Search
Insights / Crime, Geopolitics

Flax Typhoon: Chinese Cyber Espionage Botnet in Taiwan

Chinese cyber espionage in Taiwan is ongoing, but recently the Chinese state-sponsored group known as Flax Typhoon suffered a significant defeat when the botnet it operated was taken down. The hacking group abandoned its infrastructure after efforts from a joint operation by US federal agencies took control of the network. Flax Typhoon (aka Ethereal Panda, Red Juliett) has similarities to Volt Typhoon, which was discovered targeting US critical infrastructure. However, Flax Typhoon is targeting Taiwanese government entities, academic institutions, and technology sector companies. The Flax Typhoon group infects internet-facing devices such as routers, firewalls, network-attached storage (NAS), and Internet of Things (IoT) devices. The group has operated the botnet since 2021 and controlled around 260,000 devices.

Key Judgment 1. Chinese cyber espionage groups are highly likely to continue covert intelligence-gathering activities in Taiwan as regional tensions increase.

Key Judgment 2. Flax Typhoon is likely to begin immediate efforts to rebuild its infrastructure and botnet, following the take-down operation by the US federal authorities.

Key Judgment 3. US authorities will likely continue aggressive and coordinated counter-measures against Chinese espionage operations as tensions escalate with the United States.

Rest of this post is for members only

Already have an account?  Log in

6 Months
£1500
  • Access to all free content
  • Access to weekly newsletter
  • Access to exclusive reports
  • Access to video analysis
  • First access to training program
12 months
£3000
  • Access to all free content
  • Access to weekly newsletter
  • Access to exclusive reports
  • Access to video analysis
  • First access to training program
Already a member? Log in here
In this article
Cyber espionageAPT 44ChinaHackingTaiwan

Allen P.

Table of Contents
In this article

Related Content

Geopolitics, Defence

Venezuelan Intelligence: Reducing Repression, Aligning with Washington

TYPE:_ Intelligence Report
Location:_ Latin America
Tags:_ Politics, Security, South America, Strategy, Surveillance, United States
Locked
Crime, Technology

Golden Triangle Cybercrime: Official Complicity and Tech Boost Scope, Sophistication

TYPE:_ Intelligence Report
Location:_ South East Asia and Pacific
Tags:_ Cybercrime, chinese investment, Crime, fraud, Laos, Organised Crime, Technology
Locked
Geopolitics, Tradecraft

Weaponising Migration: Russia’s PSYOPS in Europe

TYPE:_ Intelligence Report
Location:_ Europe, Eurasia
Tags:_ Psyops, Artificial Intelligence, Disinformation, Hybrid Warfare, Immigration, Misinformation, Russia

Stay in the loop

Get a free weekly email that makes reading
intel articles and reports actually enjoyable.

Log in
Table of Contents

Log in

Stay in the loop

Join thousands of people receiving ground truth based reports that affect their business, investments and personal life.

Contact

Contact

"*" indicates required fields

This field is for validation purposes and should be left unchanged.
Consent
Log in
Sign up