Cyber Storm Exercise
The Cyber Storm exercise is a biennial cyber security drill run by the U.S. Department of Homeland Security. The 2006 exercise took place February 6–10 and tested how well the nation could defend against digital espionage. It mainly involved American security agencies, but participants from the United Kingdom, Canada, Australia and New Zealand also joined. The drill simulated a large-scale attack on critical digital infrastructure such as communications, transportation and energy.
During the exercise, some incidents involved participants attacking the simulation’s own systems. Redacted files released to the press showed that organizers sent an email marked "IMPORTANT!" reminding everyone not to attack the game’s control computers. The exercise exposed gaps in the nation’s cyber defenses. The report noted that attacked institutions often focused on single incidents rather than the bigger picture, treating problems as separate. The Department of Homeland Security warned that the cyber-defense resources available at the time could be overwhelmed in a real attack.
Cyber Storm II was held in 2008 as an international exercise sponsored by DHS. It lasted a week, centered in Washington, DC, and ended on March 15. Cyber Storm III followed in 2010, another international, week-long exercise in Washington, DC, finishing on October 1.
This page was last edited on 3 February 2026, at 17:05 (CET).