Chinese-linked hackers are targeting the Taiwanese semiconductor industry and investment analysts as part of a string of cyber-espionage campaigns, researchers said yesterday.
While hacking to steal data and information about the industry is not new, there is an increase in sustained hacking campaigns from several China-aligned hacking groups, researchers with cybersecurity firm Proofpoint said in a new analysis.
“We’ve seen entities that we hadn’t ever seen being targeted in the past being targeted,” said Mark Kelly, a threat researcher focused on Chinese-related threats at Proofpoint.
Photo: Reuters
The previously unreported hacking campaigns were carried out by at least three distinct Chinese-linked groups primarily between March and last month, with some activity likely ongoing, Proofpoint said. They come amid rising restrictions by Washington on exports to China of US-designed chips that are often manufactured in Taiwan. China's chip industry has been working to replace its dwindling supply of sophisticated US chips, especially those used in artificial intelligence.
The researchers declined to identify the hacking targets, but told Reuters that approximately 15 to 20 organizations ranging from small businesses, analysts employed by at least one US-headquartered international bank, and large global enterprises faced attacks.
Major Taiwanese semiconductor firms include Taiwan Semiconductor Manufacturing Co, MediaTek, United Microelectronics Corp, Nanya Technology and RealTek Semiconductor. TSMC declined to comment. MediaTek, UMC, Nanya and RealTek did not respond to requests for comment.
Reuters was unable to identify the specific hacking targets or determine whether any of the efforts were successful.
A spokesperson for the Chinese embassy in Washington told Reuters in an email that cyberattacks “are a common threat faced by all countries, China included,” and that the Asian country “firmly opposes and combats all forms of cyber attacks and cyber crime — a position that is consistent and clear.”
The activity ranged from one or two emails sent as part of the more targeted campaign focused on specific people, to as many as 80 emails when trying to gain information from the company at large, Kelly said.
One group targeted semiconductor design, manufacturing and supply-chain organizations using compromised Taiwanese university email accounts to pose as job seekers and send malware via PDFs with URLs leading to malicious files, or a password-protected archive.
Another targeted financial analysts at major unnamed investment firms focused on the Taiwanese semiconductor industry by posing as a fictitious investment firm and seeking collaboration. Two of the entities are based in Asia, while the third is based in the US. The FBI declined to comment.
A representative of TeamT5, a cybersecurity firm based in Taiwan, told Reuters that it had also seen an increase in emails being sent targeting the semiconductor industry tied to a few hacking groups, “but not a wide or general phenomenon.”
Targeting of semiconductors and the supply chain around them “is a persistent threat that has existed for long,” the representative said, and a “constant interest” for Chinese-related advanced hacking operators.
These groups often target “peripheral suppliers or related industries,” the representative said, such as a situation last month where a China-linked hacking group identified by TeamT5 as "Amoeba" launched a phishing campaign against an unnamed chemical company that plays a critical role in the semiconductor supply chain.
China has reserved offshore airspace in the Yellow Sea and East China Sea from March 27 to May 6, issuing alerts usually used to warn of military exercises, although no such exercises have been announced, the Wall Street Journal (WSJ) reported yesterday. Reserving such a large area for 40 days without explanation is an “unusual step,” as military exercises normally only last a few days, the paper said. These alerts, known as Notice to Air Missions (Notams), “are intended to inform pilots and aviation authorities of temporary airspace hazards or restrictions,” the article said. The airspace reserved in the alert is
NAMING SPAT: The foreign ministry called on Denmark to propose an acceptable solution to the erroneous nationality used for Taiwanese on residence permits Taiwan has revoked some privileges for Danish diplomatic staff over a Danish permit that lists “Taiwan” as “China,” Eric Huang (黃鈞耀), head of the Ministry of Foreign Affairs’ Department of European Affairs, told a news conference in Taipei yesterday. Reporters asked Huang whether the Danish government had responded to the ministry’s request that it correct the nationality on Danish residence permits of Taiwanese, which has been listed as “China” since 2024. Taiwan’s representative office in Denmark continues to communicate with the Danish government, and the ministry has revoked some privileges previously granted to Danish representatives in Taiwan and would continue to review
More than 6,000 Taiwanese students have participated in exchange programs in China over the past two years, despite the Mainland Affairs Council’s (MAC) “orange light” travel advisory, government records showed. The MAC’s publicly available registry showed that Taiwanese college and university students who went on exchange programs across the Strait numbered 3,592 and 2,966 people respectively. The National Immigration Agency data revealed that 2,296 and 2,551 Chinese students visited Taiwan for study in the same two years. A review of the Web sites of publicly-run universities and colleges showed that Taiwanese higher education institutions continued to recruit students for Chinese educational programs without
A bipartisan group of US senators has introduced a bill to enhance cooperation with Taiwan on drone development and to reduce reliance on supply chains linked to China. The proposed Blue Skies for Taiwan Act of 2026 was introduced by Republican US senators Ted Cruz and John Curtis, and Democratic US senators Jeff Merkley and Andy Kim. The legislation seeks to ease constraints on Taiwan-US cooperation in uncrewed aerial systems (UAS), including dependence on China-sourced components, limited access to capital and regulatory barriers under US export controls, a news release issued by Cruz on Wednesday said. The bill would establish a "Blue UAS
RSS