Huawei: Undetected Spying, Commercial Witch Hunt or China Bashing?

The innovative Chinese company, Huawei is again in the news and not because it has dislodged Apple in second place in the global smartphone market. CNBC  reports in what seems to be a re-hash of an advisory issued six years ago, that the heads of CIA, FBI, and NSA warned the U.S. Senate Intelligence Committee that Americans should be cautioned against buying Huawei and ZTE smartphones, two popular Chinese brands. Ironically, the U.S. brand, Apple, has been accused also of spying on user data.

FBI Director Chris Wray issued the strongest ever statement against the popular brand, “We’re deeply concerned about the risks of allowing any company or entity that is beholden to foreign governments that don’t share our values to gain positions of power inside our telecommunications networks. That provides the capacity to exert pressure or control over our telecommunications infrastructure. It provides the capacity to maliciously modify or steal information. And it provides the capacity to conduct undetected espionage.”

Is life imitating art in the post-Cold War era? Is your innocent little phone, a depository of confidential information moonlighting as a spy? Huawei, based in Shenzen China is a 30-year old company but has only been producing handsets since 2003. Present in 170 countries, it has shipped over 139 million units, and in Sept. 2017 dislodged Apple’s firm position as the second most popular brand and is now just behind Samsung. However, this second place position is disputable because Counterpoint Research claims that it is highly popular only in China, Europe, Latin America, and the Middle East but not in Northern America. Furthermore, none of its models have ranked as the best selling models with the top spots claimed by iPhone, Oppo, and Samsung.

So, is this commercial witchhunt or a legitimate concern about possible “undetected espionage”? Here’s what the U.S. consumer market was warned about six years ago – a deja vu to current claims:

Huawei has faced grave accusations from the U.S., Australian, and Canadian governments. The U.S. Congress has even gone to the factories but isn’t convinced six years after the initial controversy that Huawei is above board and is not a security threat. Why then were Huawei and ZTE allowed to sell (and prosper) in the U.S. market even after the congressional committee (back in 2012) declared that it had no confidence in these two Chinese companies as far as providing infrastructure, equipment, and services in the U.S. because of the risk to cybersecurity? In particular, there was fear that embedded electronic bugs that could transmit data furtively back to China. Rep. Dutch Ruppersberger, ranking member of the House Intelligence Committee claimed that there was a legitimate concern because of the potential leak of trade secrets. The U.S. at that time was reeling from a cyber-attack that exposed 300B worth of trade information that would impact U.S. market competitiveness. Congress has also admitted it was protectionist because Huawei was producing cheap but high-quality products that will potentially outsell U.S. brands at home and internationally.

Back in 2012, Huawei and ZTE have denied the claims and have declared that they are not under the control of the Chinese government. At that time, both companies were told that in order to continue doing business in the U.S., there must be complete disclosure of information – including financial records to ensure that these companies are not merely puppets of the Chinese government. Some quarters referred to this pressure as China-bashing.

Fast forward to 2018, despite its attempt to “sanitize” its image and prove that it is not beholden to the Chinese government, the effect of the announcement on Huawei is disastrous. In the midst of this latest controversy, talks collapsed between ATT and Huawei with the American telecommunications carrier pulling out of their deal. Congress has also an impending bill that will ban government employees from using Huawei phones. Furthermore, in what is seen as commercial pressure, a bill (companion bill to Defending U.S. Government Communications Act) is being introduced by Republican Senator Tom Cotton of Arkansas, that will prohibit the government from engaging in a contract with companies that use Huawei or ZTE products, equipments or component parts. He is the same congressman who asked for a show of hands on whether they should recommend to Americans the use of smartphones produced by Apple’s Chinese competitors.

Huawei claims that they are in the U.S. for business and not likely to engage in cloak-and-dagger activities. They had reacted strongly to allegations during CES. Huawei released a statement saying that the Congressional report “employs many rumors and speculations to prove non-existent accusations…We have to suspect that the only purpose of such a report is to impede competition and obstruct Chinese ICT companies from entering the US market.”

Whether the claims are true or proven to be high-level paranoia, it pays to be cautious when using our smart devices. Here are some ways we could protect ourselves from inadvertently leaking information to both iOS and Androids.

 

North Korea launches cyber war against South Korea

South Korea – Seoul’s Metropolitan Police Agency has discovered a cyber attack from a North Korean Reconnaissance General Bureau.

The cyber attack was from shipped games to South Korean users that were infected by malware. It then launched a DDoS attack on Incheon Airport’s official web site.

In a report by JoongAng Daily, they said that a South Korean man traveled to Shenyang, a city in the northeastern part of China. He allegedly met agents from a North Korean trading company. He requested for them to develop a game that can be used in South Korea.

Then, the man named Jo purchased a dozen of computer games software for millions of won. Jo knew that the games were infected with malware, but still decided to sell them in South Korea for gaming fanatics and online game operators.

When users in South Korea used the games, their computers turned into zombies, through which the attack was launched.

This was the second recorded attempt by North Korea to attack South Korea in recent months.

Those who purchased the game in South Korea were said to have knowledge of the malware it contained.

During the 90’s, a similar cyber attack was recorded. A malware coder participated in a coding contest. The latter purposely backdoored his game and then was shipped to thousands of subscribers on a magazine-branded CD.

Is this the beginning of a new front in cyber warfare?

Image Source:israpundit.com

Anomymous strikes again, hacks Interpol, CIA

Anonymous is at it again.

The hacktivist group has gone on a rampage over the weekend as they took down the official website of the Interpol, CIA and many others.

It began last Friday with a tweet from the group’s Twitter account. The tweet read, “CIA Tango down.”

The CIA website has been up and down over the weekend as Anonymous used Denial of Service or DDOS attacks to shake up the agency’s website.

The next on their list were the police and government servers in Alabama. Anonymous claims the attack in the name of “your recent racist legislation in an attempt to punish immigrants as criminals.” This post was placed in a pastebay account. The stolen data had names, Social Security numbers, birth dates, criminal records and plate numbers.

They went on to attack the Mexican government for their proposed legislation similar to that of SOPA/PIPA of the US. Sites that were taken down were the Mexican states, Interior Ministry and email addresses of Mexican Mining Chamber were posted online.

Anonymous also hacked the US Census Bureau and the Italian car making giant Fiat. Another hacking group, Greyhatz, also did their damage on other websites.

PCs: The next in line for web attacks?

Cyber attacks that caused a lot of sites to crash and slowed U.S. and South Korean websites could move on to attacking PCs which can wipe out hard disks, according to  South Korean government agency and web security firm.

These attacks so far, which targeted government and business  sites in South Korea and US, did not cause serious damages or security breaches. Yet.

Korea Communications Commission (KCC) however, warns that the a new wave of attacks will possibly cause severe damage to PCs by targeting the data on  the infected personal computers.

The KCC released the names of five countries which are believed to be the bases of the original attacks. These countries are: Germany, Austria, Georgia, the United States and South Korea. It can be noted that North Korea is not included in the list, the country who was originally the prime suspect for launching the cyber attacks.

U.S. officials would not comment though on who might be behind the attacks but said that the U.S. government websites face attacks or scams “millions of times” daily.

Source:

http://tech.yahoo.com/news/nm/20090710/wr_nm/us_korea_south_internet