CYBERSEC 2024
Showcasing Taiwan's Accelerating Leadership in Global Cybersecurity
Overview
CYBERSEC 2024, held from May 14 to 16 at the Taipei Nangang Exhibition Center, was a vibrant gathering that spotlighted Taiwan’s growing influence in the global cybersecurity domain.1
Organized by iThome, with key partners such as the Administration for Digital Industries, moda and Trend Micro Inc., this year's event celebrated its 10th anniversary and embraced the theme "Generative Future," reflecting the rapid advancements in digital technology and the shifting cybersecurity landscape.
With over 300 engaging talks and presentations and more than 500 global brands showcasing their latest innovations, the conference has become a must-attend for a wide range of security professionals and technologists. New features like the Cyber Taiwan Pavilion, Cyber Talent, and the AIoT & Hardware Security Zone brought unique opportunities to participate, emphasizing Taiwan’s innovative spirit and readiness to tackle current and future cybersecurity challenges.
However, CYBERSEC isn’t just an exhibition; it’s a dynamic platform for forging international collaborations and strategic alliances, bringing together cybersecurity experts, industry leaders, and policymakers from around the globe.
To provide a deeper analysis on the significance of CYBERSEC 2024, this article will explore the conference’s highlights and key takeaways. It covers the event's crucial moments, including high-profile keynote speeches, innovative presentations from leading cybersecurity companies, and the expansive CYBERSEC EXPO. The article also discusses the political and global impact of the conference, underscoring Taiwan's growing role in international cybersecurity collaboration and innovation.
Keynote Speeches
To start, the keynote speeches at CYBERSEC 2024 were a cornerstone of the conference, providing attendees with profound insights into the latest cybersecurity challenges and innovations. These speeches brought together leading minds in the field to share their expertise and perspectives, setting the tone for the rest of the event. Two standout keynotes were "Evolving Cyber Espionage and Information Operations Threats to Taiwan" by Sandra Joyce, VP of Mandiant Intelligence at Google Cloud, and "Next Decade's Cybersecurity" by Jeremy Chiu, Founder & CTO of CyCraft Technology.
Sandra Joyce: Evolving Cyber Espionage and Information Operations Threats to Taiwan
Sandra Joyce's keynote address examined the sophisticated world of cyber espionage, focusing on the heightened threats faced by Taiwan. Joyce detailed how cyber espionage actors from China have significantly upgraded their capabilities, presenting a formidable challenge for defenders. She detailed the use of zero-day exploits in security devices, which allow attackers to penetrate systems undetected. Joyce also pointed to the growing utilization of internet of things (IoT) botnets to create infrastructure for cyber attacks, illustrating the evolving tactics used by these actors.
One of the most critical aspects of her presentation was the discussion on "living-off-the-land" techniques. These involve attackers using existing software and tools within a target’s environment to carry out their operations, making it harder to detect malicious activities. Joyce also shed light on the information operations campaigns specifically targeting Taiwanese audiences, designed to influence public perception and political stability. Her insights underscored the urgent need for robust cybersecurity measures and proactive defense strategies to combat these sophisticated threats.
Jeremy Chiu: Next Decade's Cybersecurity
Jeremy Chiu’s keynote took a futuristic approach, exploring the trajectory of cybersecurity over the next decade. Chiu provided a retrospective look at the evolution of cybersecurity technologies and methodologies, noting a significant shift from traditional threat detection products to comprehensive defense strategies. He pointed out that cybersecurity services are gaining importance, reflecting a growing need for specialized external assistance to combat increasingly complex threats.
Chiu also discussed the rise of artificial intelligence (AI) and automation in cybersecurity, bringing attention to both the opportunities and challenges they present. He warned of the potential disruptions that AI could bring to the cybersecurity landscape, such as automated attacks that can adapt and evolve without human intervention. His presentation called for innovative thinking and strategic foresight to anticipate and mitigate these emerging risks, emphasizing the need for a collaborative approach to secure the cyber future.
Additional Noteworthy Keynotes
Beyond these two keynotes, the conference featured a range of other compelling presentations that covered various aspects of cybersecurity. Brian Gorenc, VP of Threat Research at Trend Micro, delivered a talk on the software vulnerability lifecycle across different industry verticals. He examined the unique challenges faced by various sectors in managing vulnerabilities, offering insights into how industries like automotive and healthcare can enhance their security practices.
