Explore OpenCTI or OpenAEV platform with 30 days Free Trial!
XTM Hub by FiligranSign In

Tabletop Exercise - Akira Ransomware Crisis

Tabletop Exercise

Overview

Incident response TTX around Akira

The goal of this table-top exercise is to simulate a realistic Akira ransomware crisis impacting a CAC 40 company, focusing on the critical role of communication (especially via email) and clear role expectations throughout the incident lifecycle. Specifically, it aims to:

  • Test and evaluate the company's incident response plan in a simulated environment.
  • Clarify roles and responsibilities of different teams (IT Security, Legal, Communications, Executive Leadership) during a ransomware attack.
  • Assess the effectiveness of internal and external communication strategies in a high-pressure situation.
  • Identify potential gaps and areas for improvement in the company's preparedness for a cyber incident.
  • Practice decision-making processes under the constraints of a ransomware attack.
  • Understand the legal, technical, and communication implications of such an event.
  • Familiarize relevant personnel with the steps involved in responding to a ransomware attack, including initial detection, containment, investigation, recovery, and external communication.

Basic information

Filigran
Sébastien Miguel
July 01, 2026
1.17.0
200+
80+

    We use cookies to make the XTM Hub work, understand how it's used, and improve your experience. Strictly necessary cookies are always on. With your consent, we also use optional cookies for functionality, performance and analytics, and marketing. You can accept all, reject all, or choose which optional cookies to allow. You can change your preferences at any time via "Cookie settings". See our Cookie Policy for more information.