Release time: 2025/4/2 19:31 Update time: 2025/4/2 21:02
CHEN,KUAN-HSUN CHANG,KUO-LIANG /Local Report
In February this year (2025), Mackay Hospital was invaded by hackers and patients’ personal information was sold on the dark web. The police investigated the case and found that other hospitals, schools and listed companies were also attacked by the same person. The suspect is now found to be a 20-year-old man from Zhejiang, China, who works for an information security company on the other side of the Taiwan Strait. He has been issued a wanted notice and will ask China to cooperate in the investigation through the cross-strait joint attack mechanism.
A post on the dark web revealed that Mackay Hospital was hacked and the personal data of millions of patients became a trading commodity, with an asking price of more than 3 million. After a month of investigation, the police identified the main suspect behind the incident, Crazy Hunter, a 20-year-old man surnamed Luo from Zhejiang, China, who worked in information security on the other side of the Taiwan Strait.
LIN,CHIEN-LUNG, director of the Criminal Bureau’s Technology Crime Prevention Center, said, “The suspect was identified from the hacker’s source IP address, his malicious program, and his attack methods. This is the first time the police have confirmed the true identity of an overseas hacker.”
Not only was Mackie victimized, Changhua Christian Hospital, Asia University, Asia University Affiliated Hospital, and three listed companies were also attacked by the same hacker using a ransomware virus, demanding $800,000 to $2.5 million. The suspect even claimed on the dark web that two institutions had paid to redeem data.
Listed companies have previously issued serious news. Although they have confirmed that they have been attacked by cyberattacks, they have emphasized that no personal information or files have been leaked.
Information security expert LIU,YEN-PO pointed out, “Whether it is a medical institution or a listed company, it is still in a very passive prevention position. Information security may be improved, usually due to regulatory considerations.”
Experts also analyzed that once the ransomware virus is implanted, the files cannot be fully restored, and it is not ruled out that hackers intend to steal secrets. Now the whole case has been handed over to the prosecutor, who found that the man surnamed Luo was involved in threats to obtain money, ’Personal Data Protection Act ‘and other crimes, and was wanted on April 1. The police stated that they would fight through both sides of the Taiwan Strait and asked China to assist in the investigation.
Wang Po-Chi, an associate professor of the Department of Criminal Justice at Ming Chuan University analyzed, “I personally think it is a bit difficult for the public security forces in mainland China to cooperate and cooperate in this department.”
Cross-Strait relations are cold, and scholars are doubtful whether China will help. However, the targets of hackers’ intrusions have changed from the public sector in the past to hospitals, schools, and private enterprises. Experts point out that private information security awareness is insufficient and there is still room for improvement.