We have observed an increasing trend of Chinese attackers targeting the financial industry in Taiwan, which poses a significant threat due to the massive financial flow involved. This talk will continue from last year's Operation Cache Panda attack and focus on recent APT intrusion events targeting the financial industry. In one event, the hackers infiltrated the target's internal network by infecting the service provider system and implanting a Bifrose backdoor. In another event, the hackers attacked an exposed testing server on the external network and implanted a .NET webshell. We also observed that these incidents are closely related to supply chain security. In today's complex environment, it is especially important to clarify these implicit trust issues. Therefore, we will use the Zero Trust Architecture to review these attacks, explore why they happened, and how to use Zero Trust Architecture to enhance security and strengthen supply chain security. Ultimately, we hope to use this talk to help the audience understand the APT attack process and the weapons used by attackers and improve awareness of supply chain security.