Slashdot Mirror

← Back to Stories (view on slashdot.org)

Lenovo Under U.S. Probe for Spying

Posted by ryuzaki0 on from the seekrit-agent-man dept.

BigControversy writes "The DailyTech has a report indicating that Lenovo, the giant Chinese PC manufacturer, is under a probe by the U.S.-China Economic Security Review Commission (USCC) for possible bugging. Apparently, the government has ordered 16,000 PCs from Lenovo but is now requesting that Lenovo be investigated by intelligence agencies. The fear is of foreign intelligence applying pressure to Lenovo to equip its PCs so that the U.S. can be spied on." From the article: "Despite the probe, Lenovo says that its international business, especially those that deal with the US, follow strictly laid out government regulations and rules. Lenovo also claims that even after purchasing IBM's PC division, its international business has not been affected negatively. Interestingly, in an interview with the BBC, Lenovo mentioned that an open investigation or probe may negatively affect the way that the company deals with future government contracts or bids." There just has to be better uses of our intelligence community's time.

21 of 327 comments (clear)

  1. Disagree on the last comment by JMUChrisF · · Score: 5, Insightful

    Isn't this the perfect use of our intelligence community? I think this is a very valid threat from a community like China who has been known to have spies in the US at all times. (Not saying we don't spy back, but that's the game!).

    A lot of federal agencies have policies about using foreign hardware/software for reasons just like this. Go USA!

    1. Re:Disagree on the last comment by Mattcelt · · Score: 4, Insightful

      Absolutely! This is what the counterintelligence agencies DO!

      Seriously, who would be surprised if a Chinese company (remember the Chinese? They're still Communists!!) was encouraged to spy on U.S. Government agencies? To think otherwise is, IMO, incredibly naïve.

      Personally, I think Lenovo ought to be barred from selling hardware to the U.S. Government altogether. It's simply not worth the security risk.

    2. Re:Disagree on the last comment by WindBourne · · Score: 4, Interesting

      In light of all the spying that we did against the USSR (xerox copy machines, sabatoged oil line controls leading to an explosion, etc) and China (using Nauru's embassy, splices in the telecom, etc.) , we would be insane to not check the equipment. What amazes me is that over the last 5 years, our gov. has outsourced so many critical areas to nations that are at best neutral, and more likely future enemies.

      --
      I prefer the "u" in honour as it seems to be missing these days.
    3. Re:Disagree on the last comment by Anonymous Coward · · Score: 5, Funny

      / It looks like someone is trying   \
      | to spy on you. Would you like to? |
      | *Save your changes and exit now.  |
      | *Trace the attackers IP.          |
      \ *Turn off these warnings.         /
         /
      __/
      olo
      |||
      \_/

  2. So let me get this straight.. by trazom28 · · Score: 3, Insightful

    We have a crapload of good PC Manufacturers here in the states, and our government instead orders 16,000 PCs from a Chinese manufacturer?

    --
    {} ------ When I think of a good sig, I'll put it here
  3. I think not. by biggyfred · · Score: 3, Insightful

    Better use of intelligence time? This should be taken damned seriously. Have a look at PROMIS and tell me this is a benign subject..

  4. MicroSoft by bombadillo · · Score: 5, Insightful

    This isn't much different than the Chineese Governments fear of backdoors placed in M.S. Windows by U.S intellegence. The shoe is on the other foot now.

  5. TV, and DVD Players May Listen Too! by blueZhift · · Score: 3, Interesting

    Hmmm, with so many goods coming from China these days, your TV and DVD player may be spying on you too, or in the near future, especially with the growth of home networks. Seriously, trying to buy any kind of electronics that don't come from China is getting harder and harder. Do it yourselfers aren't much safer, afterall, would anyone notice if the network chip on that Chinese made motherboard have some extra functionality? My, isn't paranoia fun?

