Cyber Warfare

Threat Post
Date: January 2, 2020
By: Lindsey O'Donnell

The U.S. Army this week has banned TikTok from government-owned devices as scrutiny over the platform’s relationship with China grows.

With backlash swelling around TikTok’s relationship with China, the United States Army this week announced that U.S. soldiers can no longer have the social media app on government-owned phones.

TikTok, a social media app used to create and share short form videos, is owned by Beijing-based parent company ByteDance. Despite its popularity with users and celebrities – the app touts over 1.3 billion installs worldwide – several incidents over the past year have caused privacy experts to question how data from TikTok is being collected, used and whether it is being censored by China’s government.

On Monday, the U.S. Army, which previously used TikTok as a recruiting tool for reaching younger users, announced it is issuing a ban on the app, according to, a website that provides news regarding military members and veterans.

The U.S. Army’s ban of TikTok comes after a similar ban was issued by the U.S. Navy earlier this year. The ban follows guidance issued Dec. 16 by the U.S. Department of Defense, which identifies TikTok as having potential security risks associated with its use, a U.S. Army spokesperson told Threatpost.

“The message directs appropriate action for employees to take in order to safeguard their personal information,” the U.S. Army spokesperson said in an email. “The guidance is to be wary of applications you download, monitor your phones for unusual and unsolicited texts etc., and delete them immediately and uninstall TikTok to circumvent any exposure of personal information.”

Focus Taiwan
Date: 2019/11/24
By: Chai,Sze-chia and Elizabeth Hsu

Shanghai, Nov. 24 (CNA) China's public security authorities have identified a Chinese national who

Image from The Age web pages at
was reported by Australian media to be a defector involved in spying operations in Taiwan, Hong Kong and Australia, as a fugitive being pursued for fraud.

The Sydney Morning Herald and other Australian media outlets reported Saturday that a Chinese defector named Wang "William" Liqiang went to Australia's counter-espionage agency in October with intelligence on how China's senior military intelligence officers funded and conducted spying operations in Hong Kong, Taiwan and Australia.

However, in a Saturday post on its official Weibo web page, the Shanghai Municipal Public Security Bureau's Jingan Branch said that after investigating the matter, it found that the so-called "special agent of China" is Wang Liqiang (王立強), 26, from Nanping in Fuijan Province.

"Jobless, Wang is a fugitive involved in cases," the post reads.    [FULL  STORY]

Firmware inspections of 558 Huawei products found over 100 vulnerabilities easily exploitable by those with knowledge of source code

Taiwan News
Date: 2019/07/06
By: Duncan DeAeth, Taiwan News, Staff Writer

TAIPEI (Taiwan News) – Cyber security analysts have discovered over a hundred common

(By Associated Press)
“backdoors” hidden in Huawei products by analyzing firmware code for vulnerabilities.

The potential to hack Huawei products and use them as a tool for espionage by the Chinese Communist Party (CCP), or by any hacker for that matter, is now better understood thanks to an investigation carried out by specialists with Finite State and ReFirm Labs.

According to a report published by Breaking Defense entitled “Hacker’s Heaven: Huawei’s Hidden Back Doors Found” investigators analyzed over 1.5 million firmware files embedded within 558 Huawei products.

In a 36 hour run of testing using cutting edge methods to analyze firmware files, researchers led by Matt Wyckhouse and Terry Dunlap found 102 vulnerabilities that would allow an outside actor with knowledge of the back door to access a device or network’s data.

Around 25 of the vulnerabilities were designated as “severe” enough to provide unrestricted access to an outside party. In addition to Huawei, Terry Dunlap’s team of researchers, some of them former U.S. National Security Agency employees, have discovered similar vulnerabilities in products manufactured by Dahua Technology Company which produces surveillance equipment.

According to the Breaking Defense report, Dahua products were used to spy on a Fortune 500 company in the U.S. With the help of Dunlap’s team, the company discovered their security system was sending the data to an unknown IP address in China.

Several of the vulnerabilities found on Huawei devices reportedly operate in the same manner as those of Dahua. The Chinese companies have also claimed such vulnerabilities are just bugs or simple errors that are fixed with updates.

