The FBI built its own replica small town to simulate real-world cyberattacks
The FBI built its own replica small town to simulate real-world cyberattacks
美国联邦调查局(FBI)建造了一座模拟小镇,用于演练现实网络攻击
The Federal Bureau of Investigation is pulling back the curtain on a 22,000 square-foot replica town on its Huntsville, Alabama campus that it built to train law enforcement in simulating and investigating real-world cyberattacks. The aim is to teach investigators in a secure environment beyond the classroom by getting hands-on with some of the latest consumer and enterprise technologies, many of which are frequently targeted by malicious hackers.
美国联邦调查局(FBI)近日揭开了其位于阿拉巴马州亨茨维尔园区内一座占地 22,000 平方英尺的模拟小镇的神秘面纱。该设施旨在通过模拟和调查现实世界的网络攻击,对执法人员进行专业培训。其目标是让调查人员走出课堂,在一个安全的环境中,通过亲手操作各类最新的消费级和企业级技术设备(其中许多是恶意黑客频繁攻击的目标)来积累实战经验。
The numbers put the training into context. The FBI’s 2025 Internet Crime Report, drawing on more than one million complaints, logged a record $20.9 billion in U.S. cybercrime losses, a 26% jump over the prior year, with ransomware ranked the top ongoing threat to critical infrastructure.
这些数据凸显了此类培训的必要性。根据 FBI 的《2025 年互联网犯罪报告》,基于超过一百万起投诉,美国网络犯罪造成的损失达到了创纪录的 209 亿美元,较上一年增长了 26%,其中勒索软件被列为对关键基础设施持续威胁的首要因素。
Dubbed the Kinetic Cyber Range, the FBI’s small purpose-built town opened in February 2025 and features fully furnished houses, a hotel, a gas station and grocery mart, a courthouse, a hospital, and a power company — complete with roads and traffic lights — designed to mimic a real U.S. community. Since opening, says the agency, the facility has trained more than 1,400 students, including FBI personnel and partners from other federal and local agencies. Each part of the town is wired with functioning devices and systems that behave as they would in a real community or business, while preventing any simulated attacks from spilling out of the facility.
这座被命名为“动态网络靶场”(Kinetic Cyber Range)的专用小镇于 2025 年 2 月启用。镇内设有设施齐全的住宅、酒店、加油站、杂货店、法院、医院和电力公司,并配备了道路和交通信号灯,旨在完美复刻一个真实的美国社区。据该机构称,自开放以来,该设施已培训了超过 1,400 名学员,包括 FBI 人员以及来自其他联邦和地方机构的合作伙伴。小镇的每个部分都连接着功能完备的设备和系统,其运行方式与现实社区或企业无异,同时确保所有模拟攻击都不会外溢到设施之外。
The range also includes a data center with more than 200 physical servers — some running Windows, some Linux — reflecting the corporate environments investigators are likely to encounter when responding to a breach or executing a search warrant. “They’re cold, they’re cramped, they’re noisy, they’re dark, they’re miserable,” Dave Beachboard, the range’s program manager, explains in the FBI’s write-up about the training environment.
该靶场还包含一个拥有 200 多台物理服务器的数据中心(部分运行 Windows 系统,部分运行 Linux 系统),这反映了调查人员在应对数据泄露或执行搜查令时可能遇到的企业环境。该靶场的项目经理戴夫·比奇伯德(Dave Beachboard)在 FBI 关于培训环境的介绍中解释道:“这里寒冷、狭窄、嘈杂、昏暗,环境非常艰苦。”
The replica town also allows the FBI to simulate ransomware attacks and their real-world consequences, including the high-pressure decisions that investigators must make when responding to incidents that could cause harm to people, such as hospital systems going dark.
这座模拟小镇还允许 FBI 模拟勒索软件攻击及其现实后果,包括调查人员在应对可能危及人身安全的事件(如医院系统瘫痪)时,必须做出的高压决策。
The Kinetic Cyber Range also helps to train U.S. investigators in digital forensics, which police use to crack the cybersecurity defenses of encrypted modern devices to extract data from devices, often for the purposes of building a criminal investigation. The tools used for this are controversial as they work by exploiting vulnerabilities that are never disclosed to the device maker, such as Apple or Google, to defeat the protections those companies build in for their users.
“动态网络靶场”还致力于培训美国调查人员的数字取证能力。警方利用这些技术破解现代加密设备的网络安全防御,从中提取数据,通常是为了构建刑事调查证据。用于此目的的工具极具争议,因为它们通过利用从未向苹果或谷歌等设备制造商披露的漏洞来绕过这些公司为用户构建的保护机制。