The National Cyber Security Centre (NCSC) offers an online tool called ‘Exercise in a Box’ to help businesses assess their resilience to cyber attacks and practice their responses in a secure environment.

This tool provides various exercises that you can perform at your convenience, as many times as needed. These exercises include:

  • A ransomware attack delivered via phishing email
  • Mobile phone theft and response
  • Attacks originating from an unknown Wi-Fi network
  • Insider threats leading to data breaches
  • Compromises through third-party software
  • Threatened leaks of sensitive data
  • Home and remote working scenarios
  • Managing a vulnerability disclosure

Additionally, micro-exercises cover topics such as password usage and identifying and reporting suspected phishing emails.

To utilise ‘Exercise in a Box’, you need to register for an account with the NCSC. Upon registration, you will receive a tailored report that outlines the next steps and provides guidance on where to find helpful resources.

For more information, visit: NCSC – Exercise in a Box