Li Tingge, chief technology officer of TeamT5, reviewed the information security attacks this year and analyzed the state of cyber attacks.

(Photo by reporter Xu Ziling)

[Reporter Xu Ziling/Taipei Report] The geopolitics in the Taiwan Strait is tense, and the international community is worried that war will break out. What signs will there be on the Internet before the cross-strait war begins?

Taiwan's information security start-up company "TeamT5 Du Pu Digital Security" stated that if there is an unusual, large-scale network control in China, or a large-scale APT (Advanced Persistent Threat) target transfer, it is very likely that a war is about to start sign.

TeamT5 focuses on research on the behavior of "state-level hackers". Recently, a seminar was held in which Chief Technology Officer Li Tingge analyzed the state of cyber attacks this year.

Li Tingge pointed out that as of November, the team observed a total of 109 APT attacks in Taiwan, most of which came from China.

He explained that "APT attack" is the so-called cyber espionage, whose main purpose is to infiltrate the target of the attack, steal information and convert it into various attacks during wartime.

Please read on...

As for the distribution of victims' industries, the top four are: government and military, IT industry, online gaming, and media.

Li Tingge said that government and military units have been the main targets of APT attacks for a long time, and the trend of IT industry being attacked is on the rise. Governments or other companies gain access to networks or endpoints to conduct "supply chain attacks."

Why online gambling has also become the main target of hackers?

Li Tingge speculates that it is related to the anti-corruption actions of the Chinese authorities and the flight of funds, because these gaming companies have long been regarded as money laundering channels, which may become the main reason for the Chinese government to crack down on the gaming industry.

As for the media industry, it is speculated that it has something to do with the just-concluded general election in Taiwan. The media has the latest news in their hands, so it has become the first target of hackers.

As for the source of the attack?

TeamT5 found that the largest group of hackers attacking Taiwan is Amoeba, followed by Huapi, accounting for nearly half of the total. This year, about 20 APT groups have been observed attacking Taiwan .

China's three major units command cyber warfare to paralyze our communication system

The TeamT5 team has observed in the past 10 years that the official support units behind the APT groups attacking Taiwan include the Chinese People's Liberation Army (now integrated into the "Strategic Support Force"), the Ministry of National Security, and the Ministry of Public Security.

If there is a war between the two sides of the strait, the masters of these three units may be the main backbone of cyber warfare, and the strategic support force will mobilize the other two units to coordinate operations.

Before the military war between the two sides of the Taiwan Strait, what signs will the Internet have?

Li Tingge said that many professional military studies have mentioned that there will be large-scale military operations across the strait before the war between the two sides, including the migration of personnel and ships. However, it is difficult to observe these phenomena on the Internet, but there are still traces.

The first is China's unusual and large-scale Internet control.

When there is an emergency in China, such as the 20th National Congress of the Communist Party of China and the White Paper Revolution, Internet control is usually adopted. If there is no reason for Internet control in China in the future, emergency news, etc., before the netizens on the other side suddenly wailed, they could "over the wall" This is not the case now, and Taiwan must pay attention.

The second is large-scale APT target transfer.

These APT attackers usually have their own areas of responsibility. Li Tingge said, "If these attackers who were originally responsible for attacking Russia and Southeast Asia all of a sudden came to attack Taiwan, it may represent that China has gathered experts to prepare to take action against Taiwan. "

As for how China will attack us after the war?

The primary goal is likely to paralyze Taiwan's communication systems, including telecommunications companies, radio stations, and military command and control systems. Possible attack methods include cutting submarine cables, destroying wireless base stations, or paralyzing DNS servers with DDos attacks.

The purpose of these attacks is to isolate Taiwan from the outside world, which not only greatly reduces Taiwan's military mobilization capabilities, but also intimidates the people of Taiwan.

In addition, false information is also a possible means of attack. China will spread anti-war rhetoric against Taiwan’s friendly countries such as Japan and the United States, or spread false information in Taiwan, so that the public will lose confidence in the government; during wartime, it will also cooperate with Taiwan’s internal personnel , Continue to publish effective messages on China's strategy, reducing the trust of the Taiwan government and military.

Grasp the pulse of the economy with one hand I subscribe to Free Finance Youtube channel

Already added friends, thank you

Welcome to 【Free Finance】

feel good

Already liked it, thank you.

related news