It sounds like a bad, Sci-Fi sequel, but Cyber Storm II is not fiction — at least not technically.
The first Cyber Storm took place Feb 6-10, 2006 (you can read the pdf report here), and simulated attacks and responses in over 60 locations in the US, UK, and Canada. In that scenario, days one and two were ‘build-up’ days with the ‘crisis’ occurring on day three.
This year’s exercises began on Monday and will conclude Friday, March 14th. If the schedule this year follows last year, then Wednesday is when the cyber crisis will commence. However, we believe the ‘riskiest’ day might be Tuesday, March 11th (3/11/05 is the day the Iraq war began, and 3/11 equals ’33’).
Let’s pray this exercise comes and goes without any component or scenario ‘going live’. — PID
DHS: Cyber Storm II Exercise to Further Cyber Security Preparedness and Response Capabilities
Mar 10, 2008 (DHS PRESS RELEASE) — The U.S. Department of Homeland Security (DHS) is conducting the largest cyber security exercise ever organized. Cyber Storm II is being held from March 10-14 in Washington, D.C. and brings together participants from federal, state and local governments, the private sector, and the international community.
Cyber Storm II is the second in a series of congressionally mandated exercises that will examine the nation’s cyber security preparedness and response capabilities. The exercise will simulate a coordinated cyber attack on information technology, communications, chemical, and transportation systems and assets.
“Securing cyberspace is vital to maintaining America’s strategic interests, public safety, and economic prosperity,” said Greg Garcia, Homeland Security Assistant Secretary for Cyber Security and Communications. “Exercises like Cyber Storm II help to ensure that the public and private sectors are prepared for an effective response to attacks against our critical systems and networks.”
Cyber Storm II will include 18 federal departments and agencies, nine states (Calif., Colo., Del., Ill., Mich., N.C., Pa., Texas and Va.), five countries (United States, Australia, Canada, New Zealand and the United Kingdom), and more than 40 private sector companies. They include ABB, Inc., Air Products, Cisco, Dow Chemical Company Inc., Harris Corporation, Juniper Networks, McAfee, Microsoft, NeuStar, PPG Industries, and Wachovia.
Cyber Storm II objectives include:
• Examining the capabilities of participating organizations to prepare for, protect against, and respond to the potential effects of cyber attacks
• Exercising strategic decision making and interagency coordination of incident response in accordance with national level policy and procedures
• Validating information sharing relationships and communications paths for the collection and dissemination of cyber incident situational awareness, response and recovery information
• Examining means and processes through which to share sensitive information across boundaries and sectors without compromising proprietary or national security interests
For more information on Cyber Storm II visit the DHS website.