1. After the Taiwan production line crashes / after the virus, there is still a wave of offensive?
TSMC confirmed yesterday that the company's machine production line was infected with computer viruses, emphasizing non-hacker attacks. But security experts said that hackers are currently 'customized' to attack specific industries or top companies. Virus infection is only the first step. The attacked enterprise must quickly step up to prevent the next step of the hacker.
According to security experts, there are very few hackers who write programs only to implant viruses into enterprise systems. This year, hackers’ 'targeted attacks' are getting stronger and stronger, and they will not spread the virus to see which security firewalls are weak. Enterprises are shot down, but they are 'customized attacks' for specific industries such as the financial industry or top companies such as high-tech industries.
According to the security experts, the first stage of the customized attack is to infect the virus. At the beginning, it is first implanted into the system, lurking for a period of time, and then 'smashing' secondary targets, slamming the West, shifting the attention of the company, and finally focusing on the real target. In the end, it will even extinguish the evidence and erase the invasion trail.
For example, when a bank was hacked by a hacker last year, the bank's internal trading system was slowed down and some small problems were created. The bank thought it was infected by a virus, but when it was busy dealing with the virus, the hacker turned to attack the international money transfer system. As a result, the bank was once smashed up to tens of millions of dollars.
According to security experts, infection with viruses and bedding is a two-stage process. In recent years, relatively large incidents must have been infected with viruses, but there will be hackers 'targeted' attacks.
If the target is the financial industry, the purpose of the hacker is to 'blackmail, fortune', forcing bank transfer or money. If you attack a high-tech industry like TSMC, there may be other business secrets or technical purposes. To do a comprehensive check, not just for the system infected with the virus.
But regardless of the virus or being shackled, even the top companies such as TSMC can't retreat. Other companies are not even more wary. The experts said that in addition to strengthening the security, the company should make its own security structure more rigorous, and the system should also An efficient upgrade is provided, and internal personnel are reminded not to open unknown files or emails at will, resulting in a computer virus having a chance to invade.
2. TSMC production line down: Microsoft system control production line is serious;
TSMC's security protection has always been a gifted enterprise, and it is also a model for all companies to learn. It has a world-class protection level. However, TSMC has established itself as a global leader in foundry, and it is naturally the object of all parties to attack or steal secrets.
Many engineers of Zhuke TSMC were recalled after work, and urgently dealt with suspected poisoning incidents in computers. In particular, employees in the information department were recalled for virus at dinner time, and production line employees were busy checking whether the wafers of the machine were stuck or broken. Counting until late at night, everything is almost normal.
Some engineers said that the system control machine of the Microsoft system was in serious condition, and the other machines controlled by the Linux system were almost okay; but the overall crash situation, whether it is related to the Microsoft operating system, remains to be explained by TSMC.
According to the internal information, the engineer said that the computer crash occurred from the production line to the test area the night before. It was later detected as a virus, not a hacker, and the source of the virus was still in the inventory. Fortunately, this time and ○ 21 The earthquake situation of the Liunantai Earthquake is very different. Not only is there no machine displacement, but several production areas have not heard the wafer stuck in the machine or cracked.
3. TSMC was exposed to virus intrusion, and SMIC checked the virus;
Taiwanese semiconductor giant TSMC suddenly encountered a large-scale virus attack.
According to Taiwan’s Zhongshi Electronics News, on the evening of August 3, near midnight, TSMC was located at the 12-inch wafer fab and operation headquarters of the Hsinchu Science Park in Taiwan, and suddenly there was news that the computer was infected by the virus and the production line was completely shut down. Within the same time, TSMC's Fab 15 plant in the Taichung Science Park and the Fab 14 plant in the Tainan Science Park also sent the same news. This represents TSMC's three important production bases in North, Central and South Taiwan, synchronized due to virus invasion. The production line is shut down.
