In hopes of simulating a real-world situation, the attackers made a point of using the most publicly known exploits during the competition. They also took advantage of common mistakes like the use of weak passwords or the same passwords on multiple systems, and targeted security holes in Microsoft Windows that have readily available patches. In one case, for instance, NSA hackers gained control of a router in a complex network architecture built by the West Point team because the team neglected to change the default password on the Cisco Systems device.
Michael Tanner, an Air Force cadet, said the team’s nine members, mostly computer science and engineering majors, had only basic knowledge of information assurance practices.
“We know there’s a tendency for students to think they have to build some sort of whizbang network with bells and whistles,” said Rigo MacTaggart, who participated on the NSA’s end.
http://news.com.com/Security+agency+war+game+tries+to+teach+Net+defense/2100-7355_3-6091731.html?tag=nefd.top