Taiwan’s top intelligence agency is warning that China is intensifying cyberattacks and online disinformation campaigns aimed at eroding public trust in government institutions and deepening divisions within the island’s democracy.

According to a report presented to parliament by Taiwan’s National Security Bureau (NSB) and cited by local media, government networks have faced an average of 2.8 million intrusions per day in 2025 — a 17 percent increase from last year.

Officials said much of that activity, traced to China, has targeted critical infrastructure, including defense, telecommunications, energy and medical systems. 

Beijing’s campaign combines cyber intrusions with information warfare, the bureau said. The influence operations include Chinese state media and what officials described as an “online troll army” that has been spreading fabricated content across social networks and online forums to undermine public confidence in the government’s cyberdefenses.

“Beyond intelligence theft, these operations integrate dark web, internet forum, and media channels to disseminate fabricated content,” the NSB wrote in its report, cited by Reuters.

The bureau said it has identified more than 10,000 abnormal social media accounts — many on Facebook — that have disseminated over 1.5 million pieces of disinformation. Much of the content attacks the Taiwanese government, promotes pro-China narratives, and seeks to sow distrust toward the U.S., Taiwan’s main security partner and arms supplier.

Chinese influence operators have reportedly used AI-generated memes and videos to amplify false narratives about sensitive issues such as tariff negotiations with Washington, and domestic energy policies. The NSB said these efforts are part of a coordinated strategy to shape public perception ahead of Taiwan’s 2026 local elections.

Officials described the current efforts as part of a “state-level” strategy involving China’s People’s Liberation Army (PLA), Ministry of State Security, and Public Security Bureau. Beijing, they said, employs a mix of military, civilian, and private-sector hackers to conduct espionage, manipulate online discourse and steal sensitive information.

Beijing has long denied involvement in hacking or disinformation campaigns, but Taiwan and Western governments have repeatedly accused China of using so-called “grey-zone” tactics — including military drills, espionage and online propaganda — to pressure the island into accepting its sovereignty claims.

Cybersecurity researchers closely track China-linked campaigns against Taiwan. In September, cybersecurity firm Proofpoint reported that Beijing-aligned threat actor TA415 had escalated its cyberattacks on the island’s semiconductor industry, targeting manufacturers, designers, and supply-chain entities.

China has also accused Taiwan of hacking. In May, Chinese authorities claimed that a group allegedly backed by Taiwan carried out a cyberattack on a local technology company and targeted sensitive infrastructure across the mainland — allegations the NSB has denied. In March, Chinese authorities accused four individuals allegedly linked to Taiwan’s military of conducting cyberattacks and espionage against the country.