Joris den Bruinen, General Director of the Security Delta (HSD) foundation, provided an international perspective with his keynote on public-private partnerships in cybersecurity. He discussed how The Netherlands is addressing cyber threats through collaborative efforts between government, businesses, and knowledge institutes, offering valuable lessons for other countries.
Chester Huang from e-SOFT focused on digital transformation and zero-trust strategies, while Ziv Chang from VicOne addressed the cybersecurity concerns related to Advanced Driver Assistance Systems (ADAS) in the automotive industry. Kyle Lai, President & CISO of KLC Consulting, shared his expertise on the changing role of the Chief Information Security Officer (CISO), offering practical strategies for leading with confidence in uncertain times.
Themes and Takeaways
The keynotes at CYBERSEC 2024 collectively highlighted several recurring themes crucial for the future of cybersecurity. These included the need for enhanced cooperation between public and private sectors, the importance of adopting advanced technologies like AI responsibly, and the necessity of continuous education and talent development in the cybersecurity field. The speakers stressed that as cyber threats become more sophisticated, a proactive and collaborative approach is essential for building resilient cyber defenses.
On the Showroom Floor
CYBERSEC EXPO
This year, CYBERSEC EXPO 2024 expanded to become the largest cybersecurity exposition to date, featuring over 1,300 booths and cutting-edge solutions from more than 500 globally renowned companies. The expo was a must-visit for cybersecurity professionals, offering attendees the chance to engage directly with tech experts, participate in interactive demos, and explore the latest industry innovations, and providing valuable insights into new technologies and methods to help shape the future of digital security.
Cyber Taiwan Pavilion
A focal point of the expo, The Cyber Taiwan Pavilion, showcased the best of Taiwan’s homegrown cybersecurity technologies. In its 7th year, the pavilion gathered Taiwan’s major cybersecurity brands to present domestically developed products, services, and solutions. This year, the focus was on enhancing industrial resilience through cross-domain integration, with exhibits demonstrating the diversity and broad technological applications of Taiwan’s cybersecurity innovations. Visitors could immerse themselves in interactive experiences, simulating different cybersecurity scenarios in areas such as civilian-military communications, smart manufacturing, and smart healthcare. This hands-on approach provided a deeper understanding of how these technologies can be applied to real-world challenges, reinforcing Taiwan’s reputation as a leader in cybersecurity.
Asia Cyber Channel Summit
The Asia Cyber Channel Summit, an integral part of CYBERSEC, aimed to align Taiwan’s cybersecurity service providers with global technology and market partners. Launched in 2019, the summit has become an annual feature, fostering connections between potential buyers and vendors through briefings, networking, and matchmaking sessions. This year’s summit brought together cybersecurity agents, distributors, system integrators, and Managed Security Service Providers (MSSPs) from around the world, creating a vibrant environment for exchanging insights and forging new partnerships. The summit was a testament to Taiwan’s dedication to advancing its cybersecurity industry, promoting collaboration, and driving innovation in the global market.
Special Features and Zones
In addition to the main attractions, the expo included several special zones designed to address specific areas of cybersecurity. The AIoT & Hardware Security Zone was particularly noteworthy, focusing on AI and IoT security, offering demonstrations and discussions on how to protect these critical systems from emerging threats. As these technologies become increasingly integrated into everyday life, ensuring their security is paramount.
Another significant addition was the Cyber Talent zone, which emphasized the importance of developing the next generation of cybersecurity professionals. This area offered workshops, career counseling, and networking opportunities for students and young professionals, helping to bridge the skills gap in the cybersecurity industry and ensure a steady pipeline of talent for the future.
Global Impact
CYBERSEC has made significant strides in influencing global cybersecurity strategies, awareness, and cooperation. This year’s conference not only accentuated Taiwan’s advancements in the cybersecurity field but also asserted its role as a key player in the international cybersecurity space. The event’s extensive reach and robust agenda reinforced its global impact, drawing attention from industry leaders, policymakers, and cybersecurity professionals worldwide.
Advancing Global Cybersecurity Strategies
The conference served as a pivotal platform for advancing global cybersecurity strategies. By showcasing the latest innovations and solutions from over 500 global brands, the conference provided a comprehensive view of the current cybersecurity landscape. Attendees were able to engage with pioneering technologies and best practices, cultivating a deeper understanding of the tools and methods necessary to combat developing cyber threats.
