Taiwan Semiconductor Manufacturing Co (TSMC, 台積電), the world’s largest contract chipmaker, on Friday said that no customer data were compromised in a cyberattack on one of its hardware suppliers.
Some information, including TSMC’s name, was leaked when the supplier was hacked on Thursday, but no TSMC data were stolen, the chipmaker said, without disclosing the name of the vendor.
After being informed of the cybersecurity breach, TSMC terminated the exchange of information with the supplier, in line with its security protocols and standard operating procedures, it said.
Photo: Reuters
TSMC’s hardware components are usually subject to extensive checks and adjustments, including security configurations, before being installed in its systems, it said.
The chipmaker said it remained committed to raising security awareness among its suppliers and ensuring that they comply with security standards.
Taiwanese law enforcement is investigating the incident, it said.
International news media reported that the attack was carried out by a Russia-linked ransomware gang called LockBit, which identified the Taiwanese chipmaker on its “dark Web” leak site on Thursday.
San Francisco-based technology news Web site TechCrunch said that the hardware supplier was Kinmax Technology (擎昊科技), an IT services and consulting group based in Hsinchu that specializes in networking, cloud computing, storage, security and database management.
The compromised information pertained to the initial setup and configuration of Kinmax’s servers, TechCrunch said.
LockBit was demanding TSMC pay US$70 million to prevent it from releasing data it claimed to have stolen from the chipmaker, TechCrunch quoted Equinix cyberthreat intelligence researcher William Thomas as saying.
TechCrunch said that TSMC had shared a copy of the communication it received from Kinmax, which showed that the supplier discovered on Thursday that its internal testing environment had been attacked and some information obtained.
The leaked data were largely information concerning the default configurations of system installations that the supplier provides to its customers, TechCrunch said, citing the Kinmax communication.
Kinmax has suggested that TSMC was not the only client affected by the attack, TechCrunch said.
Tech Web site Cybernews said that LockBit is known for its malware of the same name and has led numerous ransomware attacks since early last year, becoming the world’s most prolific ransomware syndicate.
LockBit has hit more than 1,800 companies, primarily using a “ransomware as a service” model to keep a portion of the profits that it pays to affiliates that carry out the attacks, Cybernews said.
LockBit claimed responsibility for a ransomware attack carried out in May against a plant in Mexico owned by Taiwan’s Hon Hai Precision Industry Co (鴻海精密), an iPhone assembler, TechCrunch reported.
Hon Hai, also known as Foxconn Technology Group (富士康科技集團), reported the attack, but has not disclosed how much money was demanded and whether it paid, TechCrunch said.
A Ministry of Foreign Affairs official yesterday said that a delegation that visited China for an APEC meeting did not receive any kind of treatment that downgraded Taiwan’s sovereignty. Department of International Organizations Director-General Jonathan Sun (孫儉元) said that he and a group of ministry officials visited Shenzhen, China, to attend the APEC Informal Senior Officials’ Meeting last month. The trip went “smoothly and safely” for all Taiwanese delegates, as the Chinese side arranged the trip in accordance with long-standing practices, Sun said at the ministry’s weekly briefing. The Taiwanese group did not encounter any political suppression, he said. Sun made the remarks when
PREPAREDNESS: Given the difficulty of importing ammunition during wartime, the Ministry of National Defense said it would prioritize ‘coproduction’ partnerships A newly formed unit of the Marine Corps tasked with land-based security operations has recently replaced its aging, domestically produced rifles with more advanced, US-made M4A1 rifles, a source said yesterday. The unnamed source familiar with the matter said the First Security Battalion of the Marine Corps’ Air Defense and Base Guard Group has replaced its older T65K2 rifles, which have been in service since the late 1980s, with the newly received M4A1s. The source did not say exactly when the upgrade took place or how many M4A1s were issued to the battalion. The confirmation came after Chinese-language media reported
The Taiwanese passport ranked 33rd in a global listing of passports by convenience this month, rising three places from last month’s ranking, but matching its position in January last year. The Henley Passport Index, an international ranking of passports by the number of designations its holder can travel to without a visa, showed that the Taiwan passport enables holders to travel to 139 countries and territories without a visa. Singapore’s passport was ranked the most powerful with visa-free access to 192 destinations out of 227, according to the index published on Tuesday by UK-based migration investment consultancy firm Henley and Partners. Japan’s and
BROAD AGREEMENT: The two are nearing a trade deal to reduce Taiwan’s tariff to 15% and a commitment for TSMC to build five more fabs, a ‘New York Times’ report said Taiwan and the US have reached a broad consensus on a trade deal, the Executive Yuan’s Office of Trade Negotiations said yesterday, after a report said that Washington is set to reduce Taiwan’s tariff rate to 15 percent. The New York Times on Monday reported that the two nations are nearing a trade deal to reduce Taiwan’s tariff rate to 15 percent and commit Taiwan Semiconductor Manufacturing Co (TSMC, 台積電) to building at least five more facilities in the US. “The agreement, which has been under negotiation for months, is being legally scrubbed and could be announced this month,” the paper said,
RSS