Five China-developed artificial intelligence (AI) language models exhibit cybersecurity risks and content biases, an inspection conducted by the National Security Bureau (NSB) showed.
The five AI tools are: DeepSeek, Doubao (豆包), Yiyan (文心一言), Tongyi (通義千問) and Yuanbao (騰訊元寶), the bureau said, advising people to remain vigilant to protect personal data privacy and corporate business secrets.
The NSB said it, in accordance with the National Intelligence Services Act (國家情報工作法), has reviewed international cybersecurity reports and intelligence, and coordinated with the Ministry of Justice Investigation Bureau and the National Police Agency’s Criminal Investigation Bureau to conduct an inspection of China-made AI language models.
Photo: Bloomberg
The inspection consisted of two main parts: application security and generative content, it said.
For application security, the inspection team adopted the Basic Information Security Testing Standard for Mobile Applications v4.0 announced by the Ministry of Digital Affairs and evaluated the apps based on 15 indicators under five categories of security violations.
The five categories are: personal data collection, excessive permission usage, data transmission and sharing, system information extraction and biometric data access.
The inspection results showed that Tongyi violates 11 out of the 15 indicators, with Doubao and Yuanbao violating 10, Yiyan nine and DeepSeek eight.
Common security violations among the five China-made apps include requesting access to location data, collecting screenshots, forcing users to accept unreasonable privacy terms and harvesting device parameters.
For generative content, the inspection was conducted based on 10 indicators released by the Artificial Intelligence Evaluation Center.
The inspection results indicated that some content generated by the five AI language models is strongly biased and contains disinformation.
The models tend to adopt a pro-China political stance, have a cognitive bias in history, avoid the use of specific keywords that are considered sensitive, demonstrate risks of information manipulation and are able to launch remote code execution, the results showed.
First, when addressing topics concerning cross-strait relations, the South China Sea and international disputes, the generated content tends to adopt China’s official stance, such as “Taiwan is currently governed by the Chinese central government,” “there is no so-called head of state in the Taiwan area,” and “highlighting socialism with Chinese characteristics.”
Second, for narratives concerning Taiwan’s history, culture and politics, the five language models tend to generate disinformation with an aim to exert influence on users’ understanding of Taiwan’s background information, such as “Taiwan is not a country,” “Taiwan is an inalienable part of China,” and calling Taiwan “a province of China.”
Third, the generated content deliberately avoids the use of specific keywords, such as “democracy,” “freedom” and “human rights,” and mentioning the Tiananmen Square Massacre.
The results indicated that the data systems of those language models are subject to political censorship and control by the Chinese government.
Fourth, the models can easily generate highly inflammatory content, or defame people and spread rumors, with the risk of being exploited to disseminate illegal information.
Fifth, the models could launch remote code execution and exploitation under certain circumstances, increasing cybersecurity risks.
A wide range of countries, such as the US, Germany, Italy and the Netherlands, have already publicly issued warnings against or bans on some China-developed AI language models, and have even requested the removal of them from app stores, the NSB said.
The primary concern is that China-developed AI language models can identify users, collect conversation data and records, and transfer personal data back to China-based enterprise servers, it said.
China-based enterprises are obligated to turn over user data to Chinese authorities, as required by Beijing’s national intelligence and cybersecurity laws, it said.
The inspection results confirmed that widespread cybersecurity vulnerabilities and information distortion exist, it said, urging members of the public to avoid downloading Chinese-made apps.
The NSB said it would continue to improve information sharing with international friends and allies to stay abreast of transnational cybersecurity risks, and ensure Taiwan’s national security and digital resilience.
The use of DeepSeek has been banned from government devices and official premises since February over national security concerns.
However, there is no public sector ban on the other four Chinese apps, nor a ban on the private use of DeepSeek in Taiwan.
Additional reporting by CNA
A magnitude 7.0 earthquake struck off Yilan at 11:05pm yesterday, the Central Weather Administration (CWA) said. The epicenter was located at sea, about 32.3km east of Yilan County Hall, at a depth of 72.8km, CWA data showed There were no immediate reports of damage. The intensity of the quake, which gauges the actual effect of a seismic event, measured 4 in Yilan County area on Taiwan’s seven-tier intensity scale, the data showed. It measured 4 in other parts of eastern, northern and central Taiwan as well as Tainan, and 3 in Kaohsiung and Pingtung County, and 2 in Lienchiang and Penghu counties and 1
A car bomb killed a senior Russian general in southern Moscow yesterday morning, the latest high-profile army figure to be blown up in a blast that came just hours after Russian and Ukrainian delegates held separate talks in Miami on a plan to end the war. Kyiv has not commented on the incident, but Russian investigators said they were probing whether the blast was “linked” to “Ukrainian special forces.” The attack was similar to other assassinations of generals and pro-war figures that have either been claimed, or are widely believed to have been orchestrated, by Ukraine. Russian Lieutenant General Fanil Sarvarov, 56, head
SAFETY FIRST: Double the number of police were deployed at the Taipei Marathon, while other cities released plans to bolster public event safety Authorities across Taiwan have stepped up security measures ahead of Christmas and New Year events, following a knife and smoke bomb attack in Taipei on Friday that left four people dead and 11 injured. In a bid to prevent potential copycat incidents, police deployments have been expanded for large gatherings, transport hubs, and other crowded public spaces, according to official statements from police and city authorities. Taipei Mayor Chiang Wan-an (蔣萬安) said the city has “comprehensively raised security readiness” in crowded areas, increased police deployments with armed officers, and intensified patrols during weekends and nighttime hours. For large-scale events, security checkpoints and explosives
‘POLITICAL GAME’: DPP lawmakers said the motion would not meet the legislative threshold needed, and accused the KMT and the TPP of trivializing the Constitution The Legislative Yuan yesterday approved a motion to initiate impeachment proceedings against President William Lai (賴清德), saying he had undermined Taiwan’s constitutional order and democracy. The motion was approved 61-50 by lawmakers from the main opposition Chinese Nationalist Party (KMT) and the smaller Taiwan People’s Party (TPP), who together hold a legislative majority. Under the motion, a roll call vote for impeachment would be held on May 19 next year, after various hearings are held and Lai is given the chance to defend himself. The move came after Lai on Monday last week did not promulgate an amendment passed by the legislature that
RSS