Hackers known as the Winnti Group were behind ransomware attacks on Taiwan’s two largest fuel suppliers, the Ministry of Justice Investigation Bureau said on Friday, adding that similar attacks on 10 domestic companies are likely in the next few days.
On May 4, state-run CPC Corp, Taiwan announced that its computer system had been infected with ransomware, causing payment issues at gas stations.
Formosa Petrochemical Corp reported similar issues the following day, and shut down its computer systems.
Powertech Technology Inc, a Hsinchu-based semiconductor firm, also reported a ransomware attack on May 5.
The bureau said that the Winnti Group, which is believed to be from China, likely had access to the firms’ computer systems for months before it carried out the attacks.
Liu Chia-jung (劉家榮), deputy director of the bureau’s Information Security Workstation, said that the hackers gained access to the companies’ Active Directory — a service for managing computers and other devices within a network — and used its task scheduling function to distribute the ransomware throughout each company’s computer network.
When employees’ computers tried to access the network at the start of the work day, a message appeared stating that their files had been encrypted and demanding a ransom of US$3,000 to unlock them, Liu said.
The bureau has asked international authorities investigating six German and Swiss e-mail accounts believed to be connected to the crimes for help, Liu said.
It has also asked US authorities to investigate a US-based company from which the group rented a virtual private server.
The bureau said it had information that the hackers planned to carry out similar attacks on 10 other Taiwanese companies in the next few days, but added that it did not know which are being targeted.
The bureau said that it has advised companies on several steps they could take to improve their digital security.
CPC, which local media reported was suffering computer issues again on Thursday, released a statement on Friday blaming the issue on an operational error, and said that it had strengthened its information security procedures following the May 4 attack.
Three Taiwanese airlines have prohibited passengers from packing Bluetooth earbuds and their charger cases in checked luggage. EVA Air and Uni Air said that Bluetooth earbuds and charger cases are categorized as portable electronic devices, which should be switched off if they are placed in checked luggage based on international aviation safety regulations. They must not be in standby or sleep mode. However, as charging would continue when earbuds are placed in the charger cases, which would contravene international aviation regulations, their cases must be carried as hand luggage, they said. Tigerair Taiwan said that earbud charger cases are equipped
Foreign travelers entering Taiwan on a short layover via Taiwan Taoyuan International Airport are receiving NT$600 gift vouchers from yesterday, the Tourism Administration said, adding that it hopes the incentive would boost tourism consumption at the airport. The program, which allows travelers holding non-Taiwan passports who enter the country during a layover of up to 24 hours to claim a voucher, aims to promote attractions at the airport, the agency said in a statement on Friday. To participate, travelers must sign up on the campaign Web site, the agency said. They can then present their passport and boarding pass for their connecting international
UNILATERAL MOVES: Officials have raised concerns that Beijing could try to exert economic control over Kinmen in a key development plan next year The Civil Aviation Administration (CAA) yesterday said that China has so far failed to provide any information about a new airport expected to open next year that is less than 10km from a Taiwanese airport, raising flight safety concerns. Xiamen Xiangan International Airport is only about 3km at its closest point from the islands in Kinmen County — the scene of on-off fighting during the Cold War — and construction work can be seen and heard clearly from the Taiwan side. In a written statement sent to Reuters, the CAA said that airports close to each other need detailed advanced
UNKNOWN TRAJECTORY: The storm could move in four possible directions, with the fourth option considered the most threatening to Taiwan, meteorologist Lin De-en said A soon-to-be-formed tropical storm east of the Philippines could begin affecting Taiwan on Wednesday next week, the Central Weather Administration (CWA) said yesterday. The storm, to be named Fung-wong (鳳凰), is forecast to approach Taiwan on Tuesday next week and could begin affecting the weather in Taiwan on Wednesday, CWA forecaster Huang En-hung (黃恩鴻) said, adding that its impact might be amplified by the combined effect with the northeast monsoon. As of 2pm yesterday, the system’s center was 2,800km southeast of Oluanbi (鵝鑾鼻). It was moving northwest at 18kph. Meteorologist Lin De-en (林得恩) on Facebook yesterday wrote that the would-be storm is surrounded by
RSS