Risk management & Cyber Security

Cyber Security

Cyber Security

In order to reinforce information security management and improve the overall information services to ensure the consistency of information and business needs and effectively manage information security tasks, we have formulated the “Cyber Security Risk Management Framework” in accordance with ISO 27001, which covers cybersecurity policies and specific management solutions.

  

The Company aims to build a strict and effective information security defense. According to the cyber security risk management framework, the Information Security Management Committee has established an information security task force, an emergency response task force, and an audit task force. The Information Security Management Committee coordinates the formulation, implementation, risk management, regulatory compliance and auditing of information security and related policies. The audit supervisor supervises the implementation of information security operations and evaluates the effectiveness of the information security risk management measures of the entire corporate group, and regularly reports to the board on the effectiveness of the operations and systems of the overall information security management organization. In order to effectively promote the Cyber security policy, the Company has appointed a chief information security officer (CISO) and established a dedicated information security unit that has a supervisor and at least two specialists responsible for cyber security-related monitoring and the implementation of various management plans formulated by the Information Security Management Committee. Information security education and training sessions are carried out for all employees regularly. Personnel working in the information security dedicated units need to receive at least 16 hours of specialized information security training.

  

2024 Implementation Status of Cyber security
  1. Seven internal review meetings were held this year, and the current implementation status was reported to the Board of Directors on November 6, 2024.
  2. To improve the security of employees’ access to the e-mail system,an e-mail social engineering drill was conducted. All employees of the Group participated in the drill.
  3. At least four internal cyber security announcements were made to convey important regulations and precautions for information security protection.
  4. On April 9, 2024, the company detected network transmission anomalies, and some systems were attacked by hackers. The Cybersecurity Department immediately activated the cyber security defense and recovery mechanism, which prevented the attack from extending to various factories and production lines. Technical experts from external information security companies were also engaged to jointly address the issue. The incident did not have a major impact on the company’s finances or operations.
    At the same time, following the recommendations of cybersecurity experts regarding the company’s medium- and long-term cybersecurity protection, the construction of various improved cybersecurity measures was completed in August of this year. Moving forward, regular cybersecurity effectiveness assessments will be conducted to continuously improve the network and cyber infrastructure, strengthen security controls, and enhance employee security awareness to ensure robust cybersecurity.
  5. UPC has joined the 'Taiwan Computer Network Crisis Management and Coordination Center (TWCERT/CC)' to effectively receive and transmit cybersecurity information in real time, achieve the goal of horizontal information security joint defense, and enhance its information security protection capabilities.
  6. Conducted information security education and training, including "Introduction to Social Engineering Attack Techniques and Email Security Training" and "Information Security Prevention and Email Precautions." A total of 710 participants completed the information security training courses.

IR Contacts

Public Relations Manager & Spokesperson

Ms. Iris Chen

ir@upc.com.tw

Tel : +886-2-2651-7889 ext. 6003

Transfer Agency

CTBC Bank, Stock Transfer Agent

5F., No.83, Sec. 1, Chongqing S. Rd., Zhongzheng Dist., Taipei City 100, Taiwan, R.O.C.

www.ctbcbank.com

Tel : +886-2-6636-5566
Terms of use Personal Information Protection Cookie Policy
Copyright © 2025 UPC Technology Corporation. All Rights Reserved.
We value your privacy
By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyse site usage, and assist in our marketing and performance efforts.
Accept All Cookies
Manage Preferences
We value your privacy

UPC and certain third parties use cookies on www.upc.com. The details regarding the types of cookies, their purpose and the third parties involved are described below and in our Cookie Policy . Please click on “Allow All” to consent to our usage of cookies in order to have the best possible experience on our websites. You can also set your preferences or reject cookies (except for essential cookies).
Allow All
Manage Consent Preferences
  • Essential cookies
    Always Active
    These cookies are essential in order to enable you to move around the website and use its features, such as setting your privacy preferences, logging in or filling in forms. Without these cookies, services requested through usage of our website cannot be properly provided. Essential cookies do not require consent from the user under applicable law. You may configure your web browser to block strictly necessary cookies, but you might then not be able to use the website’s functionalities as intended.
  • Analytics cookies
    These cookies collect information about how visitors use a website, for instance which pages visitors go to most often, and how visitors move around the site. They help us to improve the user friendliness of a website and therefore enhance the user's experience.
Confirm my Choices