EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems
    • Home
    • Cyber stability
    • Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems

    Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems

    Written by
    The Editorial Team
    06.20.25
    Cyber stability
    01
    MIN
    Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems
    Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems
    Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems
    Image Ukrainian Hacktivist Group Silent Crow Claims Cyberattack on Russian Airline Aeroflot
    Cyber stability
    07.29.25 Cyber stability
    Next article
    Ukrainian Hacktivist Group Silent Crow Claims Cyberattack on Russian Airline Aeroflot
    Read
    01
    MIN
    Image Microsoft SharePoint Breach Attributed to Chinese State-Linked Hackers
    Cyber stability
    07.24.25 Cyber stability
    Next article
    Microsoft SharePoint Breach Attributed to Chinese State-Linked Hackers
    Read
    01
    MIN
    Image Europol Dismantles Infrastructure of Pro-Russian Hacktivist Group NoName057(16)
    Cyber stability
    07.21.25 Cyber stability
    Next article
    Europol Dismantles Infrastructure of Pro-Russian Hacktivist Group NoName057(16)
    Read
    01
    MIN
    Image Israeli spyware Pegasus can face criminal prosecution in the United States
    Cyber stability
    07.17.25 Cyber stability
    Next article
    Israeli spyware Pegasus can face criminal prosecution in the United States
    Read
    01
    MIN
    A newly identified cybercriminal group known as HoldingHands, likely linked to China, has launched a major cyberespionage campaign targeting Taiwan’s government agencies, strategic industries, and critical infrastructure.

    According to a report published by cybersecurity firm Fortinet on June 17, 2025, the attackers infiltrated sensitive information systems through phishing campaigns aimed at professionals in both the public and private sectors with access to key infrastructure. While Fortinet did not quantify the full scope of the operation, it characterized the campaign as both sophisticated and covert.

    HoldingHands reportedly deployed three main types of malware:

    • Winos 4.0, a modular tool capable of keylogging and privilege escalation
    • HoldingHands RAT, a custom-built remote access trojan that allows full control over compromised machines
    • Gh0stCringe, a data exfiltration tool derived from Gh0st RAT, which has previously been used by China-affiliated actors

    The infections were marked by their stealth and the systematic installation of backdoors. Fortinet analysts believe the group’s primary objective is long-term access to Taiwan’s sensitive IT systems, likely to exploit them in the event of a geopolitical crisis.

    The Editorial Team
    06.20.25
    Articles by the same author:
    1
    08.01.25 Cybercrime
    U.S., Canada, and Australia Update Warning on Scattered Spider Cybercrime Group
    Read
    01
    MIN
    2
    08.01.25 Cyber stability
    Russia: Cyberattack Forces Closure of Hundreds of Pharmacies
    Read
    01
    MIN
    3
    08.01.25 Cybersecurity
    CyberArk Accepts $25 Billion Acquisition Offer from Palo Alto Networks
    Read
    01
    MIN
    4
    08.01.25 Cyber stability
    U.S. Sanctions Three North Korean Officials Behind IT Worker Farms
    Read
    01
    MIN
    Image Ukrainian Hacktivist Group Silent Crow Claims Cyberattack on Russian Airline Aeroflot
    Cyber stability
    07.29.25 Cyber stability
    Next article
    Ukrainian Hacktivist Group Silent Crow Claims Cyberattack on Russian Airline Aeroflot
    Read
    01
    MIN
    Image Microsoft SharePoint Breach Attributed to Chinese State-Linked Hackers
    Cyber stability
    07.24.25 Cyber stability
    Next article
    Microsoft SharePoint Breach Attributed to Chinese State-Linked Hackers
    Read
    01
    MIN
    Image Europol Dismantles Infrastructure of Pro-Russian Hacktivist Group NoName057(16)
    Cyber stability
    07.21.25 Cyber stability
    Next article
    Europol Dismantles Infrastructure of Pro-Russian Hacktivist Group NoName057(16)
    Read
    01
    MIN
    Image Israeli spyware Pegasus can face criminal prosecution in the United States
    Cyber stability
    07.17.25 Cyber stability
    Next article
    Israeli spyware Pegasus can face criminal prosecution in the United States
    Read
    01
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.