09.07.2024.

China-backed hackers stepping up attacks on Taiwan, cybersecurity firm says

Hacking group RedJuliett compromised two dozen organisations in Taiwan and elsewhere, report says.

A suspected China-backed hacking outfit has intensified attacks on organisations in Taiwan as part of Beijing’s intelligence-gathering activities on the self-governing island, a cybersecurity firm has said.

The hacking group, RedJuliett, compromised two dozen organisations between November 2023 and April of this year, likely in support of intelligence collection on Taiwan’s diplomatic relations and technological development, Recorded Future said in a report released on Monday.

RedJuliett exploited vulnerabilities in internet-facing appliances, such as firewalls and virtual private networks (VPNs), to compromise its targets, which included tech firms, government agencies and universities, the United States-based cybersecurity firm said.

RedJuliett also conducted “network reconnaissance or attempted exploitation” against more than 70 Taiwanese organisations, including multiple de facto embassies, according to the firm.

“Within Taiwan, we observed RedJuliett heavily target the technology industry, including organisations in critical technology fields. RedJuliett conducted vulnerability scanning or attempted exploitation against a semiconductor company and two Taiwanese aerospace companies that have contracts with the Taiwanese military,” Recorded Future said in its report.

“The group also targeted eight electronics manufacturers, two universities focused on technology, an industrial embedded systems company, a technology-focused research and development institute, and seven computing industry associations".

While nearly two-thirds of the targets were in Taiwan, the group also compromised organisations elsewhere, including religious organisations in Taiwan, Hong Kong, and South Korea and a university in Djibouti.

Recorded Future said it expected Chinese state-sponsored hackers to continue targeting Taiwan for intelligence-gathering activities.

“We also anticipate that Chinese state-sponsored groups will continue to focus on conducting reconnaissance against and exploiting public-facing devices, as this has proved a successful tactic in scaling initial access against a wide range of global targets,” the cybersecurity firm said.

Chinese Foreign Ministry spokeswoman Mao Ning told reporters she was not aware of the report, but that Recorded Future was not a credible organisation.

What I can tell you is that this is not the first time that the company you mentioned has fabricated disinformation on so-called ‘Chinese hacking operations.’ There is absolutely no professionalism or credibility to speak of in what the company does,” she said.

Beijing has repeatedly denied engaging in cyber-espionage – a practice carried out by governments worldwide – instead casting itself as a regular victim of cyberattacks.

China claims democratically ruled Taiwan as part of its territory, although the Chinese Communist Party has never exerted control over the island.

Relations between Beijing and Taipei have deteriorated as Taiwan’s ruling Democratic Progressive Party has sought to boost the island’s profile on the international stage.

On Monday, Taiwanese President William Lai Ching-te hit out at Beijing after it issued legal guidelines threatening the death penalty for those who advocate Taiwanese independence.

“I want to stress, democracy is not a crime; it’s autocracy that is the real evil,” Lai told reporters.

Lai, whom Beijing has branded a “separatist”, has said there is no need to formally declare independence for Taiwan because it is already an independent sovereign state.

CONCLUSION
Western security agencies have repeatedly warned that the Chinese government is behind various hacker groups from China that systematically carry out cyber attacks in other countries, posing a security threat to those countries and their citizens.
In this specific case, Taiwan is the target—a country that declares itself independent, which China disputes and uses various forms of pressure against. Considering the increasing tension in this region, cyber attacks can be seen as regular anti-Taiwan activities by China.
Despite warnings from various Western security agencies, there seems to be little concern about this type of attack in Western Balkan countries. On the contrary, various equipment used for security purposes is being procured from Chinese companies in many Western Balkan countries, despite warnings that this equipment could be used against a country or its citizens when China deems it necessary. The need to increase the level of security for both countries and citizens in Western Balkan countries is more than evident, judging by the experiences of other countries. Therefore, the relevant institutions and security agencies in Western Balkan countries should pay more attention to this issue.

 

08.05.2025.
'We will fight until we win': Can Georgia escape Russia’s influence? 08.05.2025.
How Russian special services are turning Ukrainian teenagers into terrorists 08.05.2025.
10 new contracts worth more than 35 million euros awarded for the renovation of public cultural infrastructure 08.05.2025.
Russia, Ukraine Swap 205 Prisoners Of War In Latest Deal 07.05.2025.
From Warsaw to Bosnia and Herzegovina: The escape of a Russian who was sending explosives in packages, stopped by OSA 07.05.2025.
Brothers in Arms: Assessing North Korea’s Contribution to Russia’s War in Ukraine 07.05.2025.
European Peace Facility: Council adopts first-ever assistance measure in support of the Armed Forces of Montenegro 07.05.2025.
How Russia took record losses in Ukraine in 2024 06.05.2025.
The UK banned sending game controllers to Russia. What’s the point? 06.05.2025.
Putin's Peace: What the Kremlin Leader Wants to "Squeeze" Out of Trump