Government agencies last year reported 525 cybersecurity threats, nine of which were relatively severe, a report released by the Executive Yuan’s Department of Cyber Security showed.
Information security threats are classified into four severity levels, with level 1 indicating the least serious threat and level 4 the most serious.
Last year, there were 451 level 1 attacks and 65 level 2 attacks on government agencies, department data showed.
Nine level 3 attacks were also recorded, but nothing merited a level 4 classification.
The main types of threats were unauthorized access, Web page attacks, equipment issues and denial of service attacks, the department said.
Unauthorized access was the most common type, comprising 68.8 percent of all threats, it said, adding that the primary causes were vulnerabilities in third-party products, failure of hosts to automatically install updates and remote connection management issues.
Other cases involved ransomware attacks, malware attacks on security systems, latent malware on internal agency networks and systems built by contractors becoming a springboard for infiltration, the department added.
Web page attacks, or the improper control of permissions, file format restrictions and third-party updates targeted by hackers, comprised 6.7 percent of all reported threats, it said.
Threats were nearly evenly split between the central and local governments, with 49 percent of reports coming from federal agencies and 51 percent originating from local agencies, it added.
In its report, which was released late last month, the department recommended how to counter five categories of threats: personal information leaks, ransomware denial of service attacks, malware seeded due to non-updated firmware, persistent attacks designed to steal sensitive data and external supply chain hacks.
For example, in one of the level 3 threats, hackers extracted the login information of a firm handling equipment maintenance for a government agency, the report said.
They were then able to access other equipment within the agency and use ransomware to encrypt data, making normal operation impossible until the hackers released the system, it said.
Ransomware attacks have become a regular occurrence, the report said, adding that response measures hinge on shortening the recovery time.
Agencies should also be sure to patch vulnerabilities and update firmware, implement access controls on internal networks, create off-site backups and conduct regular response drills, it added.
In addition, government agencies should not use equipment or software created in China, the report said.
An increase in Taiwanese boats using China-made automatic identification systems (AIS) could confuse coast guards patrolling waters off Taiwan’s southwest coast and become a loophole in the national security system, sources familiar with the matter said yesterday. Taiwan ADIZ, a Facebook page created by enthusiasts who monitor Chinese military activities in airspace and waters off Taiwan’s southwest coast, on Saturday identified what seemed to be a Chinese cargo container ship near Penghu County. The Coast Guard Administration went to the location after receiving the tip and found that it was a Taiwanese yacht, which had a Chinese AIS installed. Similar instances had also
GOOD DIPLOMACY: The KMT has maintained close contact with representative offices in Taiwan and had extended an invitation to Russia as well, the KMT said The Chinese Nationalist Party (KMT) would “appropriately handle” the fallout from an invitation it had extended to Russia’s representative to Taipei to attend its international banquet last month, KMT Chairman Eric Chu (朱立倫) said yesterday. US and EU representatives in Taiwan boycotted the event, and only later agreed to attend after the KMT rescinded its invitation to the Russian representative. The KMT has maintained long-term close contact with all representative offices and embassies in Taiwan, and had extended the invitation as a practice of good diplomacy, Chu said. “Some EU countries have expressed their opinions of Russia, and the KMT respects that,” he
VIGILANCE: The military is paying close attention to actions that might damage peace and stability in the region, the deputy minister of national defense said The People’s Republic of China (PRC) might consider initiating a hack on Taiwanese networks on May 20, the day of the inauguration ceremony of president-elect William Lai (賴清德), sources familiar with cross-strait issues said. While US Secretary of State Anthony Blinken’s statement of the US expectation “that all sides will conduct themselves with restraint and prudence in the period ahead” would prevent military actions by China, Beijing could still try to sabotage Taiwan’s inauguration ceremony, the source said. China might gain access to the video screens outside of the Presidential Office Building and display embarrassing messages from Beijing, such as congratulating Lai
Four China Coast Guard ships briefly sailed through prohibited waters near Kinmen County, Taipei said, urging Beijing to stop actions that endanger navigation safety. The Chinese ships entered waters south of Kinmen, 5km from the Chinese city of Xiamen, at about 3:30pm on Monday, the Coast Guard Administration said in a statement later the same day. The ships “sailed out of our prohibited and restricted waters” about an hour later, the agency said, urging Beijing to immediately stop “behavior that endangers navigation safety.” Ministry of National Defense spokesman Sun Li-fang (孫立方) yesterday told reporters that Taiwan would boost support to the Coast Guard