起底台湾黑客组织网络攻击活动

Core Viewpoint - The report reveals the activities of Taiwan's hacker organization, the "Cyber Army," which conducts cyber attacks against mainland China, aiming to disrupt national unity and steal sensitive data [1] Group 1: Organization Structure and Activities - The "Cyber Army," officially known as the "Ministry of National Defense Cyber Army Command," was established in 2017 and is responsible for coordinating cyber capabilities against mainland China and Hong Kong [1] - The organization consists of four internal departments: Information Communication Department, Network Operations Department, Electronic Warfare Department, and Logistics Department, along with a training center [1] Group 2: Attack Methods and Targets - The "Cyber Army" disguises itself as various hacker groups, employing techniques such as vulnerability scanning, password cracking, and phishing emails to steal sensitive data from mainland China [1] - In 2022, the hacker group "Poison Cloud Vine" focused on large-scale phishing attacks targeting research and education sectors in mainland China, while in 2023, it expanded its attacks to government, defense, and transportation sectors, particularly airports and civil aviation [1] - By 2024, the group aimed to extend its attacks to maritime sectors, attempting to steal maritime-related intelligence from mainland China [1] Group 3: Impact and Warnings - The "Cyber Army" has conducted thousands of large-scale cyber attacks on key departments and sectors in mainland China and Hong Kong, with malicious activities including the dissemination of separatist slogans and insults against Chinese national heroes [1] - Experts warn that despite the relatively low technical level of these attacks, there is a risk of more sophisticated and covert attacks if the hackers gain significant access, potentially sharing information with foreign entities [1]