News Roundup: December 1-15, 2024
Bite-sized news and updates on the latest in Taiwan cybersecurity
SmokeLoader Malware Targets Taiwanese Industries
December 2, 2024
Taiwan’s manufacturing, healthcare, and IT sectors have been targeted by a new campaign leveraging SmokeLoader malware, according to FortiGuard Labs. This malware, known for its adaptability and advanced evasion techniques, directly executes attacks via modular plugins rather than serving as a downloader for additional payloads. The attack chain begins with phishing emails containing malicious Microsoft Excel attachments that exploit outdated security flaws, deploying SmokeLoader through the Ande Loader. SmokeLoader’s plugins are designed to steal sensitive data, such as credentials and browser cookies, from widely used software like Chrome, Outlook, and Thunderbird. This resurgence of SmokeLoader, despite a significant decline after Europol’s Operation Endgame, highlights its persistent threat to critical Taiwanese industries and the need for strengthened cybersecurity measures against evolving malware tactics.
ACE 2024 Explores Critical Strategies to Shape Taiwan's Cyber Resilience
December 11, 2024
The Advanced Cybersecurity Exploration Conference (ACE) 2024, hosted by Taiwan's Administration for Cyber Security under the Ministry of Digital Affairs (MODA), serves as a crucial platform for fostering global collaboration on cybersecurity. This year’s focus areas include "Cyber Resilience" and "Cybersecurity Risk Governance and Policy Management," addressing systemic risks and policy adaptation in an era dominated by emerging technologies like AI. Distinguished experts from academia, industry, and government sectors convened to exchange strategies for protecting critical infrastructure and securing digital landscapes. Taiwan’s commitment to advancing cybersecurity frameworks, enhancing governance, and integrating international expertise underscores its proactive approach to navigating evolving cyber threats
Surge in Hacktivist Activity Allegedly Targets Taiwan
December 11, 2024
Taiwan has allegedly been hit by a fresh wave of hacktivist attacks, with reports suggesting that pro-Russian and pro-Palestinian groups have launched DDoS operations and defaced websites. While these claims remain unverified, they echo a broader trend of hacktivist campaigns throughout 2024. This surge follows a notable attack in September, where the pro-Russian group NoName057 allegedly targeted Taiwanese government websites in retaliation for comments made by Taiwan’s president. These recurring incidents showcase how geopolitical tensions continue to fuel hacktivist activity, posing ongoing risks to Taiwan’s digital infrastructure.
Read more about The Dark Web Threat Landscape Facing Taiwan
TeamT5’s Threat Analyst Summit 2024 Strengthens Global Cybersecurity Leadership
December 12, 2024
The Threat Analyst Summit 2024 brought together global cybersecurity experts to tackle the evolving landscape of digital threats under the theme "Stay Informed, Stay Secured." Taiwan's contributions took center stage, with TeamT5 showcasing cutting-edge research and insights. Charles Li, CTO and Chief Analyst of TeamT5, presented an analysis of the 2024 threat landscape, highlighting blurred lines in cyberattacks and advanced persistent threat (APT) trends. Other TeamT5 researchers, Sharon Liu and Tim Chen, addressed critical issues like Active Directory attacks and a decade of stealthy Chinese APT operations, emphasizing Taiwan’s pivotal role in understanding and mitigating state-sponsored espionage. Sessions also included lessons from Taiwan and Ukraine’s experiences with opportunistic attacks, underscoring Taiwan’s growing influence in shaping global strategies for cybersecurity resilience and intelligence.
Read about the CYBERSEC 2024 conference
CyberSec Taiwan
About CyberSec Taiwan
Your source for the latest news and analysis on Taiwan-centric cybersecurity.