    --
    To the making of books there is no end, so let's get started
  6. I doubt it by e**(i+pi)-1 · · Score: 5, Insightful

    Any built-in addition features in the hardware, the bios or
    even the preinstalled operating system would be immediately
    detected and destroy the entire PC business of Lenovo abroad.

  7. Try and find a computer not made in China by OS24Ever · · Score: 4, Insightful

    Dell, HP, IBM, Apple, and many, many others are most of the time built right next to each other in China. I'd be willing to bet there isn't a single computer where every piece in it is made in the USA, or a US Friendly country (friendly by my definition = NATO)

    --

    As a rock-in-roll Physicist once said, No matter where you go, there you are.

  8. There is a very good word for this phenomena: by A+beautiful+mind · · Score: 4, Insightful

    Xenophobia.

    I have nothing further to add, because that word sums it all up. While there are valid threats against the USA and in the intelligence community there are measures to tap into restricted data, they are NOT going to mess with PCs for fuck's sake! If someone has high security requirements that entity is not going to buy from a consumer level shop ANYWAY.

    Geez.

    --
    It takes a man to suffer ignorance and smile
    Be yourself no matter what they say
  9. This crap pisses me off... by sirwired · · Score: 4, Insightful

    First off, they aren't under a "probe" for possible spying, despite what the article says. A "probe" would imply that somebody has reason to believe there is actually spying going on. Instead, this is a stupid "investigation" to ensure that there isn't, despite a complete lack of evidence saying there is. This is simple xenophobia, nothing more.

    Do the geniuses that ordered this "probe" realize that the vast majority of components in a modern computer come from the orient? That it is VERY difficult to find a keyboard, mouse, case, or power supply that is NOT made in China? Do they know that many laptops (not Lenovo) are manufactured by Chinese-owned companies, and/or made directly in China itself?

    The only thing that could be worrisome is if they had Lenovo handle the builds on the hard drives, but NO classified shop should be relying on "outside" builds anyway.

    Do these folks ALSO realize that by law, no computer containing classified data may be connected to a public network of any kind? How is any "bugged" machine supposed to export the data? Osmosis? Telepathy?

    SirWired

  10. Re:If you need real security by chill · · Score: 4, Interesting

    And you didn't install the OS yourself from something "known good" (or at least believed good, like a generic windows install CD bought at best buy or your other favorite local rip-off shop) you're an idiot.

    Irrelevant.

    BIOS has gotten to the point that it can "phone home" before you even get to the OS. A small modification to hardware or firmware can make it so the system inserts key packets into the network stream, sending covert messages out to the equivalent of electronic "dead drops".

    We aren't talking about always-on-a-secure-network PCs, but laptops that'll be jacked into hotels, Starbucks and other insecure networks at some point.

    Unless you jack those machines in behind a traffic analyzer/router that captures every packet, then analyze *each* packet that goes out of the machine, you'll never be 100% sure the hardware isn't trojaned.

    Ping is nice and innocuous. Are you sure you know what that 56-byte payload contains? Have you ever looked? What about DNS requests? They happen ALL the time. Did you analyze each one to make sure they aren't requesting TXT-records that get forwarded over to a Chinese-owned server in the U.S.?

      -Charles

    --
    Learning HOW to think is more important than learning WHAT to think.
  11. This is a good argument for open source hardware. by Anonymous Coward · · Score: 5, Interesting

    Like it or not, we totally depend on other countries. I used to work on a military system that used tubes (valves for you brits). The tubes were no longer made in the west. The only source of the tubes was the USSR (with whom we would have been at war, if there was a war). If the third world war had lasted more than a month, we would have had to order spare parts from the Russians.

    Mil Spec used to require second source suppliers for everything. That means every chip, resistor and capacitor. To do that now would require that several companies have the complete design of everything down to the last square mm of silicon. Such a policy would effectively prevent spying devices because many people would be able to examine the design. The same reason that open source is safer than Windows is the same reason that hardware designs should be open sourced (or at least second sourced).

