News Roundup: April 16-30, 2024
Bite-sized news and updates on the latest in Taiwan cybersecurity
Strengthening Taiwan-Australia Cybersecurity and Trade Relations
April 10, 2024
During a recent visit to Taipei, Australian parliamentarians emphasized the need for closer collaboration with Taiwan in cybersecurity and trade. Julian Hill, chair of the Joint Committee of Public Accounts and Audit, highlighted Taiwan's frequent cyber attacks and the valuable lessons Australia could learn from Taiwan's experiences. He and other MPs discussed the mutual challenges both nations face from cyber espionage, impacting industrial and intellectual property sectors. The talks underscored the importance of maintaining diplomatic and economic ties, with Australian support for Taiwan's participation in international organizations, highlighting a commitment to ensuring ongoing dialogue and cooperation in the Asia-Pacific region.1
BlackSuit Cyber Threat Group Targets UPC Technology Corporation in Taiwan
April 16, 2024
In a recent cyber incident, the BlackSuit threat group has reportedly targeted UPC Technology Corporation, a key player in Taiwan's software industry. The attack has put the spotlight on UPC Technology, a company with revenues under $5 million. Currently, the specifics regarding the amount of data compromised and the ransom demanded remain undisclosed.2 The image above shows the alleged attackers dark web post of the data breach.
Taiwan's New Digital Affairs Minister to Strengthen Information Security and Digital Transformation
April 16, 2024
Taiwan has appointed Huang Yen-nun as the new Minister of Digital Affairs, signaling a robust push towards enhancing the nation's information security and accelerating digital transformation. Huang has a rich background in data security, communications, artificial intelligence, and was a distinguished research fellow at Academia Sinica's CITI. His agenda includes bolstering digital governance, privacy protection, and scam prevention. Huang's previous advocacy for stringent penalties for data regulation violations, enhanced cybersecurity insurance, and talent development underscores his commitment to advancing Taiwan's cybersecurity framework. His comprehensive understanding of government operations, coupled with his experience at prestigious institutions like AT&T Bell Labs, positions him uniquely to lead Taiwan's digital industries amidst evolving global cyber threats.3
MOFA Takes a Cautionary Stance on Dark Web Sales
April 18, 2024
The Ministry of Foreign Affairs (MOFA) of Taiwan has issued a stern warning to the public regarding the purported sale of confidential diplomatic documents on the dark web. Recent reports surfaced in the Liberty Times, claiming that undisclosed diplomatic materials, dating from 2022 to March of the current year and touted as previously unreleased, are being sold by dubious parties. MOFA has expressed skepticism about the authenticity of these documents, suggesting the involvement of foreign tampering, forgery, and a targeted misinformation campaign against Taiwan. In response, the ministry is actively coordinating with other agencies to investigate these allegations thoroughly and is advising citizens to remain vigilant against such deceptive tactics that threaten to undermine governmental and societal trust.4
The Escalating Threat of Androxgh0st Malware in Taiwan and Globally
April 21, 2024
Recent findings by Veriti Research have brought to light the alarming spread of the Androxgh0st malware, which has notably compromised over 600 servers across the U.S., India, and Taiwan.
This malware exploits the following critical vulnerabilities to establish web shells that enable remote control over affected servers.
In Taiwan, where the digital infrastructure is integral to both economic and social systems, the impact of such breaches could be profound. The attackers have focused on building botnets to further expand their capability for credential theft and establish backdoor access, particularly targeting Laravel applications and cloud-based services. This situation underscores the urgency for Taiwanese organizations to enhance their cybersecurity defenses by implementing robust patch management, continuous monitoring of web shell deployments, and employing advanced behavioral analysis tools. 5
Key Highlights from the 41st TWNIC IP Open Policy Meeting and ICANN APAC-TWNIC Engagement Forum 2024
April 23-24, 2024
The 41st TWNIC IP Open Policy Meeting was held concurrently with the ICANN APAC-TWNIC Engagement Forum 2024, offering a critical platform for discussions on network technology, industry development, and IP policy management. This collaboration highlights the commitment of both organizations to promoting a stable and secure Internet, bringing together a diverse array of viewpoints from experts and stakeholders across the Asia Pacific region and Taiwan. Below are two standout agenda discussions from the forum:
Cyber Security Events and Vulnerabilities Handling
The IP Policy Resource Management Meeting’s Cybersecurity Special Interest Group addressed key issues in cybersecurity, focusing on how organizations manage cybersecurity events and vulnerabilities. Discussions centered on the collaboration between Taiwan's government and private sectors to enhance cybersecurity measures, sharing strategies, practices, and case studies aimed at strengthening defenses against escalating cyber threats. This meeting underscored the ongoing efforts and the critical need for strategic partnerships in cybersecurity within Taiwan.
