Networking has strengthened its Duxbury Cybersecurity business unit by adding WatchGuard and Cynet, giving South African resellers broader, more integrated coverage for the security risks customers are now asking them to address.

Read more...
Disconnect between confidence in identity security and operational reality
Access Control & Identity Management News & Events
New FIDO Alliance and HID study reveals gap between identity security confidence and reality; 94% of enterprises claim they can revoke employee access within 24 hours, yet 35% experienced delays or failures in the past two years.

Read more...
Paxton Solo training available to security installers
Paxton Access Control & Identity Management News & Events
Following the launch of Solo, Paxton’s brand-new access control system, the security manufacturer is rolling out dedicated Solo training sessions across South Africa to support security installers working with the system.

Read more...
Increase in cyberattacks on the manufacturing sector
Security Services & Risk Management News & Events Industrial (Industry)
According to a new Kaspersky ICS CERT report, in the first quarter of 2026, the percentage of industrial control systems (ICS) on which malicious objects were blocked reached 19,6% globally.

Read more...
Sara AI Pentesting available in South Africa
Information Security News & Events
Synack and Wolfpack Information Risk are offering Sara AI Pentesting to organisations across South Africa, helping companies move from point-in-time testing to continuous security validation with AI and human expertise.

Read more...
Free POPIA Action List for gated access
ATG Digital News & Events Residential Estate (Industry) Training & Education Commercial (Industry)
ATG Digital, in partnership with CIVITAS, released the POPIA Responsible Party Action List. It is a free, practical guide for HOAs, body corporates, managing agents, landlords, employers and institutions. It helps them move from assuming compliance with the Protection of Personal Information Act (POPIA) to proving it.

Read more...
Sophos establishes South African legal entity to strengthen local operations
News & Events Information Security
Global cybersecurity company, Sophos, has announced the formation of its local legal entity, which will support local invoicing, partner enablement, compliance requirements and expanded regional investment.

Read more...
CCTV and vigilance are key to crime prevention
Surveillance Training & Education
Vigilance remains one of the most effective tools in preventing crime. Business owners need to remain vigilant, ensure CCTV systems are functioning correctly, and report any suspicious activity immediately.

Read more...
71% of organisations suffered an identity breach
News & Events Information Security
The State of Identity Security 2026 report from Sophos finds human error and poor non-human identity management are the root causes of most attacks, as agentic AI accelerates the risk.

Read more...
Global security in 2026
Editor's Choice News & Events Security Services & Risk Management Industrial (Industry) Mining (Industry)
The World Security Report 2026 states: “In a world of increasing volatility, physical security has evolved. It is no longer just a defensive measure; it is a critical driver of corporate value.”

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.