As previously mentioned, CYBERSEC 2024 also facilitated crucial discussions on emerging cybersecurity trends and challenges, such as the rise of AI and automation, the increasing sophistication of cyber espionage, and the importance of zero-trust strategies. These conversations enabled participants to share insights and collaborate on developing robust cybersecurity frameworks that can be adapted and implemented across different regions and industries. This collective effort to enhance global cybersecurity resilience is vital for mitigating the risks posed by increasingly complex and pervasive cyber threats.
Forging International Collaboration and Strategic Alliances
One of the most significant impacts of CYBERSEC 2024 was its ability to foster international collaboration and strategic alliances. The conference brought together cybersecurity professionals and decision makers from around the world, creating a dynamic environment for networking and partnership-building. By facilitating these connections, CYBERSEC 2024 promoted the exchange of knowledge and standards, helping to bridge gaps and strengthen global cybersecurity defenses.
The presence of international sponsors and exhibitors, including tech giants like Google, Microsoft, Cisco, Splunk, CrowdStrike, SentinelOne, Cloudflare, and Palo Alto Networks, calling attention to the event’s global significance. These companies showcased their latest cybersecurity solutions, providing attendees with a diverse range of perspectives and expertise. This international participation not only elevated the conference’s prestige but also enhanced the importance of global cooperation in addressing cybersecurity challenges.
Strengthening Global Trade and Economic Growth
The advancements and collaborations bolstered at CYBERSEC 2024 have significant implications for global trade and economic growth. As cybersecurity becomes increasingly critical to the integrity of international supply chains, the innovations and strategies discussed at the conference are vital for protecting digital infrastructures and ensuring the smooth flow of commerce. By promoting robust cybersecurity practices, CYBERSEC 2024 contributed to the stability and security of global markets, enhancing trust and confidence in web-based transactions.
Moreover, the conference amplified Taiwan’s role as a reliable partner in the global cybersecurity industry. By showcasing its technological capabilities and innovative solutions, Taiwan positioned itself as a key contributor to global cybersecurity advancements. This recognition can attract international investment and develop economic growth, further solidifying Taiwan’s standing as a hub for cybersecurity innovation.
Stay up to date on Taiwan’s cybersecurity landscape by reading our bi-weekly News Roundup
Special Mention Presentations
CyCraft
CyCraft, a pioneering force in AI-driven cybersecurity solutions, captivated attendees with their innovative approaches and in-depth analysis. Known for their world-first Autonomous Threat Exposure Management Platform, XCockpit, CyCraft’s presentations at CYBERSEC 2024 showcased their cutting-edge solutions designed to anticipate and mitigate potential threats.
Future of Cybersecurity and AI Integration
In addition to Jeremy Chiu’s keynote on AI and automation, members of the CyCraft teams also presented on "Comprehensive Exploration of the Applicability and Performance of Taiwanese Language Models in Cybersecurity," evaluating various models like TAIDE and CyCraftGPT in addressing cybersecurity issues.
Cloud Security and Supply Chain Threats
In the session "Azure Ascend & Assault from Above," CyCraft focused on hybrid attacks involving cloud and on-premises networks, showcasing techniques attackers use to penetrate corporate clouds. The talk, "Odyssey of Supply Chain: Review a Decade of Supply Chain Threats", provided an in-depth analysis of supply chain attacks over the past decade, discussing techniques like malware implantation and island hopping attacks, and highlighting how AI assists in incident investigations.
AI in Cyber Threat Intelligence
CyCraft’s innovative use of AI in cybersecurity was evident in their session "The Art of Accelerating CTI Investigations with AI: Intelligent Multidimensional CTI Information Integration." They demonstrated how generative information retrieval technology enhances intelligence databases, aiding analysts in rapid incident investigation through conversational search engines and multi-modal models.
Zero Trust and Cloud Identity Management
The presentation "Zero the Enforcer: From Maturity Assessment to Practice in Policy Decision Point" proposed a Trust Inference Maturity Model for enterprises, integrating large language models to quickly generate and adjust risk rules. Additionally, "Measure Your Cloud Identity Attack Surface: Attack Scenario and Reduce Attack Surface" stressed the complexities of identity management in the cloud era and proposed systems to visualize and reduce the identity attack surface.
