Tech Quisling: The Prime Minister Wants Mark Zuckerberg In Australia To Answer Questions About Facebook Privacy

The company's reported data sharing arrangement with rogue Chinese company Huawei has got local politicians angry.
By Josh Taylor

Zuckerberg is  "like a Red Guard waving the White Book," says Hu Jia

Prime minister Malcolm Turnbull has thrown his support behind a push to have Facebook founder Mark Zuckerberg appear before Australia's parliamentary committee on national security over news the company shared user data with Chinese telecommunications manufacturer Huawei.

It was reported yesterday that Facebook had entered into a data sharing arrangement with several Chinese manufacturers including Huawei, Lenovo, OPPO, and TCL, and allowed these companies to collect user data including address books, likes, and friendships.
Facebook has these types of relationships with many companies, including Apple and Google, but politicians in the US, the UK, and Australia have raised concerns about the sharing of the data with Chinese companies, given the relationships between some Chinese-owned companies and the Chinese government.
The deputy chair of the joint standing committee on intelligence and security, Labor MP Anthony Byrne, is so concerned over the data handed to Huawei that he has indicated that Zuckerberg would be invited to give evidence before the committee.

View image on Twitter

Anthony Byrne

✔@AnthonyByrne_MP

It is vital that Facebook explains its data sharing partnership with firms such as Huawei. We need to protect the data of over 15 million Facebook users in Australia. (1/2)

3:22 AM - Jun 7, 2018

• 7
• See Anthony Byrne's other Tweets

Twitter Ads info and privacy

Anthony Byrne

✔@AnthonyByrne_MP

If need be Mr Zuckerberg will be invited to appear before the PJCIS in a public hearing to explain himself to our committee and the Australian people. (2/2).

3:22 AM - Jun 7, 2018

• 2
• See Anthony Byrne's other Tweets

Twitter Ads info and privacy

This call was backed by PM Turnbull, who said he would welcome Zuckerberg giving evidence in Australia.
"Well, certainly there are a lot of concerns about Facebook, about privacy ... And I would welcome Facebook coming and testifying before our parliamentary committees, yes," he said.



"We'd love to see the boss. But, naturally, he is the founder, but the important thing everyone is paying a lot of attention to [is] the issue of privacy. And, of course, the question of whether people really know what is being done with their personal data."
Turnbull said Facebook had become dominant in people's lives, and it was important to keep a close eye on how data is being used, and ensure people consent to their data being used.
Facebook has not yet indicated whether Zuckerberg would appear, but the Facebook founder did not turn up to face UK lawmakers in April, despite repeated requests. 

He did, however, front the European Parliament in May.
The Australian parliamentary committee is due to hand down its report on Thursday on legislation aimed at cracking down on foreign interference in Australia from countries including China.
Huawei is also under closer scrutiny in Australia at the moment as the government is considering whether to use new powers to veto mobile telecommunications companies such as Telstra, Optus and Vodafone from using Huawei technology in the construction of their 5G mobile networks.
The company has already provided equipment for some of the nation's 4G mobile networks, but was banned from tendering for the National Broadband Network.

Tech Quisling

Facebook Gave Data Access to Huawei, Rogue Chinese Firm Flagged by U.S. Intelligence

By Michael LaForgia and Gabriel J.X. Dance

Facebook’s logo at an internet conference in Beijing in April. The social network has struck data-sharing partnerships with at least four companies in China.
Facebook has data-sharing partnerships with at least four Chinese electronics companies, including a manufacturing giant that has a close relationship with China’s government, the social media company said on Tuesday.
The agreements, which date to at least 2010, gave private access to user data to Huawei, a telecommunications equipment company that has been flagged by American intelligence officials as a national security threat, as well as to Lenovo, Oppo and TCL.
The four partnerships remain in effect, but Facebook officials said in an interview that the company would wind down the Huawei deal by the end of the week.
Facebook gave access to the Chinese device makers along with other manufacturers — including Amazon, Apple, BlackBerry and Samsung — whose agreements were disclosed by The New York Times on Sunday.
The deals were part of an effort to push more mobile users onto the social network starting in 2007, before stand-alone Facebook apps worked well on phones. 

The agreements allowed device makers to offer some Facebook features, such as address books, “like” buttons and status updates.
Facebook officials said the agreements with the Chinese companies allowed them access similar to what was offered to BlackBerry, which could retrieve detailed information on both device users and all of their friends — including religious and political leanings, work and education history and relationship status.
Huawei used its private access to feed a “social phone” app that let users view messages and social media accounts in one place, according to the officials.
Facebook representatives said the data shared with Huawei stayed on its phones, not the company’s servers.
Senator John Thune, the South Dakota Republican who leads the Commerce Committee, has demanded that Facebook provide Congress with details about its data partnerships. 

