CONSULAR AFFAIRS BUREAU HACKED, 15,000 PERSONAL DATA BREACHED|領務局電郵遭駭 上萬筆民眾個資恐外洩

Personal information of Taiwanese nationals kept by the Bureau of Consular Affairs has been hacked. In a routine information security audit, the Bureau found more than ten overseas offices' email boxes hacked, and the number of people whose information has been leaked is to the tune of over 10 thousand. The Bureau apologized over the incident and is updating its information security measures. The Bureau of Consular Affairs encourages nationals to register on the official website before going abroad in order to receive assistance in case of emergency. Each year, around 50,000 nationals registered to the website. However, recently the Bureau notified some travelers that their personal information might have leaked. ==CHUNG WEN-CHENG Bureau of Consular Affairs Deputy Director== We found some unusual activities in the past three months. We estimate the number of affected lists should be approximately 15,000. The email box password of our overseas office may be cracked. Under the circumstance, the hacker used the password to log into our server and received emails directly from the server. The Bureau of Consular Affairs pointed out, for those nationals who are traveling to Japan, the U.K. and Southeast Asia, their private information such as birth date and year, national ID card number..., etc. might be hacked. Some KMT legislators called the incident too ridiculous. ==LIAO KUO-TUNG KMT Party Legislator Convener== Usually, the measures on information should be very secure, there shouldn't be any leaking. It's certainly ridiculous, it shouldn't have happened. Of course I feel it's very ridiculous. ==LEE CHUN-YI DPP Legislator== Email is a more outdated tool. But no matter it was email, Line, or Facebook, they all had information leak. Now the most important task is the information security, how do we plan the measures? Using what tools? I think this is very important. DPP legislators pointed out, the national information security measures should be updated with modern technology in order to protect information. The Bureau of Consular Affairs apologized over the incident, and they had stopped uploading lists to overseas offices. The Bureau found no trace of hacker broke into the internal servers. TRANSLATED BY：ANTHONY LIN 外交部領務局鼓勵民眾出國旅遊前，上網登錄資料，以便在海外能獲得緊急協助，吸引每年約有五萬多名民眾上網登錄，但是日前有不少民眾收到領務局的主動通知，出國登錄的資料可能遭受不明人士攔截。 ==外交部領事事務局副局長 鍾文正== 我們發現有異常活動 主要是在最近的三個月 我們估算可能受到影響的筆數 大約在一萬五千筆左右 (外館)郵件信箱的密碼可能被破解 所以在這種情況之下 他用密碼直接登錄我們伺服器 從伺服器上面直接做收信的動作 領務局指出，辦理出國登錄的民眾，旅遊的目的地以日本、英國與東南亞等國家居多，要登錄的資料包括出生年月日以及身份證字號等，而民眾個資經由領務局被外洩，藍營立委認為太誇張。 ==國民黨團總召 廖國棟== 照理講現在的保密措施都非常的好 不應該有所謂外漏的情況 當然是誇張 這不應該發生的事情 當然會覺得很誇張 ==民進黨立委 李俊俋== EMAIL的方式 現在來講已經是比較過時的一種方式 但是不管EMAIL也好 LINE也好 臉書也好 都會有資訊外流的現象 所以最重要的是整體的資訊安全 到底怎麼規劃 用什麼樣的方式 我覺得這個非常重要 民進黨立委指出，國家的資安系統應該要與時俱進，才能確保資訊安全。對於民眾個資外洩，領務局致上歉意，並表示已經立即停止傳送出國登錄資料到外館，同時也確認領務局內的主機並沒有遭到駭客入侵的跡象。 記者 郭采彥 陳昌維 台北報導