Vodafone found hidden backdoors in Huawei equipment years ago, but company dragged its feet on fixing them

For months, Huawei Technologies Co. has faced U.S. allegations that it flouted sanctions on Iran, attempted to steal trade secrets from a business partner and has threatened to enable Chinese spying through the telecom networks it’s built across the West.

A backdoor, in cybersecurity terms, is a method of bypassing security controls to access a computer system or encrypted data. While backdoors can be common in some network equipment and software because developers create them to manage the gear, they can be exploited by attackers. In Vodafone’s case, the risks included possible third-party access to a customer’s personal computer and home network, according to the internal documents.

In a statement to Bloomberg, Vodafone said it found vulnerabilities with the routers in Italy in 2011 and worked with Huawei to resolve the issues that year. There was no evidence of any data being compromised, it said. The carrier also identified vulnerabilities with the Huawei-supplied broadband network gateways in Italy in 2012 and said those were resolved the same year.

While backdoors are common in home routers, they are usually fixed by manufacturers once disclosed, said Eric Evenchick, Principal Research Consultant at Atredis Partners, a U.S. based cybersecurity firm. Evenchick called the situation with Huawei’s equipment “very concerning.” In January 2011, Vodafone Italy started a deeper probe of the routers, according to an April report from the year. Security testing by an independent contractor identified the telnet backdoor as the greatest concern, posing risks including giving unauthorized access to Vodafone’s broader Wide Area Network . Vodafone noted that it’s an industry practice by some router manufacturers to use a telnet service to manage their equipment, but the company said it didn’t allow this.

Huawei’s apparent reluctance only amplified concerns that were circulating even then that the company might pose a security threat to customers.

Good reason to ban Huawei from supplying equipment.

just rip the band aid off and announce they are not in the running for 5 g infrastructure. most other countries have done so. it doesnt take a lot of research to understand the risks are valid

Very odd VodafoneUK and this does not explain UK's decision to proceed with Huawei in the non-core part of the network.

Business Business Latest News, Business Business Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

China urges U.K. not to discriminate against Huawei in 5G developmentThe world’s biggest telecoms equipment maker is under intense scrutiny after the United States told allies not to use the company’s technology because of fears it could be a vehicle for Chinese spying. globebusiness Screw China
Source: globeandmail - 🏆 5. / 92 Read more »

Precision Drilling reports first-quarter profit, revenue up from year agoThe company says it earned $25-million or eight cents per diluted share for the quarter ended March 31
Source: globeandmail - 🏆 5. / 92 Read more »

REAL SCOOP: CEO of criminal encryption company hid $80 millionRichmond resident Vincent Ramos’s underworld nicknames were “CEO” and “Business.” He was so successful in providing encrypted BlackBerries and other electronic devices…
Source: VancouverSun - 🏆 49. / 61 Read more »