However, after installing updates, both companies’ products were found to have simply relocated the same backdoors to different areas of the firmware code.    [FULL  STORY]

Date: May 29, 2019
By: Brian Naylor

A DJI Technology drone flies during a demonstration in Shenzhen, China, in 2014. DJI sells the majority of Chinese-made drones bought in the United States.
Kin Cheung/AP

Drones have become an increasingly popular tool for industry and government.

Electric utilities use them to inspect transmission lines. Oil companies fly them over pipelines. The Interior Department even deployed them to track lava flows at Hawaii’s Kilauea volcano.

But the Department of Homeland Security is warning that drones manufactured by Chinese companies could pose security risks, including that the data they gather could be stolen.

The department sent out an alert on the subject on May 20, and a video on its websitenotes that drones in general pose multiple threats, including “their potential use for terrorism, mass casualty incidents, interference with air traffic, as well as corporate espionage and invasions of privacy.”

We could pull information down and upload information on a flying drone. You could also hijack the drone.”

Most drones bought in the U.S. are manufactured in China, with most of those drones made by one company, DJI Technology. Lanier Watkins, a cyber-research scientist at Johns Hopkins University’s Information Security Institute, said his team discovered vulnerabilities in DJI’s drones.

“We could pull information down and upload information on a flying drone,” Watkins said. “You could also hijack the drone.”

The vulnerabilities meant that “someone who was interested in, you know, where a certain pipeline network was or maybe the vulnerabilities in a power utilities’ wiring might be able to access that information,” he noted.    [FULL  STORY]

Taipei Times
Date: May 21, 2019
By: Reuters, NEW YORK

Alphabet’s Google has suspended business with Huawei Technologies Co (華為) that requires the

A Huawei Technologies Co logo is displayed at a shop in Beijing yesterday.  Photo: AFP

transfer of hardware, software and technical services except those publicly available via open source licensing, a source familiar with the matter told Reuters on Sunday, in a blow to the Chinese technology company that the US government has sought to blacklist around the world.

However, holders of current Huawei smartphones with Google apps would continue to be able to use and download app updates provided by Google, a Google spokesperson said, confirming earlier reporting by Reuters.

“We are complying with the order and reviewing the implications,” the Google spokesperson said.

“For users of our services, Google Play and the security protections from Google Play Protect will continue to function on existing Huawei devices,” the spokesperson said, without giving further details.    [FULL   STORY]

Xi Jinping’s foresight that the future is digital helped China push ahead in the race to harness the power of the internet, much of it in covert operations, to sharpen its military edge and economic competitiveness

South China Morning Post 
By: Daniel Wagner  
Date: 7 Mar, 2019

Illustration: Craig Stephens

From the time he assumed power in 2012, President Xi Jinping made it clear how important a role he believed the internet would play in China’s future.

To his credit, he recognised that the future is digital, and that those countries that can get ahead and stay ahead in the race for digital supremacy would hold a natural advantage in global economic competition. He set China on a path that would help ensure its future economic competitiveness by harnessing the power of the internet.

Based on the manner in which he has unleashed China’s participation in that race, the Xi era will be remembered for putting an end to the West’s naive optimism about the potential of the internet to liberalise global polities.

Chinese military doctrine has long articulated the use of a wide spectrum of warfare against its adversaries. Much of what is known outside of China about its approach to asymmetric warfare is contained in a book first published in Chinese in 1999 and translated
10 years later with the title Unrestricted Warfare.    [FULL  STORY]

Since President Xi took power in 2012, China has launched an unprecedented crackdown on online freedom.

Date: 25 Apr 2019
By: Madeline Roache

Thirty years ago, Beijing’s Tiananmen Square became a symbol of pro-democracy protests the

Under President Xi, China has blocked around 26,000 Google search terms and 880 Wikipedia pages [Getty Images]
world over as the site of several important events in Chinese history witnessed a deadly military crackdown. It crushed the protests led by students, eventually costing more than 10,000 lives.

The crackdown became one of the most censored topics on the Chinese internet. Around this time of the year, certain websites, including Wikipedia, Facebook, Twitter, YouTube and some Google services, are either fully blocked or temporarily “blacked out”.

The government aims to prevent discussion of the crackdown and also to erase the event from Chinese history, particularly among the younger generation, according to journalist and author James Griffiths.

“Chinese authorities are afraid of collective action against the government,” said Griffiths, the author of The Great Firewall of China: How to Build and Control an Alternate Version of the Internet.