“Facebook is learning hard lessons that meaningful transparency is a high standard to meet,” Mr. Thune said.
His committee also oversees the Federal Trade Commission, which is investigating Facebook to determine whether the company’s data policies violate a 2011 consent decree with the commission.
Senator Mark Warner of Virginia pointed out that concerns about Huawei were not new, citing a 2012 congressional report on the “close relationships between the Chinese Communist Party and equipment makers like Huawei.”
“I look forward to learning more about how Facebook ensured that information about their users was not sent to Chinese servers,” said Mr. Warner, the top Democrat on the Intelligence Committee.
“All Facebook’s integrations with Huawei, Lenovo, Oppo and TCL were controlled from the get-go — and Facebook approved everything that was built,” said Francisco Varela, a Facebook vice president. 

“Given the interest from Congress, we wanted to make clear that all the information from these integrations with Huawei was stored on the device, not on Huawei’s servers.”
Banned in China since 2009, Facebook in recent years has quietly sought to re-establish itself there. The company’s chief executive, Mark Zuckerberg, has tried to cultivate a relationship with Chinese dictator Xi Jinping, and put in an appearance at one of the country’s top universities.
Last year, Facebook released a photo-sharing app in China that was a near replica of its Moments app, but did not put its name on it. 

And the company has worked on a tool that allowed targeted censorship, prompting some employees to quit over the project.
Still, Facebook has struggled to gain momentum, and in January an executive in charge of courting China’s government left after spending three years on a charm campaign to get the social media service back in the country.
None of the Chinese device makers who have partnerships with Facebook responded to requests for comment on Tuesday.
Huawei, one of the largest smartphone manufacturers in the world, is a point of national pride for China and is at the vanguard of the country’s efforts to expand its influence abroad. 

The company was the recipient of billions of dollars in lines of credit from China’s state-owned policy banks, helping to fuel its overseas expansion in Africa, Europe and Latin America. 

Its founder, Ren Zhengfei, is a former engineer in the People’s Liberation Army.
The United States government has long regarded the company with suspicion, and lawmakers have recommended that American carriers avoid buying the network gear it makes. 

In January, AT&T walked away from a deal to sell a new Huawei smartphone, the Mate 10.
United States officials are investigating whether Huawei broke American trade controls by dealing with Cuba, Iran, Sudan and Syria. 

The Trump administration has taken aim at Huawei and its rival ZTE in recent weeks, and in April the Federal Communications Commission advanced a plan to bar federally subsidized telecom companies from using suppliers that are considered national security threats.
Facebook has not entered into a data-sharing agreement with ZTE, officials at the social network said.
TCL, a consumer electronics firm, has accused the Trump administration of bias against Chinese companies and last June dropped a bid to buy a San Diego-based company that makes routers and other hardware.
Lenovo, a maker of computers and other devices, recently shelved ambitions to acquire BlackBerry after the Canadian government signaled that such a deal could compromise national security.

No Surprise: Backdoors and Spyware on Smartphones is the Norm in China

All the three biggest Chinese smartphone manufacturers, Xiaomi, Huawei and Lenovo had preinstalled spyware in their smartphones
By Oiwan Lam

Kryptowire, a security firm, recently identified several models of Android mobile devices that have preinstalled permanent software, known as firmware, that serve as backdoor that collects sensitive personal data, including text messages, geolocations, contact lists, call logs and transmits them to a third-party server in Shanghai, China.
Without users’ consent, the code can bypass Android's permission model. 

This could allow anyone interested in a mobile user's data — from government officials to malicious hackers — to execute remote commands with system privileges and even reprogram the devices.
The firmware was developed by Chinese company Shanghai ADUPS Technology Company. 

ADUPS confirmed the report with a statement explaining that the software was a “solution” to a Chinese phone manufacturer’s demand to “flag junk texts and calls” in response to user demand. 

It said the collected messages would be analyzed to “identify junk texts” and “improve mobile phone experience.”
Kryptowire's research reveals that the collected information was protected with multiple layers of encryption and then transmitted over secure web protocols to a server located in Shanghai. 

The data transmission occurred every 72 hours for text messages and call log information, and every 24 hours for other personally identifiable information.
ADUPS explained that the “accustomed” firmware was "accidentally" built into 120,000 mobile products of one American phone manufacturer, BLU Products. 

