A note on a piece of paper indicating that China-based hackers, presumed to belong to a special unit under China's People's Liberation Army (PLA), had broken into the legislature's computer system, has rattled cyber security personnel over the past two weeks.
Some legislative assistants said they received the note from the Ministry of Justice's Investigation Bureau (MJIB) on July 6, but the bureau refused to confirm that it had sent the note.
Security concerns
According to the note, a backdoor program installed on 24 different computers in the offices of legislators from across party lines -- including one used by Legislative Speaker Wang Jin-pyng's (
"We have located the hackers and discovered that they were PLA officials based in Fujian Province," an anonymous source from the bureau was quoted by Lin Hong-chan (
An official with the MJIB's Computer Crime Prevention Center, who asked not to be named, told the Taipei Times in a telephone interview that the agency was aware of the situation and had warned some legislators of the attack.
Tracing the attack
Lin said the problem came to light because the MJIB found that some e-mails dispatched from a relay station based in the US had been sent in the name of Taiwan's legislators.
"They [MJIB special agents] traced the origin of those e-mails and found out it was Fujian-based hackers who had used a specially designed attack Web site to install a Trojan horse program on legislators' office computers," Lin said.
The note said that computers used in the offices of Chinese Nationalist Party (KMT) Legislator Su Chi (
The Trojan horse program also entered some computers in the offices of the DPP and TSU legislative caucuses, according to the note.
Lee Ming-yueh (
"Two computers out of six in our office were attacked. One was for keeping the legislator's schedule and the other was for receiving and sending all documents," he said.
He added: "The computer that was attacked in the [DPP] caucus office was used by an assistant who is in charge of gathering all information and reporting to the head of the caucus."
Inside help?
Lee's concern led to a presumption that the attack was not launched by Chinese hackers alone. Rather, the hackers had possibly collaborated with legislative staff.
"We haven't ruled out that there might be internal personnel involved in the matter, but we don't know this for sure at the moment," said Chen Hsi-yang (陳熙揚), director of the Information and Technology Department at the legislature.
Chen Shi-yang said that the legislature has set up firewalls, which can prevent the Chinese hackers from getting inside its computers.
"We installed a virus scanner for e-mails coming in and out of the legislature. Also, we used Dynamic Host Configuration Protocol [DHCP] to dynamically allocate IP addresses, meaning that there is no way that outside hackers can know any single IP address belonging to the legislature's computers and select their targets," he said.
In the wake of the release of the note, which listed the IP addresses and user numbers of the computers that were attacked, the legislature's cyber security personnel have since July 4 been trying to fix the virus problem.
"We have fixed 15 of the 24 affected computers and quarantined a virus in the other nine computers. Now we are waiting for Philippines-based Trend Micro [Corp] to get back to us on solutions for the various viruses on those nine computers," the director said.
Denial
The Information and Technology Department, however, denied that PLA was the source of the hackers and said the MJIB had first discovered the virus.
"According to Trend Micro's description of the virus, named BKDR_BIFROSE_JH, it was a backdoor-attached virus, but it was not from the PLA," Chen Shi-yang said.
The virus was found by the department's Security Operation Center and not by the MJIB, Chen Shi-yang added.
"Indeed, there's a threat that the PLA's hackers might attack the legislature's network system, but we have done our best to secure it against hackers," the director said.
Chinese Nationalist Party (KMT) Chairman Eric Chu (朱立倫), spokeswoman Yang Chih-yu (楊智伃) and Legislator Hsieh Lung-chieh (謝龍介) would be summoned by police for questioning for leading an illegal assembly on Thursday evening last week, Minister of the Interior Liu Shyh-fang (劉世芳) said today. The three KMT officials led an assembly outside the Taipei City Prosecutors’ Office, a restricted area where public assembly is not allowed, protesting the questioning of several KMT staff and searches of KMT headquarters and offices in a recall petition forgery case. Chu, Yang and Hsieh are all suspected of contravening the Assembly and Parade Act (集會遊行法) by holding
PRAISE: Japanese visitor Takashi Kubota said the Taiwanese temple architecture images showcased in the AI Art Gallery were the most impressive displays he saw Taiwan does not have an official pavilion at the World Expo in Osaka, Japan, because of its diplomatic predicament, but the government-backed Tech World pavilion is drawing interest with its unique recreations of works by Taiwanese artists. The pavilion features an artificial intelligence (AI)-based art gallery showcasing works of famous Taiwanese artists from the Japanese colonial period using innovative technologies. Among its main simulated displays are Eastern gouache paintings by Chen Chin (陳進), Lin Yu-shan (林玉山) and Kuo Hsueh-hu (郭雪湖), who were the three young Taiwanese painters selected for the East Asian Painting exhibition in 1927. Gouache is a water-based
Taiwan would welcome the return of Honduras as a diplomatic ally if its next president decides to make such a move, Minister of Foreign Affairs Lin Chia-lung (林佳龍) said yesterday. “Of course, we would welcome Honduras if they want to restore diplomatic ties with Taiwan after their elections,” Lin said at a meeting of the legislature’s Foreign Affairs and National Defense Committee, when asked to comment on statements made by two of the three Honduran presidential candidates during the presidential campaign in the Central American country. Taiwan is paying close attention to the region as a whole in the wake of a
OFF-TARGET: More than 30,000 participants were expected to take part in the Games next month, but only 6,550 foreign and 19,400 Taiwanese athletes have registered Taipei city councilors yesterday blasted the organizers of next month’s World Masters Games over sudden timetable and venue changes, which they said have caused thousands of participants to back out of the international sporting event, among other organizational issues. They also cited visa delays and political interference by China as reasons many foreign athletes are requesting refunds for the event, to be held from May 17 to 30. Jointly organized by the Taipei and New Taipei City governments, the games have been rocked by numerous controversies since preparations began in 2020. Taipei City Councilor Lin Yen-feng (林延鳳) said yesterday that new measures by
RSS