Vodafone found hidden backdoors in Huawei equipment years ago, but company dragged its feet on fixing them

  • 📰 nationalpost
  • ⏱ Reading Time:
  • 88 sec. here
  • 3 min. at publisher
  • 📊 Quality Score:
  • News: 38%
  • Publisher: 80%

Ireland News News

Ireland Ireland Latest News,Ireland Ireland Headlines

While Vodafone and Huawei say the issues were fixed, sources say vulnerabilities remained beyond 2012

For months, Huawei Technologies Co. has faced U.S. allegations that it flouted sanctions on Iran, attempted to steal trade secrets from a business partner and has threatened to enable Chinese spying through the telecom networks it’s built across the West.

A backdoor, in cybersecurity terms, is a method of bypassing security controls to access a computer system or encrypted data. While backdoors can be common in some network equipment and software because developers create them to manage the gear, they can be exploited by attackers. In Vodafone’s case, the risks included possible third-party access to a customer’s personal computer and home network, according to the internal documents.

In a statement to Bloomberg, Vodafone said it found vulnerabilities with the routers in Italy in 2011 and worked with Huawei to resolve the issues that year. There was no evidence of any data being compromised, it said. The carrier also identified vulnerabilities with the Huawei-supplied broadband network gateways in Italy in 2012 and said those were resolved the same year.

While backdoors are common in home routers, they are usually fixed by manufacturers once disclosed, said Eric Evenchick, Principal Research Consultant at Atredis Partners, a U.S. based cybersecurity firm. Evenchick called the situation with Huawei’s equipment “very concerning.” In January 2011, Vodafone Italy started a deeper probe of the routers, according to an April report from the year. Security testing by an independent contractor identified the telnet backdoor as the greatest concern, posing risks including giving unauthorized access to Vodafone’s broader Wide Area Network . Vodafone noted that it’s an industry practice by some router manufacturers to use a telnet service to manage their equipment, but the company said it didn’t allow this.

Huawei’s apparent reluctance only amplified concerns that were circulating even then that the company might pose a security threat to customers.

 

Thank you for your comment. Your comment will be published after being reviewed.
Please try again later.

Good reason to ban Huawei from supplying equipment.

just rip the band aid off and announce they are not in the running for 5 g infrastructure. most other countries have done so. it doesnt take a lot of research to understand the risks are valid

Very odd VodafoneUK and this does not explain UK's decision to proceed with Huawei in the non-core part of the network.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

 /  🏆 10. in İE

Ireland Ireland Latest News, Ireland Ireland Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

REAL SCOOP: CEO of criminal encryption company hid $80 millionRichmond resident Vincent Ramos’s underworld nicknames were “CEO” and “Business.” He was so successful in providing encrypted BlackBerries and other electronic devices…
Source: VancouverSun - 🏆 49. / 61 Read more »