    BTW. You are absolutely right. Even friendly countries spy on each other. There was a story going around a while ago about an embassy had to be totally torn down because the local workers who built it had planted many microphones in it.

  12. You are dead wrong, Zonk by analog_line · · Score: 3, Informative

    This is exactly the kind of thing our intelligence communities should be getting involved in. First off, this kind of stunt would be the first thing our own intelligence agencies would try to do if the Chinese government were buying computers built by an American company on American soil. Some arm of the US intelligence community planted bugs in wine bottles and other amusing places near the UN ambassadors on the Security Council during the buildup to the Iraq War.

    The Chinese practically wrote the book on espionage. For some interesting reading on the subject take a look at The Tao of Spycraft". Interesting, if extremely dry, reading if you're interested in the intelligence community. A very good look at the LONG history of intelligence practice that the Chinese government has to draw on. I got interested working in computer security when everyone else in my office was ex-mil intelligence.

    And not being particularly antagonistic toward us doesn't mean anything. Back in 1999/2000, the general opinion by most of my co-workers who knew something about it was that France and Israel were the countries that were spying on us the most, with China coming in third. The only reason Britain wasn't number 1 on the list was "we already give them everything we know."

    I wouldn't put it past us to try it on them, so it would be ridiculous to trust that they wouldn't try it to us too.

  13. Only on slashdot... by pmike_bauer · · Score: 4, Interesting

    ...are you going to find a collection of article summaries that:

    1) criticize the United States for using it's intelligence resources to protect itself from a corporation operating out of Communist China.

    2) criticize the US for not using intelligence resources "_enough_" to protect its ports/borders/etc.

    3) criticize the US for using intelligence resource "_too_much_" by wire-tapping potential terrorists.

    Go figure.

    --
    I read /. for the (Score:-1, Conservative) comments.
  14. A better use of intelligence by Anonymous Coward · · Score: 3, Funny
    There just has to be better uses of our intelligence community's time.


    There is. You just don't hear about it.
  15. Re:The t3rr0r1st threat by symbolic · · Score: 3, Funny

    US Intelligence: "If there is any spying to do on Americans, WE'RE the ones that are going to do it!".

  16. You fail to realize most espionage is industrial by AHumbleOpinion · · Score: 3, Insightful

    Xenophobia. I have nothing further to add, because that word sums it all up. While there are valid threats against the USA and in the intelligence community there are measures to tap into restricted data, they are NOT going to mess with PCs for fuck's sake! If someone has high security requirements that entity is not going to buy from a consumer level shop ANYWAY.

    That's terribly naive. You fail to realize that most espionage is industrial. Billions of dollars are lost due to industrial espionage, foreign countries acquire R&D info that saves them time and money, their military tech is advanced by years, ...

    Also naive is to think that people with high security are the only target. In the real world espionage often goes for indirect info. What companies are supplying the goods and services, are their changes in orders, their production, etc. You don't have to get the general's plan for an invasion, you may only need to identify his preparations.

  17. Speaking about those Chinese by Enrique1218 · · Score: 3, Insightful

    Did you know that there are other "American" computer manufacturers have their computers manufacture in Shanghai. I know Apple does. What of HP and Dell? Let's face it, the Chinese make our clothes, trash cans, and anything else that can be brought in an office building. To phrase a popular /. quote, "I for one welcome our Chinese overlords" and "me colloborate long time"

    --
    You don't have to be smart to use a Mac, you just have to be smart enough to buy one
  18. Re:Everyone has spies here. by 9mm+Censor · · Score: 3, Funny

    Canada does. http://www.csis-scrs.gc.ca/ But they tend to lose Secret documents at hockey games, and their idea of tourture is feeding people poutine until they risk cardiac arrest before rushing them to the hospital for free health care, feeling sorry and giving people Citizenship for any hardship they faced, then calling it a day and going to drink beer and watch hockey.