A top Department of Homeland Security (DHS) official has admitted on record that electronics sold in the U.S. are being preloaded with spyware, malware, and security-compromising components by unknown foreign parties. In testimony before the House Oversight and Government Reform Committee, acting deputy undersecretary of the DHS National Protection and Programs Directorate Greg Schaffer told Rep. Jason Chaffetz (R-UT) that both Homeland Security and the White House have been aware of the threat for quite some time.
When asked by Rep. Chaffetz whether Schaffer was aware of any foreign-manufactured software or hardware components that had been purposely embedded with security risks, the DHS representative stated that “I am aware of instances where that has happened,” after some hesitation.
A directive, reported by Bloomberg, had gone out from the Commerce Department to large telcoms (Verizon and AT&T among them) demanding confidential information about their networks. Specifically, they were asked to divulge the extent of foreign-made equipment on their networks and to itemize security incidents, especially those pertaining to unauthorized hardware that redirected information to third parties.
The survey represents “very high-level” concern that China and other countries may be using their growing export sectors to develop built-in spying capabilities in U.S. networks, said a senior U.S. intelligence official who asked not to be named because he wasn’t authorized to speak on the matter.
Should we be heartened that the Obama administration is diving into this? At least some veteran spooks say we should hold the applause. “This administration is naive and weak,” emailed one.
http://www.internetevolution.com/author.asp?section_id=852&doc_id=236600
http://www.bloomberg.com/news/2011-11-30/obama-invokes-cold-war-security-powers-to-unmask-chinese-telecom-spyware.html
http://www.salon.com/2011/07/11/trade_terrorism/
