News Roundup: June 16-30, 2024
Bite-sized news and updates on the latest in Taiwan cybersecurity
Taiwan Strengthens Online Fraud Prevention with Google and LINE Collaboration
June 25, 2024
The Ministry of Digital Affairs (MODA) in Taiwan, led by Minister Yen-Nun Huang, has coordinated with Google and LINE to enhance online fraud prevention measures. Both platforms have committed to cooperating with the proposed "Anti-Fraud Crime Prevention Act" and will prioritize high-risk fraud cases in close communication with MODA. The meeting highlighted the upcoming launch of the "Anti-Fraud Reporting and Inquiry Platform," which will streamline reporting and checking of suspicious messages across social media. Google has implemented a real-name system for investment ads, reducing fraudulent content, while LINE's latest app update includes warnings for unknown accounts. Both companies affirmed their commitment to public-private partnerships, with Google focusing on public awareness campaigns and LINE utilizing its LINE TODAY service to promote fraud prevention. Minister Huang emphasized that these initiatives aim to create a safer digital environment and reduce online fraud risks in Taiwan.
Taiwan Hosts 2024 Asia Pacific Regional Internet Governance Forum
June 19, 2024
The Taiwan Network Information Center (TWNIC) is set to host the 2024 Asia Pacific Regional Internet Governance Forum (APrIGF) from August 21-23 at the NTUH International Convention Center. The forum, under the theme "Evolving Ecosystems, Enduring Principles: Shaping Responsible Internet Governance," will serve as a vital platform for discussion, exchange, and collaboration among stakeholders from across the Asia Pacific region. This event aims to advance Internet governance development by aggregating national IGF discussions and fostering regional cooperation. Registration for the forum is now open, and TWNIC is eager to bring together diverse voices to address crucial matters in Internet governance.
Taiwan-Poland Cybersecurity Collaboration Strengthened by CyCraft
June 20, 2024
Taiwan's CyCraft has significantly bolstered cybersecurity relations with Poland by showcasing its advanced, AI-driven solutions to a visiting Polish delegation. The demonstration highlighted CyCraft's capabilities in accelerating threat detection and enabling strategic decision-making. Poland, particularly concerned about state-sponsored APTs like APT29, engaged in detailed discussions about CyCraft's performance in the 2019 MITRE ATT&CK Evaluation on APT29. This collaboration underscores a shared commitment to nurturing technology talent and combating cyber threats, marking a promising step forward in Taiwan-Poland cybersecurity efforts.
Read about Taiwan’s Cyber Resilience in the Semiconductor Supply Chain.
Taiwanese Firm LCS and Partners Targeted by 8base Ransomware Group
June 21, 2024
The 8base ransomware group has announced on its blog that it has successfully targeted Taiwan-based company LCS and Partners, listing them among five new victims. The cybercriminal group claims to have obtained a vast array of sensitive assets from LCS and Partners, including invoices, receipts, accounting documents, personal data, certificates, employee contracts, confidentiality agreements, and personal files. This breach underscores the ongoing threat of ransomware attacks to Taiwanese companies and the critical importance of robust cybersecurity measures to protect sensitive business and personal information.
RedJuliett Cyber Espionage Targets Taiwan's Key Sectors
June 24, 2024
Taiwan's critical sectors have come under attack from RedJuliett, a likely China-linked cyber espionage group. Between November 2023 and April 2024, RedJuliett targeted 75 Taiwanese organizations, including government, academic, technology, and diplomatic institutions. Operating from Fuzhou, China, the group employs sophisticated tactics such as exploiting VPN and firewall vulnerabilities and using open-source tools to infiltrate and persist in networks. Their attacks aim to gather intelligence on Taiwan's economic policies and diplomatic relations. This campaign underscores the persistent cyber threats Taiwan faces from state-sponsored actors, highlighting the need for robust cybersecurity measures to protect its vital technological and governmental infrastructures.
More on RedJuliett: Taiwanese and Global Organizations Targeted from Cyber-Espionage Campaign
June 27, 2024
Taiwanese tech firms, universities, state agencies, and religious groups have become prime targets of the RedJuliett cyber-espionage campaign, attributed to suspected Chinese state-sponsored hackers. Active since mid-2021, RedJuliett, also known as Flax Typhoon, focuses on Taiwan's economic policies and diplomatic relations. Between December 2023 and April 2024, the group conducted reconnaissance and exploitation attempts on organizations involved in optoelectronics, facial recognition, semiconductors, and aerospace, including entities with military contracts. The hackers exploit vulnerabilities in internet-facing devices like firewalls and VPNs to gain initial access. Operating from Fuzhou, China, RedJuliett is expected to persist in its high-tempo cyber-espionage efforts, with a continued focus on Taiwan's key sectors.
Shifting Perceptions on Taiwan's Role in Latin American AI and Cybersecurity
June 27, 2024
At a roundtable hosted by the Global Taiwan Institute, Leland Lazarus, Associate Director of Florida International University's Jack Gordon Institute of Public Policy, highlighted the outdated perception in Latin America and the Caribbean that China's growth is inevitable. He suggested that Taiwan can play a pivotal role in changing this narrative by focusing on advancements in AI and cybersecurity. By leveraging its strengths in these areas, Taiwan can redefine its image and influence in the region, promoting a future-oriented perspective that emphasizes innovation and digital security.
Equation Corp Sells Access to Major Taiwanese Web Company on Dark Web
June 27, 2024
On the dark web marketplace USDoD, the advanced persistent threat group Equation Corp is allegedly selling employee-level access to a major Taiwanese web access company with over $7 billion in revenue. This access, which includes the ability to edit data, obtain certificates, and access employee emails, has been maintained for over two months through credentials from a former employee. The compromised access poses significant security risks for the Taiwanese company, highlighting the persistent threat from sophisticated cybercriminal groups targeting key economic players in Taiwan.
Read Data Breach at Chunghwa Telecom to learn more about data breaches impacting Taiwanese companies.
CyberSec Taiwan
About CyberSec Taiwan
Your source for the latest news and analysis on Taiwan-centric cybersecurity.