Western intelligence agencies on Tuesday warned of an increasing threat from Beijing’s security services to use malicious mobile phone applications to surveil Taiwanese independence activists, Tibetan rights advocates and others opposed by the Chinese government.
An advisory issued late on Tuesday warned of “the growing threat” posed by malicious surveillance software deployed by a Chengdu, China-based contractor reported to have ties to the Chinese Ministry of Public Security.
The advisory was signed by cybersecurity agencies in the UK, the US, Canada, New Zealand, Australia and Germany.
Photo: Reuters
Those most at risk include people connected to Taiwanese independence, Tibetan rights, Uighurs and other minorities in Xinjiang, democracy advocates — including in Hong Kong — and the Falun Gong spiritual movement, the British National Cyber Security Centre (NCSC) said in the advisory.
The warning comes amid increasing tensions surrounding Taiwan, including Chinese military drills around the nation on Tuesday and Wednesday last week, and a March 28 visit to the Philippines by US Secretary of Defense Pete Hegseth in which he reaffirmed Washington’s commitment to deterring Chinese aggression in the region.
The Chengdu-based contractor, Sichuan Dianke Network Security Technology Co Ltd (四川電科網路安全技術有限公司), was linked to the deployment of a pair of distinct malware packages. They were tracked as “Badbazaar” and “Moonshine” and used to ferret sensitive information from mobile devices, while also giving operators remote access to devices’ cameras, microphones and location data, the advisory said.
The warning is for non-governmental organizations, journalists, businesses and other individuals who advocate for or represent the groups, the NCSC said in the advisory.
“The indiscriminate way this spyware is spread online also means there is a risk that infections could spread beyond intended victims,” it said.
Chinese embassy in Washington spokesman Liu Pengyu (劉鵬宇) said that China “firmly opposes the smear attacks against China without any factual basis,” and that the tracing of cyberattacks is complex.
“We hope that relevant parties will adopt a professional and responsible attitude when characterizing cyberincidents, basing their conclusions on sufficient evidence rather than unfounded speculation and accusations,” he said.
The warnings build on previous cybersecurity industry reporting that malware and infrastructure have been used by the contractor going back several years. The advisory cited a Jan. 29 report published by Intelligence Online, a news organization focused on international intelligence operations, linking the malware to the contractor.
The contractor has provided services to the Chinese ministry, the report said.
The FBI, US National Security Agency and intelligence agencies in Australia, Canada, Germany and New Zealand participated in the advisories, the NCSC said.
The FBI declined to comment, and the NSA did not respond to requests for comment.
A signaling system malfunction disrupted high-speed rail (HSR) services beginning at 8am today, with trains temporarily reduced to three northbound and three southbound trains per hour as authorities conduct inspections. The malfunction occurred on a section of track in Miaoli County during pre-operation checks early this morning, forcing northbound and southbound trains to use a single track, the HSR operator said. The regular schedule has been replaced with three hourly trains offering only nonreserved seating in each direction, stopping at every station, it said, adding that business class cars would still have reserved seating. Departures from terminal stations are scheduled at the top
‘NO SECURITY RISK’: The Railway Bureau reassured the public that the technicians’ activities were limited to technical guidance and did not involve sensitive systems The Railway Bureau yesterday said it had invited eight Chinese technicians to assist with an airport MRT construction project. The bureau issued the confirmation after an Internet user said Chinese nationals had entered the construction zone of Taiwan Taoyuan International Airport’s Terminal 3 project. They asked why “individuals from an enemy state” were allowed access to such a major national infrastructure project, which raised serious concerns over Taiwan’s industrial safety, sensitive systems and information security. The bureau’s Northern Region Engineering Branch Office said subcontractor Taiwan Handle Industrial Co (台灣手把工業) of the Taoyuan airport MRT’s “Contract No. CU05 Project A14 Station Civil, MEP &
Taiwan is still in the process of assessing the possibility of recruiting workers from Eswatini, the Ministry of Foreign Affairs said yesterday, adding that its goal is to help Eswatini upgrade its vocational training centers. If there are plans to recruit workers from Eswatini, safeguarding national security, protecting public health and ensuring the employment rights of Taiwanese would be prerequisites, Department of West Asian and African Affairs Director-General Yen Chia-liang (顏嘉良) told a news conference. Key considerations would also include filling labor shortages in specific industries, and fostering bilateral professional and technical exchanges, he said. Yen was asked about the progress of labor
A US uncrewed surface vessel (USV) encountered multiple Chinese warships during an autonomous transit of the Taiwan Strait, US defense company Seasats said in a statement on Wednesday. Seasats announced that a Lightfish USV had completed the first autonomous transit of the Taiwan Strait. Over five days, the USV traversed the entire length of the Strait while constantly monitoring surface vessel traffic, the company said. The Lightfish encountered multiple Chinese warships, one of which was a Chinese People’s Liberation Army Navy (PLAN) Type 056 corvette, it said. The Chinese vessels were operating “well within Taiwan’s exclusive economic zone without transmitting their identity via the
RSS