A suspected Chinese state-sponsored hacking group has stepped up its targeting of Taiwanese organizations, particularly those in government, education, technology and diplomacy sectors, a report by cybersecurity intelligence company Recorded Future said.
The cyberattacks by the group known as RedJuliett were observed between November last year and April, during the lead-up to the presidential and legislative elections in January and the subsequent change in administration.
RedJuliett has targeted Taiwanese organizations in the past, but this is the first time that activity was seen at such a scale, a Recorded Future analyst said, speaking on condition of anonymity out of safety concerns.
Photo: Reuters
The report said that RedJuliett attacked 24 organizations, including government agencies in places like Laos, Kenya and Rwanda, as well as Taiwan.
It also hacked into Web sites of religious organizations in Hong Kong and South Korea, a US university and a Djiboutian university. The report did not identify the organizations.
Recorded Future said RedJuliett accessed the servers of those places through a vulnerability in their SoftEther enterprise virtual private network (VPN) software, an open-source VPN that allows remote connections to an organization’s networks.
RedJuliett has been observed attempting to break into systems of more than 70 Taiwanese organizations including three universities, an optoelectronics company and a facial recognition company that has contracts with the government.
It was unclear if RedJuliett managed to break into those organizations: Recorded Future only said it observed the attempts to identify vulnerabilities in their networks.
RedJuliett’s hacking patterns match those of Chinese state-sponsored groups, Recorded Future said.
Based on the geolocations of Internet protocol addresses, RedJuliett is likely based out of Fuzhou, in China’s Fujian Province, the coast of which faces Taiwan, it said.
“Given the close geographical proximity between Fuzhou and Taiwan, Chinese intelligence services operating in Fuzhou are likely tasked with intelligence collection against Taiwanese targets,” the Recorded Future report said.
“RedJuliett is likely targeting Taiwan to collect intelligence and support Beijing’s policymaking on cross-strait relations,” it said.
The Ministry of Foreign Affairs and the Chinese Ministry of Foreign Affairs did not immediately comment.
Microsoft in August last year reported that RedJuliett, which the US company tracks under the name Flax Typhoon, was targeting Taiwanese organizations.
China has in the past few years stepped up military drills around Taiwan and imposed economic and diplomatic pressure on the nation.
Relations between Taipei and Beijing worsened after the election of William Lai (賴清德), who China has deemed a “separatist,” after he said in his inauguration speech that Taiwan and China were not subordinate to each other.
Like his predecessor Tsai Ing-wen (蔡英文), Lai has said that there is no need to declare Taiwanese independence because it is already an independent sovereign state.
Like many other countries including the US, China has been known to engage in cyberespionage. Earlier this year, the US and the UK accused China of a sweeping cyberespionage campaign that allegedly affected millions of people.
Beijing has consistently denied engaging in any form of state-sponsored hacking, instead saying that China itself is a major target of cyberattacks.
According to Recorded Future, Chinese state-sponsored groups will likely continue to target Taiwanese government agencies, universities and critical technology companies via “public-facing” devices such as open-source VPN software, which provide limited visibility and logging capabilities.
Companies and organizations can best protect themselves by prioritizing and patching vulnerabilities once they become known, Recorded Future’s threat intelligence analyst said.
An undersea cable to Penghu County has been severed, the Ministry of Digital Affairs said today, with a Chinese-funded ship suspected of being responsible. It comes just a month after a Chinese ship was suspected of severing an undersea cable north of Keelung Harbor. The National Communications and Cyber Security Center received a report at 3:03am today from Chunghwa Telecom that the No. 3 cable from Taiwan to Penghu was severed 14.7km off the coast of Tainan, the Ministry of Digital Affairs said. The Coast Guard Administration (CGA) upon receiving a report from Chunghwa Telecom began to monitor the Togolese-flagged Hong Tai (宏泰)
A cat named Mikan (蜜柑) has brought in revenue of more than NT$10 million (US$305,390) for the Kaohsiung MRT last year. Mikan, born on April 4, 2020, was a stray cat before being adopted by personnel of Kaohsiung MRT’s Ciaotou Sugar Refinery Station. Mikan was named after a Japanese term for mandarin orange due to his color and because he looks like an orange when curled up. He was named “station master” of Ciaotou Sugar Refinery Station in September 2020, and has since become famous. With Kaohsiung MRT’s branding, along with the release of a set of cultural and creative products, station master Mikan
RISING TOURISM: A survey showed that tourist visits increased by 35 percent last year, while newly created attractions contributed almost half of the growth Changhua County’s Lukang Old Street (鹿港老街) and its surrounding historical area clinched first place among Taiwan’s most successful tourist attractions last year, while no location in eastern Taiwan achieved a spot in the top 20 list, the Tourism Administration said. The listing was created by the Tourism Administration’s Forward-looking Tourism Policy Research office. Last year, the Lukang Old Street and its surrounding area had 17.3 million visitors, more than the 16 million visitors for the Wenhua Road Night Market (文化路夜市) in Chiayi City and 14.5 million visitors at Tainan’s Anping (安平) historical area, it said. The Taipei 101 skyscraper and its environs —
Taiwan on Friday said a New Zealand hamburger restaurant has apologized for a racist remark to a Taiwanese customer after reports that it had first apologized to China sparked outrage in Taiwan. An image posted on Threads by a Taiwanese who ate at Fergburger in Queenstown showed that their receipt dated Sunday last week included the words “Ching Chang,” a racial slur. The Chinese Consulate-General in Christchurch in a statement on Thursday said it had received and accepted an apology from the restaurant over the incident. The comment triggered an online furor among Taiwanese who saw it as an insult to the
RSS