Subsequently, TSMC also confirmed this matter. TSMC said that on the evening of August 3, some of the production equipment was infected with the virus. It was not attacked by hackers. The company has already controlled the scope of the virus infection and found a solution, affected production. The equipment is gradually resumed production. The degree of virus infection varies from factory to factory, some factories have returned to normal in a short time, and the rest of the factories are expected to return to normal within one day.
TSMC's chip foundry business has a global market share of 56%. In addition to being the sole supplier of Apple's iPhone core processor chips, TSMC has 465 customers worldwide, including almost all major global chip designers. Apple, Qualcomm, AMD, NVIDIA, Broadcom, NXP, Huawei chip division Haisi, MediaTek and other companies rely on TSMC's cutting-edge manufacturing process to create advanced chips.
A source told reporters that the attack on TSMC equipment was the ransomware Wannacry. The specific phenomenon was a computer blue screen, locking various documents, and databases.
Last May, the ransomware was ravaged around the world, and hundreds of countries around the world were attacked by the ransomware. It is said to use hackers who hacked from the US National Security Agency’s cyber arsenal. The tool 'Eternal Blue'.
The aforementioned sources said that in the past, the production line had been shut down due to virus attacks, but they were all small-scale, like TSMC's three 12-inch production lines, including production equipment and testing equipment.
However, in general, equipment on the production line generally does not link to the Internet. It is not clear how the TSMC is attacked.
Many industry insiders believe that such a production shutdown event will cause great losses to the company, and the probability of wafers on production equipment being waste is very large.
As for the customer before the virus attack, there is no clear news for which customer is on the TSMC production line. However, the third quarter of each year is the peak season for TSMC's major customers, especially the big smartphone customer Apple began to pull the goods. Season. Therefore, TSMC's production line has problems, whether it will affect the customer's subsequent peak seasoning effect, need to continue to observe.
The virus invasion tested the new team of TSMC. In June this year, Zhang Zhongmou, the chairman of TSMC, known as the godfather of Taiwan Semiconductor, officially retired. The original anti-hacking work of TSMC was controlled by TSMC’s senior vice president of information technology and information chief Zuo Dachuan. But he has retired in March this year.
According to industry insiders, TSMC has been affected by the virus invasion, and another integrated circuit foundry, SMIC, is also scrutinizing the virus.
4. Out-of-stock price hikes fell. The market value of silicon wafers shrank by 28.6 billion in one day.
The stock prices of the passive component group have plunged, and the share price of the silicon wafers and the metal oxide half-effect transistor (MOSFET) group have fallen sharply. The market value of the silicon wafer group has shrunk to NT$ 28.6 billion yuan (the same below).
The supply of laminated ceramic capacitors (MLCC) continues to be tight, and the legal person expects that the market supply will be tight all the way to next year, and there is still room for price increases.
However, the stock price of the passive component group has slowed down, and there have been heavy losses from time to time. The share price of the passive component group, including the national giant, has plummeted today. Among them, the national giant once fell to the limit, and the stock price fell to 716 yuan, down 79 yuan. The decline was 9.93%.
Huaxin Branch's share price also fell to 308.5 yuan in the morning, down 34 yuan; the stock price of Heshentang once reached 185 yuan, down 20 yuan, a drop of 9.75%.
As the share price of the passive component group fell, the share price of the silicon wafer and MOSFET group also fell. The wafer fab of the silicon fab fell below the 500-yuan level, and once fell to 458 yuan, down 46 yuan, a drop of 9.12%.
Taishengke's share price once reached 138 yuan, down 8 yuan, down 5.48%; Hejing's share price once reached 57.3 yuan, down 4.5 yuan, down 7.28%. Global wafers and other three silicon wafer fabs today's market value has shrunk by 28.6 billion yuan.
In the large-capacity MOSFET factory, the stock price reached 135.5 yuan, a decline of about 4.91%. The company's share price was relatively supportive, still reaching 146.5 yuan, a decline of about 2.98%.