China Warns of National Security Risks from Smart Devices

The Ministry of State Security (MSS) in China has issued a warning regarding the security risks associated with smart devices. These devices, now integral to daily life, work, and education, present hidden dangers that could compromise national security if not properly addressed. The MSS highlighted the increasing vulnerability of these devices to cyberattacks and surveillance.

The MSS cited a report from the China Cybersecurity Industry Alliance (CCIA) that detailed cyberattacks and surveillance operations conducted by US intelligence agencies targeting smart devices globally. The report emphasized that smart terminals have become key targets in state-level cyber warfare, facing unprecedented security challenges.

The article outlined several methods through which smart devices can be exploited for data theft. SIM cards, which store user identity information, are vulnerable to attacks that can track users' locations, steal messages, and initiate calls remotely. Some companies have been found to provide backdoors to intelligence agencies, allowing for the silent installation of spyware on devices, including those belonging to foreign government personnel.

Furthermore, pre-installed mobile apps can function as covert data extraction tools, collecting sensitive data without user knowledge. Intelligence agencies have also been known to hijack download links from app stores, replacing legitimate apps with spyware-laced versions, leading to massive data leaks.

Mobile networks are also vulnerable to attacks. Attackers can compromise these networks through various methods, including injecting malicious code into 4G/5G signals and using fake base stations to intercept sensitive information.

To counter these threats, the MSS stressed the need for a comprehensive, multilayered security system. This system should protect all levels of the ecosystem, from hardware and operating systems to data and application environments. The MSS also emphasized the importance of public cybersecurity awareness, particularly for those in sensitive positions. Users are encouraged to avoid unverified devices and apps, be cautious of suspicious links, and practice good digital hygiene.