Hackers known as the Winnti Group were behind ransomware attacks on Taiwan’s two largest fuel suppliers, the Ministry of Justice Investigation Bureau said on Friday, adding that similar attacks on 10 domestic companies are likely in the next few days.
On May 4, state-run CPC Corp, Taiwan announced that its computer system had been infected with ransomware, causing payment issues at gas stations.
Formosa Petrochemical Corp reported similar issues the following day, and shut down its computer systems.
Powertech Technology Inc, a Hsinchu-based semiconductor firm, also reported a ransomware attack on May 5.
The bureau said that the Winnti Group, which is believed to be from China, likely had access to the firms’ computer systems for months before it carried out the attacks.
Liu Chia-jung (劉家榮), deputy director of the bureau’s Information Security Workstation, said that the hackers gained access to the companies’ Active Directory — a service for managing computers and other devices within a network — and used its task scheduling function to distribute the ransomware throughout each company’s computer network.
When employees’ computers tried to access the network at the start of the work day, a message appeared stating that their files had been encrypted and demanding a ransom of US$3,000 to unlock them, Liu said.
The bureau has asked international authorities investigating six German and Swiss e-mail accounts believed to be connected to the crimes for help, Liu said.
It has also asked US authorities to investigate a US-based company from which the group rented a virtual private server.
The bureau said it had information that the hackers planned to carry out similar attacks on 10 other Taiwanese companies in the next few days, but added that it did not know which are being targeted.
The bureau said that it has advised companies on several steps they could take to improve their digital security.
CPC, which local media reported was suffering computer issues again on Thursday, released a statement on Friday blaming the issue on an operational error, and said that it had strengthened its information security procedures following the May 4 attack.
Taiwan is to commence mass production of the Tien Kung (天弓, “Sky Bow”) III, IV and V missiles by the second quarter of this year if the legislature approves the government’s NT$1.25 trillion (US$39.78 billion) special defense budget, an official said yesterday. Commenting on condition of anonymity, a defense official with knowledge of the matter said that the advanced systems are expected to provide crucial capabilities against ballistic and cruise missiles for the proposed “T-Dome,” an advanced, multi-layered air defense network. The Tien Kung III is an air defense missile with a maximum interception altitude of 35km. The Tien Kung IV and V
The disruption of 941 flights in and out of Taiwan due to China’s large-scale military exercises was no accident, but rather the result of a “quasi-blockade” used to simulate creating the air and sea routes needed for an amphibious landing, a military expert said. The disruptions occurred on Tuesday and lasted about 10 hours as China conducted live-fire drills in the Taiwan Strait. The Civil Aviation Administration (CAA) said the exercises affected 857 international flights and 84 domestic flights, affecting more than 100,000 travelers. Su Tzu-yun (蘇紫雲), a research fellow at the government-sponsored Institute for National Defense and Security Research, said the air
Taiwan lacks effective and cost-efficient armaments to intercept rockets, making the planned “T-Dome” interception system necessary, two experts said on Tuesday. The concerns were raised after China’s military fired two waves of rockets during live-fire drills around Taiwan on Tuesday, part of two-day exercises code-named “Justice Mission 2025.” The first wave involved 17 rockets launched at 9am from Pingtan in China’s Fujian Province, according to Lieutenant General Hsieh Jih-sheng (謝日升) of the Office of the Deputy Chief of the General Staff for Intelligence at the Ministry of National Defense. Those rockets landed 70 nautical miles (129.6km) northeast of Keelung without flying over Taiwan,
A strong continental cold air mass is to bring pollutants to Taiwan from tomorrow, the Ministry of Environment said today, as it issued an “orange” air quality alert for most of the country. All of Taiwan except for Hualien and Taitung counties is to be under an “orange” air quality alert tomorrow, indicating air quality that is unhealthy for sensitive groups. In China, areas from Shandong to Shanghai have been enveloped in haze since Saturday, the ministry said in a news release. Yesterday, hourly concentrations of PM2.5 in these areas ranged from 65 to 160 micrograms per cubic meter (mg/m³), and pollutants were
RSS