China May Be Rehearsing a Digital Siege, Taiwan Warns

State actors are increasingly turning to digital twins to rehearse cyber operations. China’s alleged 'Expedition Cloud' platform creates virtual replicas of power grids, transport networks and communications systems belonging to perceived rivals. By allowing cyber teams to launch simulated attacks, the platform shortens the learning curve and reduces operational risk before any live intrusion. This approach mirrors military war‑gaming practices, but applied to the cyber domain, signalling a maturation of offensive cyber capabilities that could outpace traditional defense postures. As nations digitize critical services, such rehearsal tools become force multipliers, compelling defenders to anticipate attacks before they materialize.

Taiwan has become a de‑facto testing ground, enduring relentless phishing campaigns, utility intrusions and network mapping efforts. The National Security Council’s warning underscores that the island’s infrastructure is no longer a passive target but an active rehearsal arena for Beijing’s cyber forces. Such exposure accelerates the need for layered defenses, rapid incident response, and public‑private collaboration to harden power grids and transport links. The frequency of these incursions also pressures Taiwan to integrate cyber threat intelligence into everyday operational planning. Other nations watching Taiwan’s experience may pre‑emptively bolster their own cyber resilience to avoid becoming the next digital honeypot.

The emergence of platforms like Expedition Cloud raises urgent questions about international cyber norms and attribution. If simulated attacks evolve into real‑world disruptions, the line between preparation and aggression blurs, potentially triggering escalatory cycles among great powers. Policymakers must therefore craft clear deterrence strategies, invest in cyber‑resilience infrastructure, and pursue multilateral agreements that define acceptable testing boundaries. International cooperation on threat sharing can reduce duplication of effort and accelerate collective defense against such rehearsed assaults. For businesses operating in the region, understanding these dynamics is essential to mitigate supply‑chain risks and safeguard critical digital assets.