Introduction
In 2024 [2] [3] [4] [7] [8] [9] [10], Taiwan faced a significant escalation in cyberattacks targeting its government networks [8], with incidents doubling from the previous year. These attacks, primarily attributed to Chinese state-backed hackers [2] [4] [7] [8] [9] [10] [12], are part of a broader strategy to undermine Taiwan’s stability through military, economic [2] [4] [7] [8], and disinformation tactics [4]. The situation highlights the urgent need for enhanced cybersecurity measures and international collaboration to protect Taiwan’s critical infrastructure and maintain public confidence.
Description
In 2024 [2] [3] [4] [7] [8] [9] [10], Taiwan experienced a dramatic rise in cyberattacks against its government networks [4] [8], averaging 2.4 million incidents daily [7], a significant increase from the 1.2 million recorded in 2023, as reported by the island’s security bureau [4]. The National Security Bureau attributes the majority of these attacks to Chinese state-backed hackers [3] [4], who are employing increasingly sophisticated tactics as part of a broader strategy that includes military pressure, economic coercion [4] [8], and disinformation campaigns aimed at undermining public confidence in the Taiwanese government [4]. Key sectors affected include telecommunications [5] [6] [12], transportation [1] [2] [5] [6] [7] [8] [9] [10] [11] [12], and defense [2] [7] [10] [11], with critical infrastructure such as highways [8], ports [2] [4] [8] [9], and the high-tech manufacturing sector being particularly targeted.
These cyber campaigns pose substantial threats to essential services and are often synchronized with Chinese military exercises. Notably, Distributed Denial of Service (DDoS) attacks have been executed against Taiwan’s transportation and financial sectors during such drills [1], amplifying harassment and military intimidation [1] [5] [6] [12]. Experts have raised alarms about the scale of these cyberattacks [8], indicating that the Chinese Communist Party has effectively weaponized its cyber capabilities against Taiwan [4] [8], which remains the primary target [8]. The sophistication of hacking techniques has evolved [1] [5] [11] [12], with PRC hackers utilizing advanced persistent threats, backdoor software [2], and various methods to infiltrate Taiwanese government agencies and steal confidential data [9]. Common tactics include exploiting vulnerabilities in Netcom devices [9], employing evasion techniques such as living-off-the-land, and deploying social engineering strategies [9], including phishing, aimed at the emails of civil servants for espionage [9].
Additionally, the intent behind these cyberattacks is to disrupt government operations and gain strategic advantages in political [4], military [1] [2] [3] [4] [5] [6] [7] [8] [9] [11] [12], technological [2] [4] [9], and economic domains [2] [4]. Other observed tactics include ransomware attacks against manufacturing companies and the theft of patented technology information from startups [9], as well as the sale of personal data of Taiwanese nationals on the dark web [9]. The hack and leak of citizens’ data serve to generate profits and undermine the credibility of the Taiwanese government [9].
In response to these escalating threats, Taiwan’s joint security defense mechanism has proven effective in facilitating real-time threat information sharing among intelligence sources and government agencies [9], significantly enhancing the country’s cyber defense capabilities [9]. The National Security Bureau emphasizes the need for advanced cybersecurity measures and collaboration with international allies to bolster Taiwan’s digital infrastructure against ongoing threats [2]. The situation underscores the necessity for vigilance as Taiwan navigates the complexities of hybrid tactics, all integral to China’s long-term goal of reunification [2].
Conclusion
The surge in cyberattacks against Taiwan in 2024 underscores the critical need for robust cybersecurity defenses and international cooperation. These attacks threaten essential services and aim to destabilize Taiwan’s government and economy. By enhancing real-time information sharing and collaborating with global allies, Taiwan can strengthen its digital infrastructure and resilience against such threats. As Taiwan continues to face complex hybrid tactics, maintaining vigilance and advancing cybersecurity measures will be crucial in safeguarding its sovereignty and stability.
References
[1] https://hongkongfp.com/2025/01/06/chinese-hackers-were-behind-most-cyberattacks-against-taiwan-in-2024-security-officials-say/
[2] https://www.techtimes.com/articles/308951/20250106/taiwan-hit-24-million-cyberattacks-day-chinas-digital-war-island-intensifies.htm
[3] https://www.japantimes.co.jp/news/2025/01/06/asia-pacific/chinese-cyberattacks-taiwan-24-mln-a-day/
[4] https://www.theepochtimes.com/china/taiwan-reports-cyberattacks-doubled-in-2024-mostly-from-china-5786867
[5] https://www.voanews.com/a/taiwan-says-cyberattacks-double-in-2024-china-main-culprit/7925596.html
[6] https://www.firstpost.com/world/taiwan-confronts-wave-of-chinese-cyberattacks-daily-attacks-double-to-2-4-million-in-2024-13850258.html
[7] https://economictimes.indiatimes.com/tech/technology/chinese-cyberattacks-on-taiwan-government-averaged-2-4-million-a-day-in-2024-report-says/articleshow/116982344.cms
[8] https://www.ntd.com/taiwan-reports-cyberattacks-doubled-in-2024-mostly-from-china_1038843.html
[9] https://www.infosecurity-magazine.com/news/chinese-hackers-attacks-taiwan/
[10] https://thenimblenerd.com/article/taiwan-under-siege-chinese-hackers-double-cyber-attacks-in-2024/
[11] https://thedefensepost.com/2025/01/06/taiwan-cyberattacks-2024-china/
[12] https://www.thejakartapost.com/world/2025/01/06/taiwan-says-cyberattacks-double-in-2024-china-main-culprit.html
