[1]Chinese Supply Chain Hardware Attack:

    Bloomberg is [2]reporting about a Chinese espionage operating
    involving inserting a tiny chip into computer products made in
    China.

    I've [3]written ([4]alternate link) this threat more generally.
    Supply-chain security is an insurmountably hard problem. Our IT
    industry is inexorably international, and anyone involved in the
    process can subvert the security of the end product. No one wants to
    even think about a US-only anything; prices would multiply many
    times over.

    We cannot trust anyone, yet we have no choice but to trust everyone.
    No one is ready for the costs that solving this would entail.

  (Via [5]Schneier on Security)

  The story moved since poblication last week, but Bruce's words still
  hold true.
  Also on:

  [6]Twitter
    __________________________________________________________________

  My original entry is here: [7]Chinese Supply Chain Hardware Attack. It
  posted Thu, 11 Oct 2018 13:08:16 +0000.
  Filed under: business,

References

  1. https://www.schneier.com/blog/archives/2018/10/chinese_supply_.html
  2. https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies
  3. https://www.washingtonpost.com/news/posteverything/wp/2018/05/08/banning-chinese-phones-wont-fix-security-problems-with-our-electronic-supply-chain/
  4. https://www.schneier.com/blog/archives/2018/05/supply-chain_se.html
  5. http://www.schneier.com/blog/atom.xml
  6. https://twitter.com/prjorgensen/status/1050373283135324160
  7. https://www.prjorgensen.com/?p=2189

You are viewing proxied material from sdf.org. The copyright of proxied material belongs to its original authors. Any comments or complaints in relation to proxied material should be directed to the original authors of the content concerned. Please see the disclaimer for more details.