Story image

US intelligence agencies accuse Huawei & ZTE of spying - again

15 Feb 2018

Four United States intelligence agencies are warning that Chinese technology giant Huawei may spy on customers who own Huawei smart devices – but they are not sharing any hard evidence to prove it.

At the Senate Intelligence Committee this week, the director of national intelligence, as well as chiefs from the NSA, FBI and CIA warned against organisations including Huawei and ZTE and their efforts to expand into the United States market.

The chiefs warned US citizens not to use any devices made by Huawei or ZTE. It forms another chapter in a debate that has been raging in the United States since at least 2011.

“We’re deeply concerned about the risks of allowing any company or entity that is beholden to foreign governments that don’t share our values to gain positions of power inside our telecommunications networks,” FBI director Chris Wray says.

“That provides the capacity to exert pressure or control over our telecommunications infrastructure. It provides the capacity to maliciously modify or steal information. And it provides the capacity to conduct undetected espionage.”

China is a hotbed for state-sponsored hackings and cyberespionage, according to ThreatMetrix statistics, however there is no evidence to prove that Huawei or ZTE is up to anything untoward in this case.

That has not stopped Arkansas senators Tom Cotton and Marco Rubio from trying to ban US Government use of services and equipment from Huawei and ZTE.

"Huawei is effectively an arm of the Chinese government, and it's more than capable of stealing information from U.S. officials by hacking its devices," Cotton says in a statement.

 "There are plenty of other companies that can meet our technology needs, and we shouldn't make it any easier for China to spy on us,” Cotton continues.

"Chinese telecom companies, like Huawei, are directly linked to the Chinese government and communist party. For national security reasons, we cannot allow a foreign adversary to embed their technology in U.S. government systems or critical infrastructure,” adds Rubio.

Huawei, however, believes the accusations are part of a larger government effort to slow down the company’s expansion into the US.

“Huawei is aware of a range of U.S. government activities seemingly aimed at inhibiting Huawei’s business in the U.S. market,” a Huawei representative reportedly said in a statement.

In other statements, Huawei said it committed to adhering to US laws and even includes US-made chipsets, operating systems and other components in its devices.

“Huawei is trusted by governments and customers in 170 countries worldwide and poses no greater cybersecurity risk than any ICT vendor, sharing as we do common global supply chains and production capabilities.”

This is not the first time US intelligence officials have warned against foreign-made products – last year cybersecurity firm Kaspersky’s products were banned from US government agencies after claims of cyberespionage. 

Norwegian aluminium manufacturer hit hard by LockerGoga ransomware attack
“IT systems in most business areas are impacted and Hydro is switching to manual operations as far as possible.”
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.
Mozilla launches Firefox Send, an encrypted file transfer service
Mozille Firefox has launched a free encrypted file transfer service that allows people to securely share files from any web browser – not just Firefox.
Ransomware’s decline equals cryptomining’s rise
ESET’s Security Days Conference recently took place to go over the current threat environment and what to look out for next.
IoT and DDoS attacks: A match made in heaven
A10 Network’s Adrian Taylor uses findings from a number of reports to illustrate his point that advances in technology are facilitating cybercrime.