The Criminal Investigation Bureau has admitted that it handed out 54 malware-infested thumb drives to the public at a data security expo hosted by the Presidential Office from Dec. 11 to Dec. 15 last year.
The malware-infected USB sticks were among 250 drives that the bureau gave to the winners of a game about cybersecurity knowledge.
The malware program with the file name XtbSeDuA.exe was designed to collect personal data and transmit it to a Poland-based IP address that then bounces the information to unidentified servers, the bureau said, adding that it was known to have been used by an electronic fraud ring uncovered by Europol in 2015.
Only older, 32-bit computers are susceptible to the malware and common anti-virus software can successfully detect and quarantine it, the bureau said.
The 8-gigabyte thumb drives were purchased from contractors and some of them were made in China, but the bureau has ruled out Chinese espionage, it said, adding that the infection originated from an infected work station at New Taipei City-based contractor Shawo Hwa Industries Co (少華企業).
An employee at the company used the affected computer to transfer an operating system to the drives and test their storage capacity, transmitting the malware to 54 units, the bureau said.
Random sampling of the thumb drives, which were sourced from various contractors, failed to discover the malware, it added.
Distribution was halted in the afternoon of Dec. 12, after members of the public complained that drives had been flagged by their anti-virus programs, it said, adding that 20 drives have been recovered while 34 “remain in the wild.”
The server receiving the data from the malware was shut down after the bureau took measures to address the issue, it said.
National Police Agency Director-General Chen Chia-chin (陳家欽) and National Security Council cybersecurity adviser Lee Der-tsai (李德財) were briefed on the incident, an anonymous source said.
National security officials are unhappy that a Presidential Office event was compromised and concerned that the event might have been deliberately targeted by a hacker group, the source said, adding that they have demanded the bureau launch another probe.
The bureau has apologized to the Presidential Office and other government agencies that participated in the expo, the source said.
TOO CLOSE FOR COMFORT: A US Air Force KC-135 tanker came less than 1,000 feet of an EVA plane and was warned off by a Taipei air traffic controller, a report said A US aerial refueling aircraft came very close to an EVA Airways jet in the airspace over southern Taiwan, a military aviation news Web site said. A report published by Alert 5 on Tuesday said that automatic dependent surveillance–broadcast (ADS-B) data captured by planfinder.net on Wednesday last week showed a US Air Force KC-135 tanker “coming less than 1,000 feet [305m] vertically with EVA Air flight BR225 as both aircraft crossed path south of Taiwan” that morning. The report included an audio recording of a female controller from the Taipei air traffic control center telling the unidentified aircraft that it was
A US aircraft carrier group led by the USS Theodore Roosevelt has entered the South China Sea to promote “freedom of the seas,” the US military said yesterday, as tensions between China and Taiwan raise concerns in Washington. US Indo-Pacific Command said in a statement that the strike group entered the South China Sea on Saturday, the same day Taiwan reported a large incursion of Chinese bombers and fighter jets into its air defense identification zone near the Pratas Islands (Dongsha Islands, 東沙群島). The US military said the carrier strike group was in the South China Sea, a large part of which
STRATEGIC MISTAKE: Beijing’s deployment of aircraft near Taiwan proves the ‘China threat theory’ that sees it attempting to destabilize the region, an analyst said China on Saturday and yesterday sent a record number of military aircraft into the nation’s air defense identification zone (ADIZ), in what analysts said was an attempt to flex its military might for US President Joe Biden. Thirteen Chinese warplanes flew into Taiwan’s southwestern ADIZ on Saturday and 15 entered yesterday, the highest number observed in a single day this year, the Ministry of National Defense said. On Saturday, eight Xian H-6K bombers, four Shenyang J-16 fighters and a Y-8 anti-submarine aircraft, entered the ADIZ, while yesterday there were two Y-8s, two Su-30s, four J-16s, six J-10 fighters and a Y-8 reconnaissance
DISPOSING MYTHS: A new constitution would better reflect reality, as the current one was drafted ‘in and for China,’ without the consent of Taiwanese, advocates said Independence advocates yesterday launched the Taiwan New Constitution Alliance to promote drafting a new, localized constitution. “This is a historic moment for Taiwan. Drafting a new constitution is the most important task Taiwanese face,” veteran independence advocate Koo Kwang-ming (辜寬敏) said at the inaugural event in Taipei. “Although the Democratic Progressive Party is in power, its authority is based on the Republic of China [ROC] Constitution, which has no connection to Taiwan,” said the 95-year-old Koo, a former presidential adviser. “The historic task of drafting a new constitution depends on efforts by all Taiwanese,” Koo said. “A constitution for a sovereign, independent Taiwan