EDR Bypass and Public CTI Source Pollution
In "Silent Intruders: Dissecting EDR Bypass Strategies in APT Attacks," CyCraft examined sophisticated evasion techniques used in APT attacks, providing insights into detection and defense strategies. Lastly, "Public CTI Source Pollution - A Hidden Threat in Cybersecurity" discussed the risks of manipulated CTI sources and the importance of stringent management to prevent significant security events.
Team T5
Team T5, renowned for their deep expertise in cyber threat intelligence and recognized as the 2023 Company of the Year in Taiwanese Threat Intelligence by Frost & Sullivan, made a significant impact at CYBERSEC 2024 with their insightful presentations. Their sessions covered a broad spectrum of critical cybersecurity topics, demonstrating their extensive experience and understanding of cyber attackers in the Asia Pacific region.
Incident Response and Penetration Testing
The session titled "Reviewing IT Cybersecurity Defenses through the Incident Response Process" explored strategies to enhance cybersecurity resilience by analyzing whether threats can be detected before incidents occur. Additionally, their talk "A Year in the Life of a Security Engineer: Penetration Case Analysis and Consolidation in 30 Minutes" provided a comprehensive overview of their penetration testing experiences across various industries, calling out common security risks and optimization techniques. These presentations on incident response and penetration testing offered valuable lessons from real-life cases, accentuating the importance of preparation and timely threat detection.
Advanced Persistent Threats and Edge Device Exploits
Team T5 also shed light on the progressing environment of Advanced Persistent Threats (APTs). Their presentation "Unveiling TeleBoyi: Chinese APT Group Targeting Critical Infrastructure Worldwide" introduced TeleBoyi, a Chinese-nexus APT group focused on critical infrastructure, particularly in the telecommunication sectors. The discussion included detailed Tactic Techniques and Procedures (TTPs) and their overlap with other notorious APT groups. Another noteworthy session, "An Inside Look at China’s APTs Threat Community: The Masters of Edge Devices," revealed zero-day exploits in edge devices used by Chinese APT groups to spread disinformation and introduced new malware families targeting these devices.
Active Directory Misconfigurations and macOS Security
The session on "Discussing Attack Techniques Related to Misconfigurations in Active Directory (AD)" provided critical insights into how subtle misconfigurations in AD can be exploited, posing serious network security threats. Team T5 also explored macOS security in "Mind the Gate: Exploring Bypass Techniques for macOS's Built-in Antivirus Mechanism, Gatekeeper," examining how attackers bypass Apple’s security mechanisms and exampling recent attack trends.
Both Team T5 and CyCraft's presentations at CYBERSEC 2024 highlighted their significant contributions to the field of cybersecurity, demonstrating their expertise and innovative approaches to addressing some of the most pressing challenges in the industry.
Political Dimensions
“Cyber security is national security.”
The political significance of CYBERSEC 2024 cannot be overstated. As it does on an annual basis, the conference enhanced awareness to Taiwan's strategic importance in the global cybersecurity landscape and accented the government's promise to enhancing digital security. With high-profile political figures in attendance and a focus on national cybersecurity policies, the event showcased Taiwan’s proactive stance in addressing cyber threats and its dedication to fostering a secure online environment.
Presidential Endorsements and Government Support
While not her first time at the conference, President Tsai Ing-wen's presence at the opening of CYBERSEC 2024 was a clear indication of the event's political weight. She made history while attending in 2017, declaring the now famous line, “Cyber security is national security.”
In this year’s remarks, Tsai pledged to enhance Taiwan’s cyber resilience and expand cooperation with international partners to create a global information security defense alliance. She made clear the importance of cybersecurity in safeguarding national security and highlighted the government's efforts to create a favorable environment for the local cybersecurity sector through regulatory amendments and public sector investments. This support has already borne fruit, with the sector’s output surpassing NT$74.4 billion (US$2.29 billion) last year, putting it on track to meet the NT$80 billion (US$2.62 billion) goal set for 2025.2
President-elect Lai Ching-te [now current President] also made significant commitments to the cybersecurity industry during the conference. He promised to continue the government’s support for the sector, specifically addressing the importance of collaboration between the private sector, academia, and the government. Lai's administration plans to build on the foundation laid by President Tsai, ensuring seamless continuance of national cybersecurity policies, echoing her famous quote verbatim. He pointed out that Taiwan, being one of the most attacked countries in terms of cyber threats and disinformation, has developed a robust training ground for cybersecurity capabilities. This ongoing imperative from Taiwan's top political leaders boosts the strategic importance of cybersecurity to the nation's future.3
Strategic Alignment with National Policies
CYBERSEC 2024 strategically aligns with Taiwan's broader national policies, particularly the Program for Promoting Six Core Strategic Industries and the Sixth Phase (2021-2024) of its National Cybersecurity Program.
