EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems
    • Home
    • Cyber stability
    • Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems

    Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems

    Written by
    The Editorial Team
    06.20.25
    Cyber stability
    01
    MIN
    Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems
    Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems
    Taiwan targeted by large-scale cyberattack campaign against sensitive IT systems
    Image Canada: more than 42,000 data breaches in the tax system since 2020
    Cyber stability
    05.11.26 Cyber stability
    Next article
    Canada: more than 42,000 data breaches in the tax system since 2020
    Read
    01
    MIN
    Image Iranian APT group MuddyWater used Chaos ransomware as cover
    Cyber stability
    05.11.26 Cyber stability
    Next article
    Iranian APT group MuddyWater used Chaos ransomware as cover
    Read
    01
    MIN
    Image Ukrainian hacktivist groups BO Team and Head Mare cooperate against Russian targets
    Cyber stability
    05.11.26 Cyber stability
    Next article
    Ukrainian hacktivist groups BO Team and Head Mare cooperate against Russian targets
    Read
    01
    MIN
    Image Is the Cybersecurity World Heading Toward Its Own SaaSpocalypse?
    Cyber stability
    05.06.26 Cyber stability
    Next article
    Is the Cybersecurity World Heading Toward Its Own SaaSpocalypse?
    Read
    09
    MIN
    A newly identified cybercriminal group known as HoldingHands, likely linked to China, has launched a major cyberespionage campaign targeting Taiwan’s government agencies, strategic industries, and critical infrastructure.

    According to a report published by cybersecurity firm Fortinet on June 17, 2025, the attackers infiltrated sensitive information systems through phishing campaigns aimed at professionals in both the public and private sectors with access to key infrastructure. While Fortinet did not quantify the full scope of the operation, it characterized the campaign as both sophisticated and covert.

    HoldingHands reportedly deployed three main types of malware:

    • Winos 4.0, a modular tool capable of keylogging and privilege escalation
    • HoldingHands RAT, a custom-built remote access trojan that allows full control over compromised machines
    • Gh0stCringe, a data exfiltration tool derived from Gh0st RAT, which has previously been used by China-affiliated actors

    The infections were marked by their stealth and the systematic installation of backdoors. Fortinet analysts believe the group’s primary objective is long-term access to Taiwan’s sensitive IT systems, likely to exploit them in the event of a geopolitical crisis.

    The Editorial Team
    06.20.25
    Articles by the same author:
    1
    05.27.26 Cyber stability
    The ECB summons European banks to discuss AI-related risks
    Read
    01
    MIN
    2
    05.25.26 Cybercrime
    France and the Netherlands lead the dismantling of First VPN, a service popular among cybercriminals
    Read
    01
    MIN
    3
    05.25.26 Cybercrime
    Arrest of Canadian man suspected of running the KimWolf botnet
    Read
    01
    MIN
    4
    05.25.26 Digital transformation
    Canada: government ready to amend its law on law enforcement access to data
    Read
    01
    MIN
    Image Canada: more than 42,000 data breaches in the tax system since 2020
    Cyber stability
    05.11.26 Cyber stability
    Next article
    Canada: more than 42,000 data breaches in the tax system since 2020
    Read
    01
    MIN
    Image Iranian APT group MuddyWater used Chaos ransomware as cover
    Cyber stability
    05.11.26 Cyber stability
    Next article
    Iranian APT group MuddyWater used Chaos ransomware as cover
    Read
    01
    MIN
    Image Ukrainian hacktivist groups BO Team and Head Mare cooperate against Russian targets
    Cyber stability
    05.11.26 Cyber stability
    Next article
    Ukrainian hacktivist groups BO Team and Head Mare cooperate against Russian targets
    Read
    01
    MIN
    Image Is the Cybersecurity World Heading Toward Its Own SaaSpocalypse?
    Cyber stability
    05.06.26 Cyber stability
    Next article
    Is the Cybersecurity World Heading Toward Its Own SaaSpocalypse?
    Read
    09
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.