After BLU raised the issue, ADUPS explained that the software was not designed for American phones and deactivated the program on Blu phones.
The news has been widely reported in foreign media as ADUPS is among the largest FOTA (firmware over the air) providers in the world. 

The company provides a cloud platform for mobile device management to over 700 million active users in 200 countries, which is equivalent to 70% of the global market share as it works closely with the world largest cheap mobile phone manufacturers ZTE and Huawei, both of which are based in China. 

In 2015 alone, Huawei sold more than 100 million smartphones.
Chinese netizens have not been surprised by the news. 

Reports about spyware preinstalled in Chinese mobile brands have circulated for many years among mainland and overseas Chinese speaking-communities. 

In 2014, Hong Kong Android Magazine reported that Xiaomi’s smartphones designed for overseas markets were automatically connecting to an IP in Beijing and that all documents, SMS and phone logs, and video files downloaded were being transmitted to a Beijing server.
In 2015, Germany-based security company G-Data also found out that at least 26 Android mobile brands had preinstalled spyware in their smartphones.
The three biggest Chinese smartphone manufacturers, Xiaomi, Huawei and Lenovo were all listed.

China's newly passed Cybersecurity Law has provided legal ground for the smartphone’s backdoor operation. 

The law requires “critical information infrastructure operators” to store users’ “personal information and other important business data” in China.
Other laws, such as the Child Protection Bill (still in draft), also requires hardware companies to pre-install surveillance software on communication devices and legalize specific approaches to treating internet addiction.
In addition to the surveillance of private data as required by law, Chinese Android phone users regularly download Android apps from unofficial third party app markets since Google left China in 2010. 

These Android markets are flooded with apps containing malware that can steal and manipulate personal data.
On November 16, the New York Times reported that American authorities say it is not clear whether this represents secretive data mining for advertising purposes or a Chinese government effort to collect intelligence.
In response to the news, many Chinese netizens are pointing out the abusive use of personal data and government surveillance has become the norm.
信息泄露人们早就见惯了，即使是被Gov监视人们也不会在意。we are nobody.
We are so used to the leaking of personal data. We don’t care about government surveillance anymore. We are nobody.

Lenovo, Huawei and other Chinese computer products pose a terrible cyber security threat

“The U.S. must take all reasonable steps to ensure we are not an easy target for our enemies.” -- Rep. Mike Pompeo

By Bill Gertz

U.S. President Barack Obama delivers remarks at the National Cybersecurity and Communications Integration Center.

The Pentagon’s Joint Staff recently warned against using equipment made by China’s Lenovo computer manufacturer amid concerns about cyber spying against Pentagon networks, according to defense officials.
A recent internal report produced by the J-2 intelligence directorate stated that cyber security officials are concerned that Lenovo computers and handheld devices could introduce compromised hardware into the Defense Department supply chain, posing cyber espionage risks, said officials familiar with the report. 

The “supply chain” is how the Pentagon refers to its global network of suppliers that provide key components for weapons and other military systems.
The J-2 report was sent Sept. 28, and also contained a warning that Lenovo was seeking to purchase American information technology companies in a bid to gain access to classified Pentagon and military information networks.
The report warned that use of Lenovo products could facilitate cyber intelligence-gathering against both classified and unclassified—but still sensitive—U.S. military networks.
One official said Lenovo equipment in the past was detected “beaconing”—covertly communicating with remote users in the course of cyber intelligence-gathering.
“There is no way that that company or any Chinese company should be doing business in the United States after all the recent hacking incidents,” the official said.
About 27 percent of Lenovo Group Ltd. is owned by the Chinese Academy of Science, a government research institute. 

In April, a Chinese Academy of Sciences space imagery expert, Zhou Zhixin, was named to a senior post in the Chinese military’s new Strategic Support Force, a unit in charge of space, cyber, and electronic warfare.
An illustration picture shows a projection of binary code on the face of a man in an office in Warsaw June 24, 2013.

China has been linked by the National Security Agency to large-scale cyber spying against both the Pentagon and American and foreign defense contractors.
Joint Staff spokesman Capt. Greg Hicks declined to comment on the J-2 report but said the military is wary of foreign nations’ cyber spying.
“Although we are concerned any time another nation or individual attempts to initiate intelligence collection against the Department of Defense, we do not discuss internal assessments,” Hicks said.
Lenovo spokesman Ray Gorman said he was unaware of the Joint Staff concerns.
On company efforts to acquire American information technology firms, Gorman said “we have stated many times that we continue to look worldwide for opportunities that make sense for our customers and shareholders, add value to our product portfolio, and help keep us on track for continued profitable growth.” 

