News Roundup: March 23-31, 2024
Bite-sized news and updates on the latest in Taiwan cybersecurity
Taiwan Shares Communication Resilience Expertise at Prague Cyber Security Conference
March 23, 2024
Deputy Minister Herming Chiueh of Taiwan's Ministry of Digital Affairs (moda) recently attended the Prague Cyber Security Conference 2024, where he shared Taiwan's experiences in communication resilience response. The conference, known for its focus on network and telecommunications security, drew government officials from over 30 countries. Against the backdrop of increasing threats to subsea cables, Deputy Minister Chiueh highlighted Taiwan's proactive measures to safeguard communication networks, including the swift adoption of backup communication technologies following incidents like the disruption of subsea cables connecting Matsu to Taiwan in March 2023. Through bilateral discussions with cybersecurity officials from the Czech Republic and engagement with international cybersecurity experts, Taiwan aims to deepen cooperation and enhance its cybersecurity defenses, crucial in the context of its geopolitical position.1
Taiwan Microelectronics Firm Targeted by Alphalocker Ransomware Group
March 26, 2024
On X (formerly Twitter), threat intelligence company, ThreatMon Advanced Ransomware Monitoring, posted about the targeting of Taiwan microelectronics firm, CRM(WT Microelectronics), by the alphalocker ransomware group. The ThreatMon Threat Intelligence Team identified the inclusion of CRM among the victims of alphalocker, highlighting the concerning trend of cyber threats faced by companies, including those in Taiwan's critical industries.2
Unauthorized VPN Access to Taiwanese Manufacturer Up for Sale on Dark Web
March 27, 2024
Reports surface of unauthorized VPN access to a prominent Taiwanese industrial equipment manufacturing company being offered for sale, sparking concerns over cybersecurity breaches. With the company boasting revenues exceeding $1.6 billion, the potential sale of access to its systems raises alarm bells in the cybersecurity community. The starting price for this unauthorized access is set at $3000, indicating the severity of the breach and the potential risks posed to sensitive data and operations. The incident underscores the critical need for robust cybersecurity measures to safeguard Taiwanese industries against malicious threats and unauthorized access attempts.3
A Linux-Based Cyber Threat Targeting Taiwan
March 28, 2024
Recent findings from cybersecurity researchers at Kaspersky are shedding light on the emergence of a Linux version of DinodasRAT, a sophisticated multi-platform backdoor, in the cyber threat landscape. Known for its ability to harvest sensitive data, DinodasRAT has been observed targeting regions including China, Taiwan, Turkey, and Uzbekistan. With attributes akin to its Windows counterpart, this C++-based malware variant, also known as XDealer, poses significant risks to Linux servers, particularly those based on Red Hat and Ubuntu distributions. The detection of this malware underscores the evolving tactics of threat actors, reflecting a growing trend of targeting Linux servers for espionage and data exfiltration purposes. This revelation highlights the importance of robust cybersecurity measures, especially in regions like Taiwan, to mitigate the risks posed by such sophisticated threats and safeguard critical infrastructure from cyber attacks.4
Trellix Analyst Offers Insight into Taiwan’s 2024 Election Security — Trellix Cybersecurity Summit
March 28, 2024
As the 2024 election approached in Taiwan, the intricacies of election security took center stage, offering valuable lessons for U.S. voters. Anne An, Threat Intelligence Analysis Manager at Trellix, shared insights during Trellix's Cybersecurity Summit, emphasizing the evolving landscape of cybersecurity threats faced by public sector organizations. Against the backdrop of new cybersecurity mandates and guidance, the summit convened top decision-makers to address critical issues such as ransomware, zero trust, global security, and XDR. The discussions underscored the importance of proactive measures in safeguarding electoral processes, highlighting Taiwan's experience as a pivotal case study for election security considerations globally.5
Taiwan's Satellite System Trials and Cybersecurity Measures
March 28, 2024
Taiwan's Ministry of Digital Affairs unveils plans to fortify the nation's communication networks through rigorous testing of two satellite systems, emphasizing cybersecurity in the face of evolving threats. The initiative includes the evaluation of a medium Earth orbit satellite system on Taiping Island, expected to amplify bandwidth by fivefold, alongside the activation of the OneWeb low Earth orbit system. Minister Audrey Tang underscores the imperative of cybersecurity, with the National Communications and Cyber Security Center having shared over 760,000 cybersecurity insights with critical infrastructure operators last year alone. Additionally, the ministry aims to enhance protection for vital infrastructure, requiring cybersecurity plans from service providers to prevent disruptions from natural disasters or cyber breaches. This proactive approach aligns with Taiwan's commitment to bolstering digital resilience while accelerating the nationwide expansion of 5G and broadband services, reaching approximately 97.4% and 76.29% coverage rates, respectively, by the end of last year.6
US States React to China-Taiwan Tensions with New Cybersecurity and Supply Chain Legislation
March 28, 2024
As tensions escalate between China and Taiwan, state legislatures across the United States are responding with new bills aimed at assessing potential vulnerabilities in supply chains and cybersecurity infrastructure. The recent introduction of legislation in Arizona, Nebraska, and Illinois underscores concerns about the economic and security implications of conflict in the Taiwan Strait. Specifically, the bills mandate the evaluation of cyber vulnerabilities and the potential impact of supply chain disruptions between the states and their Pacific-based partners. While these bills signal heightened awareness of geopolitical risks, they also reflect a growing imperative to safeguard critical industries, particularly for businesses reliant on supply chains linked to Taiwan or China. As policymakers and stakeholders monitor these developments, the focus remains on ensuring resilience and preparedness in the face of evolving geopolitical dynamics.7
Taiwan Introduces Stricter Penalties and Centralized Oversight in Anti-Fraud Legislation Amendment
March 28, 2024
Amidst growing concerns over scams and fraud, Taiwan's Executive Yuan has released version 1.5 of the government’s anti-fraud strategy guidelines, emphasizing the importance of data security maintenance to prevent fraud. The Legislative Yuan passed amendments to the Personal Data Protection Act, significantly increasing fines for non-governmental agencies that fail to implement proper security measures or violate data security maintenance measures. Additionally, the amendments centralize oversight of the PDPA under the newly established Personal Data Protection Commission (PDPC), aiming to enhance the protection and integrated use of personal data. These legislative changes reflect Taiwan's commitment to combatting fraud and ensuring robust data protection measures, with the PDPC set to be formally established in August 2025 to oversee enforcement and coordination efforts.8
CyberSec Taiwan
About CyberSec Taiwan
Your source for the latest news and analysis on Taiwan-centric cybersecurity.
Moda. https://moda.gov.tw/en/press/press-releases/11744
TreatMon. https://x.com/TMRansomMonitor/status/1772533098678235474?s=20
Daily Dark Web. https://x.com/DailyDarkWeb/status/1773062439166255272?s=20
The Hacker News. https://thehackernews.com/2024/03/linux-version-of-dinodasrat-spotted-in.html
Trellix. Anne An. https://cybersecuritysummit.upgather.com/virtual/live/
Taipei Times. Shelley Shan. https://www.taipeitimes.com/News/front/archives/2024/03/28/2003815575
The CyberWire. https://thecyberwire.com/newsletters/caveat-briefing/2/12
Winkler Partners. https://winklerpartners.com/2403pdpa-update/