Hackers known as the Winnti Group were behind ransomware attacks on Taiwan’s two largest fuel suppliers, the Ministry of Justice Investigation Bureau said on Friday, adding that similar attacks on 10 domestic companies are likely in the next few days.
On May 4, state-run CPC Corp, Taiwan announced that its computer system had been infected with ransomware, causing payment issues at gas stations.
Formosa Petrochemical Corp reported similar issues the following day, and shut down its computer systems.
Powertech Technology Inc, a Hsinchu-based semiconductor firm, also reported a ransomware attack on May 5.
The bureau said that the Winnti Group, which is believed to be from China, likely had access to the firms’ computer systems for months before it carried out the attacks.
Liu Chia-jung (劉家榮), deputy director of the bureau’s Information Security Workstation, said that the hackers gained access to the companies’ Active Directory — a service for managing computers and other devices within a network — and used its task scheduling function to distribute the ransomware throughout each company’s computer network.
When employees’ computers tried to access the network at the start of the work day, a message appeared stating that their files had been encrypted and demanding a ransom of US$3,000 to unlock them, Liu said.
The bureau has asked international authorities investigating six German and Swiss e-mail accounts believed to be connected to the crimes for help, Liu said.
It has also asked US authorities to investigate a US-based company from which the group rented a virtual private server.
The bureau said it had information that the hackers planned to carry out similar attacks on 10 other Taiwanese companies in the next few days, but added that it did not know which are being targeted.
The bureau said that it has advised companies on several steps they could take to improve their digital security.
CPC, which local media reported was suffering computer issues again on Thursday, released a statement on Friday blaming the issue on an operational error, and said that it had strengthened its information security procedures following the May 4 attack.
‘DENIAL DEFENSE’: The US would increase its military presence with uncrewed ships, and submarines, while boosting defense in the Indo-Pacific, a Pete Hegseth memo said The US is reorienting its military strategy to focus primarily on deterring a potential Chinese invasion of Taiwan, a memo signed by US Secretary of Defense Pete Hegseth showed. The memo also called on Taiwan to increase its defense spending. The document, known as the “Interim National Defense Strategic Guidance,” was distributed this month and detailed the national defense plans of US President Donald Trump’s administration, an article in the Washington Post said on Saturday. It outlines how the US can prepare for a potential war with China and defend itself from threats in the “near abroad,” including Greenland and the Panama
A magnitude 4.9 earthquake struck off Tainan at 11:47am today, the Central Weather Administration (CWA) said. The hypocenter was 32.3km northeast of Tainan City Hall at a depth of 7.3km, CWA data showed. The intensity of the quake, which gauges the actual effect of a seismic event, measured 4 in Tainan and Chiayi County on Taiwan's seven-tier intensity scale, the data showed. The quake had an intensity of 3 in Chiayi City and County, and Yunlin County, while it was measured as 2 in Kaohsiung, Nantou County, Changhua County, Taitung County and offshore Penghu County, the data showed. There were no immediate reports of
The Chinese Nationalist Party (KMT) is maintaining close ties with Beijing, the Democratic Progressive Party (DPP) said yesterday, hours after a new round of Chinese military drills in the Taiwan Strait began. Political parties in a democracy have a responsibility to be loyal to the nation and defend its sovereignty, DPP spokesman Justin Wu (吳崢) told a news conference in Taipei. His comments came hours after Beijing announced via Chinese state media that the Chinese People’s Liberation Army’s Eastern Theater Command was holding large-scale drills simulating a multi-pronged attack on Taiwan. Contrary to the KMT’s claims that it is staunchly anti-communist, KMT Deputy
RESPONSE: The government would investigate incidents of Taiwanese entertainers in China promoting CCP propaganda online in contravention of the law, the source said Taiwanese entertainers living in China who are found to have contravened cross-strait regulations or collaborated with the Chinese Communist Party (CCP) could be subject to fines, a source said on Sunday. Several Taiwanese entertainers have posted on the social media platform Sina Weibo saying that Taiwan “must be returned” to China, and sharing news articles from Chinese state media. In response, the Mainland Affairs Council (MAC) has asked the Ministry of Culture to investigate whether the entertainers had contravened any laws, and asked for them to be questioned upon their return to Taiwan, an official familiar with the matter said. To curb repeated
RSS