The Ministry of Digital Affairs is to conduct a “resilience inspection” among government agencies that have authorization to access personal data after a data security loophole in the Ministry of Finance’s e-invoice platform was identified by a “white-hat hacker,” Minister of Digital Affairs Audrey Tang (唐鳳) said yesterday.
Tang was asked to brief lawmakers on the legislature’s Transportation Committee what the government would do to enhance information security among government agencies in light of the discovery, as well as a series of data security breaches in the private sector.
If exploited, the loophole would affect about 20 percent of businesses on the e-invoice platform that did not register using business certificate IDs issued by the Ministry of Economic Affairs, Ministry of Finance Fiscal Information Agency Director-General Chang Wen-hsi (張文熙) told the committee.
Photo: Reuters
“We are conducting a comprehensive inspection of these accounts. They would be required to change their passwords if the ones they have are vulnerable to data breaches,” Chang said.
The Ministry of Digital Affairs is also to inspect whether passwords set by government agencies are susceptible to malicious attacks, which was not previously a factor in data security inspections, Tang said.
A “zero trust” policy is to be implemented which requires government agencies to have a multilayered mechanism to protect information, she said, adding that the system must not be guarded by just one set of passwords.
“We will begin within one to two months a resilience inspection of common technical components used by government agencies that have authorization to access personal data. We will submit to the committee a report on the types of data security risks facing different agencies in three months,” Tang said.
A resilience inspection is similar to a fire safety inspection, where the management of a building might be asked to use fireproof materials at certain locations to prevent fire, she said.
SHOPEE SANCTION
In other developments, the Ministry of Digital Affairs is to issue an administrative sanction before the end of this month to Singapore-based e-commerce platform Shopee (蝦皮) following repeated personal data leaks, it said.
A report on a personal data leak at Eslite Bookstore would be published this week and an administrative sanction issued next week, Tang said.
While information security firms retained by Eslite Bookstore did not find problems with the company’s database, the ministry is examining whether the leak occurred at logistics operators or third-party payment platform operators working with the bookstore, she said.
The alleged data leak at the the nation’s largest bookstore was made public after Here I Stand Project deputy secretary-general Cynthia Yang (楊欣慈) on May 14 said she received a telephone call, with the caller claiming to be from Eslite’s marketing department and wanting to know what Yang thought about If China Attacks (阿共打來怎麼辦), a book she purchased online in February.
The caller told Yang they were seeking feedback from readers because the book has “sensitive and inappropriate” content, and said that Taiwan would never win a war against a military as powerful as China’s and should not expect the US to come to the rescue.
LEVERAGE: China did not ‘need to fire a shot’ to deny Taiwan airspace over Africa when it owns ‘half the continent’s debt,’ a US official said, calling it economic warfare The EU has raised concerns about overflight rights following the delay of President William Lai’s (賴清德) planned state visit to the Kingdom of Eswatini after three African nations denied overflight clearance for his charter at the last minute. Taiwanese allies Paraguay and Saint Kitts and Nevis, as well as several US lawmakers and the Inter-Parliamentary Alliance on China (IPAC) condemned China for allegedly pressuring the countries. Lai was scheduled to fly directly to Taiwan’s only African ally from yesterday to Sunday to celebrate the 40th anniversary of King Mswati III’s accession and his 58th birthday, but Seychelles, Mauritius and Madagascar suddenly revoked
The number of pet cats in Taiwan surpassed that of pet dogs for the first time last year, reaching 1,742,033, a 32.8 percent increase from 2023, the Ministry of Agriculture said yesterday, citing a survey. By contrast, the number of pet dogs declined slightly by 1.2 percent over the same period to 1,462,528, the ministry said. Despite the shift, households with dogs still slightly outnumber those with cats by 1.2 percent. However, while the number of households with multiple dogs has remained relatively stable, households keeping more than two cats have increased, contributing to the overall rise in the feline population. The trend
China on Wednesday teased in a video an aircraft carrier that could be its fourth, and the first using nuclear power, while making an allusion to Taiwan and vowing to further build up its islands, as it looks to boost maritime power, secure resources and bolster territorial claims. The video, issued on the eve of the 77th founding anniversary of the Chinese People’s Liberation Army Navy, featured fictional officers with names that are homophones of three commissioned aircraft carriers, the Liaoning (遼寧), Shandong (山東) and Fujian (福建). Titled Into the Deep, it showed a 19-year-old named “Hejian” (何劍) joining the group, sparking
BIG YEAR: The company said it would also release its A12 chip the same year to keep a ‘reliable stream of new silicon technologies’ flowing to its customers Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) yesterday said its newest A13 chip is to enter volume production in 2029 as the chipmaker seeks to hold onto its tech leadership and demand for next-generation chips used in artificial intelligence (AI), high-performance-computing (HPC) and mobile applications. TSMC, the world’s biggest contract chipmaker, also unveiled its A12 chip at its annual technology symposium in Santa Clara, California. The A12 chip, which features TSMC’s super-power-rail technology to provide backside power delivery for AI and HPC applications, is also to enter volume production in 2029, a year after the scheduled release of the A14 chip. The technology moves
RSS