He declined to comment on specific acquisition talks.
A Pentagon spokesman said the Defense Department has not imposed a “blanket ban” on all Lenovo products and does not blacklist suppliers or individual products.
Pentagon policy for protecting mission critical functions in securing computer systems and networks “requires the department to perform supply chain risk management functions when acquiring products for use in its national security systems,” the spokesman said, adding that the analysis is done on a case-by-case basis.
Rep. Robert Pittenger who has investigated Chinese cyber risks in the past, said he is concerned by the Joint Staff report.

“Chinese cyber security and supply chain concerns remain a significant problem for both the Defense Department and the remainder of the federal government,” Pittenger (R., N.C.) told the Washington Free Beacon.
Pittenger said it is important for Congress to press Pentagon acquisition officials “to act swiftly on perceived cyber-threats and remove IT vendors from our supply chain if evidence exists suggesting a security vulnerability.”
“I would be very disappointed to learn, however, if the Defense Department or the Air Force sought to obfuscate the facts regarding contracts with Lenovo when this issue was brought to my attention back in April,” he added.
On Friday the chairman of the House Judiciary Committee wrote to the FBI warning that secrets stored on former secretary of state Hillary Clinton’s private email server may have been compromised by a Clinton aide’s use of a Lenovo computer.
Rep. Bob Goodlatte (R., Va.) stated in a letter to FBI Director James Comey that Heather Samuelson, former White House liaison to the State Department, used two Lenovo laptops to sort some of the thousands of classified emails from Clinton’s server.
“Lenovo computers, and specifically the models used by Heather Samuelson for reviewing classified emails, have been shown by the Department of Homeland Security (DHS) to contain software, dating back to 2010, that permits remote hacking attacks,” Goodlatte stated.
Disclosure of the Joint Staff warning comes after a similar warning from the Air Force Cyber Command in April.
An email notice stated that “per AF Cyber Command direction, Lenovo products are being removed from the Approved Products List and should not be purchased for DoD use.”
“Lenovo products currently in use will be removed form the network,” the email stated.
Chinese cyber espionage tools: Photo of Lenovo tablets and mobile phones displayed during a news conference on the company's annual results in Hong Kong.

The Air Force later sought to play down the warning in the email and a spokesman told reporters the email was “coordinated” and should not have been sent.
Lenovo equipment has been a major cyber espionage worry since the company first purchased IBM’s laptop computer business in 2005.
A congressional China commission report produced several years ago revealed that the Army Cyber Directorate in 2007 investigated a Lenovo-brand desktop computer that was engaged in “beaconing activity.” 

The report said the beacon was a “self-initiating attempt to establish a connection to a suspicious foreign entity.”
Rep. Mike Pompeo, a member of the House Permanent Select Committee on Intelligence, said the risks posed by Lenovo technology are serious.
“It is critical that the U.S. government, particularly the Pentagon, use the most secure technology available,” Pompeo (R., Kan.) said.
“The threat from cyber attacks is real and demonstrated, as seen by China’s hack of the Office of Personnel Management, which impacted millions of Americans,” he added. 

“The U.S. must take all reasonable steps to ensure we are not an easy target for our enemies.”
Larry Wortzel, a former military intelligence official and member of the congressional U.S.-China Economic and Security Review Commission, said he helped alert security officials to a plan by the State Department to purchase 900 Lenovo computers in 2006. 

The computers would have been used to handle classified information and the State Department canceled the sale over cyber spying concerns.
“The Chinese government has a major stake in Lenovo,” Wortzel said in an email.
“China is the main threat to U.S. government and corporate information systems,” Wortzel added. 

“One way to keep those systems safe is to ensure you are not getting system updates that may have a back door that can be opened by a Chinese intelligence service.”
A National Security Agency document made public by renegade contractor Edward Snowden revealed that China has stolen sensitive military technology through cyber attacks, including radar designs, engine schematics, and other data through a program code-named Byzantine Hades. 

The program caused “serious damage to DoD interests,” according to a briefing slide.
NSA detected more than 30,000 cyber attacks, including more than 500 significant intrusions into Pentagon systems. 

The attacks broke into at least 1,600 network computers and caused more than $100 million in damage.
Data stolen included Pacific Command aerial tanker refueling schedules, Transportation Command logistics information, and Navy nuclear submarine and anti-aircraft missile designs.
In 2014, Lenovo purchased IBM’s BladeCenter line of computer servers for $2.1 billion. 

