Hackers known as the Winnti Group were behind ransomware attacks on Taiwan’s two largest fuel suppliers, the Ministry of Justice Investigation Bureau said on Friday, adding that similar attacks on 10 domestic companies are likely in the next few days.
On May 4, state-run CPC Corp, Taiwan announced that its computer system had been infected with ransomware, causing payment issues at gas stations.
Formosa Petrochemical Corp reported similar issues the following day, and shut down its computer systems.
Powertech Technology Inc, a Hsinchu-based semiconductor firm, also reported a ransomware attack on May 5.
The bureau said that the Winnti Group, which is believed to be from China, likely had access to the firms’ computer systems for months before it carried out the attacks.
Liu Chia-jung (劉家榮), deputy director of the bureau’s Information Security Workstation, said that the hackers gained access to the companies’ Active Directory — a service for managing computers and other devices within a network — and used its task scheduling function to distribute the ransomware throughout each company’s computer network.
When employees’ computers tried to access the network at the start of the work day, a message appeared stating that their files had been encrypted and demanding a ransom of US$3,000 to unlock them, Liu said.
The bureau has asked international authorities investigating six German and Swiss e-mail accounts believed to be connected to the crimes for help, Liu said.
It has also asked US authorities to investigate a US-based company from which the group rented a virtual private server.
The bureau said it had information that the hackers planned to carry out similar attacks on 10 other Taiwanese companies in the next few days, but added that it did not know which are being targeted.
The bureau said that it has advised companies on several steps they could take to improve their digital security.
CPC, which local media reported was suffering computer issues again on Thursday, released a statement on Friday blaming the issue on an operational error, and said that it had strengthened its information security procedures following the May 4 attack.
A magnitude 5.7 earthquake struck off Taitung County at 1:09pm today, the Central Weather Administration (CWA) said. The hypocenter was 53km northeast of Taitung County Hall at a depth of 12.5km, CWA data showed. The intensity of the quake, which gauges the actual effect of a seismic event, measured 4 in Taitung County and Hualien County on Taiwan's seven-tier intensity scale, the data showed. The quake had an intensity of 3 in Nantou County, Chiayi County, Yunlin County, Kaohsiung and Tainan, the data showed. There were no immediate reports of damage following the quake.
A BETRAYAL? It is none of the ministry’s business if those entertainers love China, but ‘you cannot agree to wipe out your own country,’ the MAC minister said Taiwanese entertainers in China would have their Taiwanese citizenship revoked if they are holding Chinese citizenship, Mainland Affairs Council (MAC) Minister Chiu Chui-cheng (邱垂正) said. Several Taiwanese entertainers, including Patty Hou (侯佩岑) and Ouyang Nana (歐陽娜娜), earlier this month on their Weibo (微博) accounts shared a picture saying that Taiwan would be “returned” to China, with tags such as “Taiwan, Province of China” or “Adhere to the ‘one China’ principle.” The MAC would investigate whether those Taiwanese entertainers have Chinese IDs and added that it would revoke their Taiwanese citizenship if they did, Chiu told the Chinese-language Liberty Times (sister paper
The Chinese wife of a Taiwanese, surnamed Liu (劉), who openly advocated for China’s use of force against Taiwan, would be forcibly deported according to the law if she has not left Taiwan by Friday, National Immigration Agency (NIA) officials said yesterday. Liu, an influencer better known by her online channel name Yaya in Taiwan (亞亞在台灣), obtained permanent residency via marriage to a Taiwanese. She has been reported for allegedly repeatedly espousing pro-unification comments on her YouTube and TikTok channels, including comments supporting China’s unification with Taiwan by force and the Chinese government’s stance that “Taiwan is an inseparable part of China.” Liu
MINOR DISRUPTION: The outage affected check-in and security screening, while passport control was done manually and runway operations continued unaffected The main departure hall and other parts of Terminal 2 at Taiwan Taoyuan International Airport lost power on Tuesday, causing confusion among passengers before electricity was fully restored more than an hour later. The outage, the cause of which is still being investigated, began at about midday and affected parts of Terminal 2, including the check-in gates, the security screening area and some duty-free shops. Parts of the terminal immediately activated backup power sources, while others remained dark until power was restored in some of the affected areas starting at 12:23pm. Power was fully restored at 1:13pm. Taoyuan International Airport Corp said in a
RSS