Slashdot Mirror

← Back to Stories (view on slashdot.org)

Lenovo Under U.S. Probe for Spying

Posted by ryuzaki0 on from the seekrit-agent-man dept.

BigControversy writes "The DailyTech has a report indicating that Lenovo, the giant Chinese PC manufacturer, is under a probe by the U.S.-China Economic Security Review Commission (USCC) for possible bugging. Apparently, the government has ordered 16,000 PCs from Lenovo but is now requesting that Lenovo be investigated by intelligence agencies. The fear is of foreign intelligence applying pressure to Lenovo to equip its PCs so that the U.S. can be spied on." From the article: "Despite the probe, Lenovo says that its international business, especially those that deal with the US, follow strictly laid out government regulations and rules. Lenovo also claims that even after purchasing IBM's PC division, its international business has not been affected negatively. Interestingly, in an interview with the BBC, Lenovo mentioned that an open investigation or probe may negatively affect the way that the company deals with future government contracts or bids." There just has to be better uses of our intelligence community's time.

5 of 327 comments (clear)

  1. TV, and DVD Players May Listen Too! by blueZhift · · Score: 3, Interesting

    Hmmm, with so many goods coming from China these days, your TV and DVD player may be spying on you too, or in the near future, especially with the growth of home networks. Seriously, trying to buy any kind of electronics that don't come from China is getting harder and harder. Do it yourselfers aren't much safer, afterall, would anyone notice if the network chip on that Chinese made motherboard have some extra functionality? My, isn't paranoia fun?

    --
    To the making of books there is no end, so let's get started
  2. Re:Disagree on the last comment by WindBourne · · Score: 4, Interesting

    In light of all the spying that we did against the USSR (xerox copy machines, sabatoged oil line controls leading to an explosion, etc) and China (using Nauru's embassy, splices in the telecom, etc.) , we would be insane to not check the equipment. What amazes me is that over the last 5 years, our gov. has outsourced so many critical areas to nations that are at best neutral, and more likely future enemies.

    --
    I prefer the "u" in honour as it seems to be missing these days.
  3. Re:If you need real security by chill · · Score: 4, Interesting

    And you didn't install the OS yourself from something "known good" (or at least believed good, like a generic windows install CD bought at best buy or your other favorite local rip-off shop) you're an idiot.

    Irrelevant.

    BIOS has gotten to the point that it can "phone home" before you even get to the OS. A small modification to hardware or firmware can make it so the system inserts key packets into the network stream, sending covert messages out to the equivalent of electronic "dead drops".

    We aren't talking about always-on-a-secure-network PCs, but laptops that'll be jacked into hotels, Starbucks and other insecure networks at some point.

    Unless you jack those machines in behind a traffic analyzer/router that captures every packet, then analyze *each* packet that goes out of the machine, you'll never be 100% sure the hardware isn't trojaned.

    Ping is nice and innocuous. Are you sure you know what that 56-byte payload contains? Have you ever looked? What about DNS requests? They happen ALL the time. Did you analyze each one to make sure they aren't requesting TXT-records that get forwarded over to a Chinese-owned server in the U.S.?

      -Charles

    --
    Learning HOW to think is more important than learning WHAT to think.
  4. This is a good argument for open source hardware. by Anonymous Coward · · Score: 5, Interesting

    Like it or not, we totally depend on other countries. I used to work on a military system that used tubes (valves for you brits). The tubes were no longer made in the west. The only source of the tubes was the USSR (with whom we would have been at war, if there was a war). If the third world war had lasted more than a month, we would have had to order spare parts from the Russians.

    Mil Spec used to require second source suppliers for everything. That means every chip, resistor and capacitor. To do that now would require that several companies have the complete design of everything down to the last square mm of silicon. Such a policy would effectively prevent spying devices because many people would be able to examine the design. The same reason that open source is safer than Windows is the same reason that hardware designs should be open sourced (or at least second sourced).

    BTW. You are absolutely right. Even friendly countries spy on each other. There was a story going around a while ago about an embassy had to be totally torn down because the local workers who built it had planted many microphones in it.

  5. Only on slashdot... by pmike_bauer · · Score: 4, Interesting

    ...are you going to find a collection of article summaries that:

    1) criticize the United States for using it's intelligence resources to protect itself from a corporation operating out of Communist China.

    2) criticize the US for not using intelligence resources "_enough_" to protect its ports/borders/etc.

    3) criticize the US for using intelligence resource "_too_much_" by wire-tapping potential terrorists.

    Go figure.

    --
    I read /. for the (Score:-1, Conservative) comments.