Check out the slides presented in this discussion.
A Different Approach to Enhance the Internet's Security and Stability: Looking at Content-Related Commitments
The Digital Rights/Privacy & Online Safety track explored innovative strategies to fortify online security and stability. The discussions focused on a range of efforts, including mandatory Public Interest Commitments (PICs) and Registry Voluntary Commitments (RVCs) to curb DNS abuse. The session highlighted how these commitments, exemplified by case studies like the .KiDS domain, play a crucial role in addressing cybersecurity threats and content moderation across various platforms. This approach underscores a broadening scope of collaboration and commitment within the digital landscape to enhance safe and secure internet usage.
MODA Officially Assumes Control of TWCERT/CC
April 25, 2024
The National Information Security Research Institute, a body overseen by Taiwan's Ministry of Digital Affairs, has officially assumed control of the Taiwan Computer Network Crisis Management and Coordination Center (TWCERT/CC) as of January 1, 2024. This strategic move is designed to enhance Taiwan's cybersecurity infrastructure by leveraging the Institute's extensive experience in information security management. The transition aims to create a more cohesive and proactive approach to cybersecurity challenges, emphasizing public-private collaboration and the sharing of intelligence and resources. Through this initiative, the Institute focuses on improving response coordination to cybersecurity threats, offering continuous support and consulting to enterprises, and expanding international cooperation. By integrating these efforts, the Institute is setting a robust foundation for Taiwan's digital defense, aligning its strategies with global standards and strengthening the nation's resilience against increasing cyber threats.6
CyCraft Announces Speaker Presentations for CYBERSEC 2024
April 25, 2024
At the upcoming CYBERSEC 2024 conference in Taiwan, the CyCraft research team is set to unveil cutting-edge developments in cybersecurity, emphasizing two pivotal themes: "AI" and "Attack Surface Management". The latter will spotlight CyCraft's proactive strategies in mitigating enterprise risks by analyzing potential attack vectors and improving security postures. Key presentations will explore comprehensive aspects of attack surface management, including challenges in identity and access management (IAM), hybrid cloud-ground attack paths, and the complexities of integrating external data sources. Furthermore, the team will discuss the application of the Trust Inference Maturity Model to refine and clarify Zero Trust architecture.7
Taiwan's Digital Technology Startups Make Significant Strides at TW-PH Tech Summit
April 25, 2024
Taiwan's digital technology scene marked a significant milestone with the successful hosting of the TW-PH Tech Summit in Manila, spearheaded by Startup Island TAIWAN and featuring 15 innovative startups. This first-of-its-kind event, supported by key Philippine governmental bodies and business communities, showcased Taiwan's burgeoning capabilities in sectors such as e-commerce, cybersecurity, and smart manufacturing. The summit facilitated meaningful collaborations and discussions, particularly around the themes of big data and the new digital economy, attracting notable participants like the Philippine fintech unicorn GCash and the electric vehicle pioneer Gogoro. Key discussions focused on the utilization of digital solutions to foster smart city developments and enhance data privacy in business operations. The event not only highlighted the dynamic synergy between Taiwanese and Philippine digital landscapes but also underscored Taiwan's role as a vital player in the global digital economy, fostering cross-border partnerships and expanding its footprint in Southeast Asian markets.8
CyberSec Taiwan
About CyberSec Taiwan
Your source for the latest news and analysis on Taiwan-centric cybersecurity.
Yeh, Joseph. “Australian MPs seek closer cooperation with Taiwan on cybersecurity”. Focus Taiwan, CNA English News. 2024.
Su Szu-yun Yeh Su-ping, Lai Yu-chen, and Alison Hsiao. “Newly appointed digital minister to ramp up country's information security”. Focus Taiwan CNA English News. 2024.
Yu, Matt and Evelyn Yang. “MOFA warns against trusting documents sold on dark web”. Focus Taiwan CNA English News. 2024.
Ahmed, Deeba. “Androxgh0st Malware Compromises Servers Worldwide for Botnet Attack”. Hack Read. 2024.
National Institute of Cyber Security. “資安院營運TWCERT/CC推動公私協作聯防強化企業資安”. 2024
CyCraft announces presentations at CYBERSEC 2024. Facebook post. 2024