The Ministry of Digital Affairs on Wednesday said it had resolved a security issue with a database used by vehicle rental service iRent after the personal information of tens of thousands of users was leaked.
The database, which was on a cloud server owned by Hotai Motor Co, “contained the names, mobile phone numbers, e-mail addresses, home addresses, drivers’ license photographs and partially redacted payment card details of the customers of iRent,” the Central News Agency reported.
The report said that the database was not password-protected and was accessible from anywhere on the Internet, and that the issue was resolved only after US-based online newspaper TechCrunch discovered it and contacted the ministry.
Democratic Progressive Party legislators Lai Pin-yu (賴品妤), Hung Sun-han (洪申翰), Liu Shih-fang (劉世芳) and Chuang Ching-cheng (莊競程) discussed the issue at a news conference on Jan. 18. The lawmakers said that in 2019, personal files of 200,000 civil servants were listed for sale on foreign Web sites, while in another incident local household registration records were advertised for sale online in 2020.
“Government officials have shown little concern and a lack of urgency in dealing with these national security breaches,” Liu said.
Private data breaches are occurring repeatedly, but government officials treat them on a “case-by-case” basis and have not taken concrete action to plug the leaks, Hung said.
To call the issue a national-security threat is an understatement. Leaked passenger data means that the Chinese Communist Party (CCP) could access the itineraries of Taiwanese politicians and democracy advocates. Leaked patient and customer data means voters could be targeted for extortion by agents of the CCP. Data breaches might help the CCP more easily identify people with jobs that give them access to politicians, military personnel or sensitive information such as defense secrets.
The establishment of the digital ministry was a step in the right direction, but it must be more proactive in proposing regulations for the storage and access of personal information.
Private companies and government agencies that handle data related to national security should be required to store the information offline in encrypted databases. No single person should be able to access complete data on their own, they should only have access to the parts of records that are necessary to complete their duties. Access to complete records should require two or more people to unlock the records with passwords or biometric signatures. This would prevent individuals from accessing complete records for unscrupulous purposes. Access to such information should be logged with department supervisors, and periodic audits should be conducted by an independent body.
Access to information is of growing importance as systems become digitized and automated. Loss of control of information can affect an individual’s ability to complete daily tasks such as pay bills, get medical coverage or access social media. Compromised data can also affect a business or government agency’s ability to operate. Data breaches have already led to government agencies, companies and even hospitals having databases ransomed by hackers demanding exorbitant payments before access is restored.
In the case of a hospital or critical infrastructure such as the power grid, this can be life-threatening.
The government must get serious about information security and must do it in a systematic, proactive way, rather than on a case-by-case basis. Failure to secure personal and sensitive data puts everyone at risk, particularly given the frequency with which China attacks data systems.
Taiwan Semiconductor Manufacturing Co (TSMC) founder Morris Chang (張忠謀) has repeatedly voiced concern over the weakening cost competitiveness of its US fabs and challenged the US’ “on-shore” policy of building domestic semiconductor capacity. Yet not once has the government said anything, even though the economy is highly dependent on the chip industry. In the US, the cost of operating a semiconductor factory is at least twice the amount required to operate one in Taiwan, rather than the 50 percent he had previously calculated, Chang said on Thursday last week at a forum arranged by CommonWealth Magazine. He said that he had
Former president Ma Ying-jeou (馬英九), also a former chairman of the Chinese Nationalist Party (KMT), has said that he plans to travel to China from Monday next week to April 7 to pay his respects to his ancestors in Hunan Province. The trip would mark the first cross-strait visit by a former president of the Republic of China (ROC) since its government’s retreat to Taiwan in 1949. Ma’s trip comes amid China’s increasing air and naval incursions into Taiwan’s air defense identification zone, and at a time when Chinese President Xi Jinping (習近平) continues to seek to annex Taiwan. Ma’s trip could be
The International Criminal Court (ICC) arrest warrant issued on Friday last week for Russian President Vladimir Putin delighted Uighurs, as Putin’s today signals Chinese President Xi Jinping’s (習近平) tomorrow. The crimes committed by Xi are many times more serious than what Putin has been accused of. Putin has caused more than 8 million people to flee Ukraine. By imprisoning more than 3 million Uighurs in concentration camps and restricting the movement of more than 10 million Uighurs, Xi has not only denied them the opportunity to live humanely, but also the opportunity to escape oppression. The 8 million Ukrainians who fled
Disruption is coming to the agriculture sector. Around the world, livestock farmers are leaving the land, policymakers are targeting the harmful environmental and social effects of industrial meat production, and consumers are shifting away from meat to embrace healthier, more sustainable alternatives. With the sector approaching a crossroads, decisionmakers in government, industry and civil society need to heed the lessons gained from major transitions in other industries and start preparing. Preparation requires a careful inventory of farmers, workers and consumers’ needs. While farmers are growing older and leaving the land for other pursuits or retirement, the agriculture sector is struggling to
RSS