The sale prompted the Navy to replace the upgraded IBM servers within Aegis battle management systems deployed on guided missile destroyers and cruisers over concerns China could hack the Navy’s most advanced warships through the server.
Specifically, the equipment being replaced is IBM’s x86 BladeCenter HT server, a part of the Aegis Technical Insertion, or “TI,” 12.
The upgrades, first reported last year by USNI News, involve TI-12 hardware upgrades, and the Advanced Capability Build, or “ACB,” 12 software upgrades. 

The components make up the Aegis Baseline 9 combat system upgrade, which combines ballistic missile defense and anti-air warfare upgrades for the warships.
According to the Department of Homeland Security, Lenovo computers since September 2014 were loaded with adware called Superfish that could allow hackers to spoof encrypted security controls in what are called “man-in-the-middle” cyber attacks. 

The attacks allow hackers to take over secure web browsers.
Lenovo purchased Motorola Mobility, the company’s cell phone division in 2014, and has sought to buy the Canadian cell phone maker BlackBerry in the past.
Lenovo in the past has denied its products are engaged in cyber espionage. 

“Lenovo has been a trusted supplier of information technology in the U.S. since 2005 when it bought the IBM ThinkPad PC business,” the company said in a statement. 

“Every single company selling technology to the U.S. government—including HP, Dell, Cisco, Apple, and Lenovo—use foreign components in their products. So it’s critical that the U.S. continue to follow a standards-based process that allows for procurement of technology that is both cutting edge and totally secure.”
U.S. intelligence agencies in August 2015 warned that Lenovo, along with another Chinese-government-linked firm, Huawei Technologies, had shipped some 80,000 computers to several nations in the Caribbean. 

The computers were found to contain spyware that can permit remote intrusions.
The cyber spying concerns are not limited to the Pentagon.
The Australian Financial Review newspaper reported in 2013 that all of the “Five Eyes” intelligence services—those in the United States, Britain, Australia, Canadian, and New Zealand—strictly prohibit the use of Lenovo computers over concerns about the potential for cyber espionage.

Lenovo laptops: Clinton lawyer Heather Samuelson has exposed entire server to China

Lenovo, a company with ties to the Chinese government, has sold laptops for years with malware pre-installed on the computer.

By JOEL GEHRKE

Hillary Clinton's lawyer may have allowed Chinese hackers to obtain all of the former secretary of state's emails by reviewing the contents of her private server on a laptop tied to Chinese cyberspies, a House Republican charged on Friday.
Heather Samuelson was one of the Clinton aides who sifted through the private email server used during Clinton's tenure at the State Department, and helped decide which would be designated as personal messages and which were work-related.

That's when the Chinese hacks may have taken place, because she used two laptops made by Lenovo, a company with ties to the Chinese government that has sold laptops for years with malware pre-installed on the computer.
"It seems clear that Secretary Clinton and her associates played fast and loose with our national security, and yet no one — not a single person involved in this harmful fiasco — has been held accountable," House Judiciary Committee chairman Bob Goodlatte, R-Va., wrote to FBI Director James Comey after learning the make and model of Samuelson's computer.
State Department officials have been banned from using Lenovos since 2006. 

In 2015, the company admitted to installing a program called "Superfish" on 43 different computer models, "specifically the models used by Heather Samuelson for reviewing classified emails," as Goodlatte emphasized.
Lenovo started installing Superfish in 2010, according to the Department of Homeland Security. 

The program is designed to place ads on users' computers, but it is used by hackers to attack a computer remotely. 

"Websites, such as banking and email, can be spoofed without a warning from the browser," the DHS warned in February 2015.
Samuelson sorted through the emails in 2014, before Lenovo was caught installing the malware. 

That timing raises the possibility that "Secretary Clinton's emails were obtained by the Chinese government — the State Department, FBI or any other agency had redacted Top Secret and Special Access Program (SAP) information," Goodlatte wrote. 

"This information is so highly classified that even congressional oversight committees were not able to review the emails."
Goodlatte asked Comey to describe whether the FBI investigated Samuelson's laptops in the course of the Clinton probe and he hinted that they should do so now, if not.
"While we understand that you agreed to destroy one of the laptops at the end of your investigation, pursuant to Ms. Samuelson's immunity agreement, do you still have in your possession either of Ms. Samuelson's Lenovo laptops?" he asked.