Launched by President Tsai in 2020, the Program for Promoting Six Core Strategic Industries identifies cybersecurity as a vital sector alongside information technology and renewable energy. As a strategic program it aims to position Taiwan at the forefront of global digital transformation by promoting innovation and ensuring robust cybersecurity measures.
The Sixth Phase of the National Cybersecurity Program further reinforces this consignment by focusing on establishing a secure cyber environment, comprehensive cybersecurity management, information sharing, talent cultivation, and international collaboration. This phase integrates emerging technologies like AI, IoT, and Big Data while ensuring that cybersecurity measures are continuously strengthened.
By aligning CYBERSEC 2024 with these national initiatives, Taiwan demonstrates its holistic approach to building a secure and innovative digital economy.
Read our recent article on Taiwan's Cyber Resilience in the Semiconductor Supply Chain
Geopolitical Implications
Taiwan's strategic location and its role in the global technology supply chain make it a focal point in the geopolitical cybersecurity arena. The island nation faces significant cyber threats from state and non-state actors, particularly from China. These threats magnify the critical need for robust cybersecurity defenses and international cooperation. As previously addressed, CYBERSEC 2024 displayed Taiwan's resilience and readiness to counter these threats, positioning it as a key player in the global cybersecurity community.
The conference also served as a platform for Taiwan to strengthen its alliances with like-minded countries. By featuring its cybersecurity capabilities and international partnerships, Taiwan aims to create a united front against common cyber threats. This approach not only enhances Taiwan’s security but also contributes to global cybersecurity resilience. The participation of international sponsors and exhibitors from leading technology companies elevated the need for global cooperation in solving cybersecurity challenges.
Enhancing Taiwan's Global Standing
CYBERSEC 2024 significantly enhanced Taiwan's standing as a fast-growing cybersecurity hub. The event demonstrated the country's ability to innovate and lead in the cybersecurity sector, attracting international attention and investment. Taiwan's proactive stance in developing and implementing advanced cybersecurity measures positions it as a reliable partner in the global supply chain, ensuring the security and integrity of cyber infrastructure worldwide.
The conference also targeted Taiwan's pledge to talent development and education in cybersecurity. By investing in the next generation of cybersecurity professionals, Taiwan is ensuring a steady pipeline of skilled experts who can address future challenges. This focus on education and talent cultivation is essential for maintaining Taiwan’s competitive edge and reinforcing its role as a leader in the cybersecurity industry.
Final Thoughts
CYBERSEC 2024 had a far-reaching impact on the global cybersecurity landscape, highlighting Taiwan's advancements and underscoring the political and strategic importance of the sector. The event showcased the government's commitment to enhancing cyber resilience, forging international partnerships, and aligning cybersecurity initiatives with national policies. By bringing together diverse perspectives and nurturing a spirit of cooperation, this year’s conference emphasized the importance of a proactive and collaborative approach to cybersecurity, reinforcing that no single entity can tackle these challenges alone.
Looking ahead, the insights and innovations presented at CYBERSEC 2024 will continue to shape future policies and strategies, both in Taiwan and internationally. Taiwan’s strategic initiatives and the outcomes of the conference position it well to lead the charge in creating a secure digital future. As Taiwan continues to invest in its cybersecurity capabilities and strengthen its global alliances, it will play a crucial role in building global resilience against cyber threats and ensuring the security and stability of digital infrastructures worldwide.
CyberSec Taiwan
About CyberSec Taiwan
Your source for the latest news and analysis on Taiwan-centric cybersecurity.
Disclaimer: The CyberSec Taiwan Substack account is not affiliated with iThome or its annual CYBERSEC conference in Taiwan.
Much of the content from this article is pulled directly from the CYBERSEC 2024 website. https://cybersec.ithome.com.tw/2024/en/
Scanlan, Sean. “Taiwan president calls for cybersecurity cooperation”. Taiwan News, 2024.
Hsiao, Alison. “Lai promises to continue cybersecurity development”. Focus Taiwan CNA English News, 2024.