Since President Xi Jinping took power in 2012, China has launched an unprecedented crackdown on online freedom, submerging the internet in propaganda and punishing journalists who post the “wrong” content.

Under Xi, China has blocked about 26,000 Google search terms and 880 Wikipedia pages.

Washington Examiner
Date: April 26, 2019
By: Joel Gehrke

Chinese surveillance tactics “pose an existential threat” to the nations of the Western Hemisphere, a senior State Department official warned Friday.

“Citizens living in democracies in the Western Hemisphere could potentially have their entire digital identity under the control and surveillance of an authoritarian government,” Kimberly Breier, the State Department’s top diplomat for the region, told the Council of the Americas.

Breier was chiefly addressing Latin America, with a focus on how China distributes surveillance technology and wireless internet services that leave Westerners exposed to Beijing’s prying eyes. China has been selling its high-tech authoritarianism to dictators such as Venezuela’s Nicolás Maduro, and even countries friendlier to the United States have been opening their telecommunications networks to Chinese tech companies.

FBI Director Christopher Wray, speaking separately at the Council on Foreign Relations, emphasized the same day that the Communist power is targeting the United States as aggressively as any regional neighbor.

“China has pioneered a societal approach to stealing innovation any way it can, from a wide array of businesses, universities, and organizations,” Wray said. “They’re doing this through Chinese intelligence services, through state-owned enterprises, through ostensibly private companies, through graduate students and researchers, and through a variety of actors working on behalf of China.”

Breier and Wray made their warnings as China is trying to allay international worries about the Belt and Road Initiative, an overseas investment plan that U.S. officials regard as a “predatory” lending scheme to purchase influence over impoverished nations. China is hosting an international summit in Beijing on Friday, convening Russia and other partner nations to tout the initiative.    [FULL  STORY]

The focus isn’t on the company, but the legal system that governs it

The Verge
Date: Apr 7, 2019
By: Russell Brandom  

For months, telecom companies across the world have been struggling with what to do with Huawei. The US has effectively locked the company out of American telecom networks, citing national security concerns — but as the rest of the world faces the same choice, not everyone is convinced Huawei is a threat. Most US experts see Huawei’s exposure to the Chinese government as dangerous in itself, but as time has gone on, the national split is getting harder to ignore.

This week saw two more prominent figures taking sides, for reasons that seemed more political than technological. On Friday in Geneva, ITU chief Houlin Zhao spoke out publicly against the ban. “If you find anything wrong, then you can charge [Huawei] and accuse them,” Zhao said. “But if we don’t have anything then to put them on the blacklist – I think this is not fair.” Zhao was born in China and worked at the government’s Ministry of Posts and Telecommunications before moving to the UN’s telecom union, so it’s not surprising that he would be concerned over the lack of evidence against the company.

At the same time, US officials are increasingly insistent that all Chinese companies are potentially suspect. At a cybersecurity forum on Thursday, DHS’s cybersecurity and infrastructure chief Chris Krebs said the primary concern was the legal regime of the origin country, rather than the specific product being shipped.

“Our focus is not on the country of origin, or the company, but it’s about what is the rule of law under which that product is potentially subject to,” Krebs said. That same logic could apply to other Chinese companies or Russian exports like Kaspersky Lab’s antivirus software. As Krebs put it, “it’s the rise of authoritarian states and how they’re operationalizing their tech sectors.”    [FULL  STORY]

Date: February 20, 2019
By Jethro Mullen, CNN Business

Hong Kong (CNN Business)Hackers in China have significantly stepped up attacks on US companies as the two countries have clashed over trade and technology.

Top cybersecurity firm CrowdStrike saw “a big resurgence” last year in efforts by China-based groups to break into the systems of American businesses for commercial gain — a trend that “shows no sign of stopping,” said Michael Sentonas, the company’s vice president of security technology.

The spike in attacks on US targets — which include telecom operators, pharmaceutical firms and hotel chains — is “likely tied to increased tensions between the two countries,” CrowdStrike said in a report published Tuesday.

Chinese attacks on US companies had fallen away in recent years after the two governments agreed in 2015 not to conduct cybertheft of trade secrets and intellectual property against one another for commercial gain. That drop-off now “appears to have been reversed,” CrowdStrike said.    [FULL  STORY]