The Cyber Security and Technology Crime Bureau (CSTCB) conducted the first counter cyber and physical terrorism exercise, codenamed “SMOKEPILLAR”, with various counter-terrorism units and stakeholders at the Hong Kong International Airport on August 20. Over a hundred officers from the CSTCB, Airport District (APTDIST), the Airport Security Unit (ASU), the Police Tactical Unit of Kowloon West, the Police Public Relations Branch and the Airport Authority Hong Kong (AAHK) took part in the exercise.

Superintendent of the Cyber Security Division of CSTCB Cheung Tin-lok said that in order to level up the attack, terrorists have extended their reach from the real world to the cyber world, if not both. Cyber attacks are timeless and borderless. Remote attacks and damages to computer systems could be done by malicious software. Through paralysing the cyber security system, spreading disinformation and stealing confidential information, a favourable environment is created for an easy, large-scale and destructive physical terrorist attack. In view of this, in addition to organising this joint counter-terrorism exercise, the CSTCB will establish a Counter Cyber Terrorism Response Team in October this year to strengthen preparedness to counter increasing terrorist threat and cyber terrorism.

APTDIST Deputy Commander Hong Yuen-kwan stated that the threat level of Hong Kong being subjected to terrorist attacks remains “moderate”. The Government and the Hong Kong Police Force have been monitoring the terrorism trends while strengthening counter-terrorism capabilities, preparedness and emergency response plans.

In the first phase of the exercise, a terrorist activated malicious software against the airport computer system at one of the check-in counters. Terrorism information and false flight information were displayed on the flight information display board, leading to chaos and fear. Officers of the AAHK and APTDIST arrived at the scene to conduct investigation and crowd management. ASU officers identified the terrorist and subdued him right before his planned physical attack on passengers, thus preventing serious injuries and casualties.

In the second phase, officers of the E-Security Audit and Incident Response Team of the CSTCB sped to the scene to provide assistance to the AAHK in conducting incident response and investigation. The infected computer system was immediately isolated. By locating the source of the attack, the system was restored. Measures were also taken to prevent the next attack.

The exercise not only strengthened the coordination and response capabilities between Police units and other stakeholders during a cyber and physical terrorist attack, but also enhanced public awareness of counter terrorism. Similar exercises will be conducted from time to time.

Please visit the following link to watch a video of the exercise：（https://www.facebook.com/HongKongPoliceForce/ videos/346596543027476/）.

A terrorist activates malicious software against the airport computer system at a check-in counter during the exercise.

False information on the flight information display board leads to chaos and fear among passengers.

ASU officers search for the terrorist.

ASU officers subdue the terrorist.

E-Security Audit and Incident Response Team of the CSTCB responds to the incident and conducts investigation on the computer system.