china – Page 6 – SSL and internet security news

Another Bloomberg Story about Supply-Chain Hardware Attacks from China

October 11, 2018 infossl

china, hacking, hardware, implants, Security technology, surveillance

Bloomberg has another story about hardware surveillance implants in equipment made in China. This implant is different from the one Bloomberg reported on last week. That story has been denied by pretty much everyone else, but Bloomberg is sticking by its story and its sources. (I linked to other commentary and analysis here.) Again, I … Read More “Another Bloomberg Story about Supply-Chain Hardware Attacks from China” »

Cheating in Bird Racing

August 30, 2018 infossl

cheating, china, Security technology, sports

I’ve previously written about people cheating in marathon racing by driving — or otherwise getting near the end of the race by faster means than running. In China, two people were convicted of cheating in a pigeon race: The essence of the plan involved training the pigeons to believe they had two homes. The birds … Read More “Cheating in Bird Racing” »

CIA Network Exposed through Insecure Communications System

August 29, 2018 infossl

china, cia, intelligence, penetrationtesting, Security technology

Interesting story of a CIA intelligence network in China that was exposed partly because of a computer security failure: Although they used some of the same coding, the interim system and the main covert communication platform used in China at this time were supposed to be clearly separated. In theory, if the interim system were … Read More “CIA Network Exposed through Insecure Communications System” »

New Report on Chinese Intelligence Cyber-Operations

July 20, 2018 infossl

china, cyberespionage, intelligence, Security technology

The company ProtectWise just published a long report linking a bunch of Chinese cyber-operations over the past few years. The always interesting gruqq has some interesting commentary on the group and its tactics. Lots of detailed information in the report, but I admit that I have never heard of ProtectWise or its research team 401TRG. … Read More “New Report on Chinese Intelligence Cyber-Operations” »

Kidnapping Fraud

May 29, 2018 infossl

australia, china, fraud, kidnapping, scams, Security technology

Fake kidnapping fraud: “Most commonly we have unsolicited calls to potential victims in Australia, purporting to represent the people in authority in China and suggesting to intending victims here they have been involved in some sort of offence in China or elsewhere, for which they’re being held responsible,” Commander McLean said. The scammers threaten the … Read More “Kidnapping Fraud” »

Supply-Chain Security

May 10, 2018 infossl

backdoors, china, essays, military, Security technology

Earlier this month, the Pentagon stopped selling phones made by the Chinese companies ZTE and Huawei on military bases because they might be used to spy on their users. It’s a legitimate fear, and perhaps a prudent action. But it’s just one instance of the much larger issue of securing our supply chains. All of … Read More “Supply-Chain Security” »

Apple to Store Encryption Keys in China

February 28, 2018 infossl

apple, china, cloudcomputing, encryption, iphone, keyescrow, privacy, Security technology

Apple is bowing to pressure from the Chinese government and storing encryption keys in China. While I would prefer it if it would take a stand against China, I really can’t blame it for putting its business model ahead of its desires for customer privacy. Two more articles. Powered by WPeMatico

Article from a Former Chinese PLA General on Cyber Sovereignty

January 17, 2018 infossl

china, firewall, internetandsociety, nationalsecuritypolicy, Security technology

Interesting article by Major General Hao Yeli, Chinese People’s Liberation Army (ret.), a senior advisor at the China International Institute for Strategic Society, Vice President of China Institute for Innovation and Development Strategy, and the Chair of the Guanchao Cyber Forum. Against the background of globalization and the internet era, the emerging cyber sovereignty concept … Read More “Article from a Former Chinese PLA General on Cyber Sovereignty” »

APT10 and Cloud Hopper

April 5, 2017 infossl

china, cyberespionage, espionage, malware, Security technology

There’s a new report of a nation-state attack, presumed to be from China, on a series of managed ISPs. From the executive summary: Since late 2016, PwC UK and BAE Systems have been assisting victims of a new cyber espionage campaign conducted by a China-based threat actor. We assess this threat actor to almost certainly … Read More “APT10 and Cloud Hopper” »

Smartphone Secretly Sends Private Data to China

November 18, 2016 infossl

android, backdoors, cellphones, china, Security technology, vulnerabilities

This is pretty amazing: International customers and users of disposable or prepaid phones are the people most affected by the software. But the scope is unclear. The Chinese company that wrote the software, Shanghai Adups Technology Company, says its code runs on more than 700 million phones, cars and other smart devices. One American phone … Read More “Smartphone Secretly Sends Private Data to China” »