Taiwanese organisations experienced at least 906 successful attacks in 2024, marking a 20 per cent increase from the previous year
China’s cyber operations targeting Taiwan surged in 2024, with phishing emails and zero-day exploits used to attack government agencies, telecommunications firms, and the transportation sector, according to an annual report by Taiwan’s National Security Bureau (NSB).
The NSB revealed that Taiwan faced an average of over 2.4 million cyberattack attempts daily in 2024, double the 1.2 million daily average recorded in 2023. Government systems bore the brunt of these attacks, while the telecommunications sector also experienced a significant surge, with security events increasing more than sixfold.
“China has continued to intensify its cyberattacks against Taiwan,” the NSB stated in its report. “By applying diverse hacking techniques, China has conducted reconnaissance, set cyber ambushes, and stolen data through hacking operations targeting Taiwan’s government, critical infrastructure, and key private enterprises.”
Growing Threat
China’s cyber aggression extends beyond Taiwan. Chinese government-backed groups have targeted telecommunications networks in the United States, stolen information from Southeast Asia and Africa, and conducted SMS phishing attacks in India. These groups have evolved from cyber espionage to a wider array of malicious activities, underscoring their growing sophistication and reach.
According to Jon Clay, Vice President of Threat Intelligence at cybersecurity firm Trend Micro, effective countermeasures remain elusive. “Until nation-states take action against China’s aggressiveness, I don’t think you’re going to see a diminishing of the pace in attacks,” he said. “It’s a wake-up call that companies must start thinking about how to defend themselves better in 2025.”
Increase In Successful Attacks
Taiwanese organisations experienced at least 906 successful attacks in 2024, marking a 20 per cent increase from the previous year. Over 80 per cent of these attacks targeted government systems, with telecommunications firms also heavily affected.
The focus on telecommunications is a deliberate strategy, according to Michael Freeman, Head of Threat Intelligence at Armis, a cyber exposure management firm. “The telecom industry is being hit by China in most regions right now because if you can control the flow of information, you control a lot of factors,” Freeman explained. “They could use that information to spy on politicians and find out something that could be used for blackmail purposes — it’s a gift that keeps on giving in many different ways.”
Regional Trends & Implications
The Asia-Pacific region has seen an overall increase in cyber threat activity, with cybercriminals and espionage groups targeting companies and governments alike. Chinese cybercrime syndicates, in particular, have become a major issue for neighbouring countries, often involving forced labour schemes for online scams.
Geopolitical tensions are also likely to exacerbate cyberattacks. With the incoming Trump administration planning to impose significant tariffs on Chinese goods, diplomatic strains in the region are expected to rise, creating fertile ground for further cyber aggression.
China’s policies, such as requiring researchers to disclose significant vulnerabilities to the government, have likely enabled state-sponsored hacking groups to stockpile exploitable flaws. “It’s really all about acquiring sensitive information for political, military, and economic advantage,” said Clay.
Defensive Measures
Experts recommend that organisations operating in the region take proactive steps to strengthen cybersecurity. This includes deploying sophisticated detection systems and using deceptive techniques, such as planting fake assets in networks to monitor malicious activity.
“Once an adversary knows that you’re using some form of deception, they’re much more cautious in the way they proceed in your environment,” Freeman noted. “They don’t know the scale of it. They don’t know what types of technology you are using. It’s putting them at a greater disadvantage.”
As cyberattacks in the Asia-Pacific region continue to rise, increasing the cost and complexity for attackers should be considered a win, experts say. Taiwan’s experience serves as a stark reminder of the urgent need for robust cybersecurity measures amidst an escalating threat landscape.
