Network devices from several Chinese manufacturers are insecure and allow personal information to be leaked, testing commissioned by the Executive Yuan has shown.
A variety of devices and software, including apps, from Chinese, US and South Korean manufacturers that are used by government agencies at the central and local level were subjected to black-box testing — in which the functionality of an application is examined without knowing about its internal structure, an information-security official said yesterday on condition of anonymity.
The Telecom Technology Center conducted the tests, which simulated cyberattacks, to determine their resilience to the attacks, the official said.
The center said it would send the results of the tests to the manufacturers and retest the affected devices in two months, pending software updates.
The Chinese manufacturers included Xiaomi Corp (小米), Oppo Mobile Telecommunications Corp (歐珀), Hangzhou Hikvision Digital Technology Co (杭州海康威視數字技術) and Zhejiang Dahua Technology Co (浙江大華技術).
Information stored on some of the tested Chinese-made products was found to be insecure, the official said.
Of the software that failed to meet national requirements for information security, one app was from Oppo and seven were from Xiaomi, while software and devices from Samsung Electronics Co and Apple Inc passed all their tests, the official said.
Tests on devices from Hikvision and Dahua were aimed at testing the security of their system software, identity-recognition software, authorization mechanisms and their protection of personal information, the official said.
The monitoring software in Hikvision network camera model DFI 6257E and Dahua infrared camera model DH-IPC-HFW1230SN exhibited abnormal behavior, did not have alert functions and received a relatively low score of seven in version 3.1 of the Common Vulnerability Scoring System, which indicates security loopholes, the official said.
Both devices also used an insecure encryption system and an insufficiently complex verification system, and neither had shells designed to prevent dismantling, the official said.
The center also conducted tests on drones built by Shenzhen DJI Sciences and Technologies (深圳大疆創新科技有限公司), which supplies the drones used by Taiwan Water Corp (台灣自來水).
Tests on the company’s Mavic Pro, Mavic 2 Pro and Phantom 4 Pro V2.0 models showed signs of signal interference, which appeared in the devices’ logs, the official said.
They all had weak information-security mechanisms, among other problems, the official added.
BACK TO NORMAL? The move would be part of a gradual easing of curbs monitored by the CECC, which would retain the quarantine mandate if case numbers rise again The Cabinet yesterday approved a plan to next month reopen Taiwan’s borders to all visitors and lift the quarantine mandate for arrivals, provided the nation’s COVID-19 situation does not escalate. The changes are likely to take effect on Oct. 13 as part of a phased easing of border controls that is to start on Thursday next week when a negative polymerase chain reaction test result would no longer be needed, Cabinet spokesman Lo Ping-cheng (羅秉成) told a news conference. Arriving travelers would instead be given four rapid antigen home test kits, Lo said. The three-day quarantine requirement followed by four days of mandatory
‘NO SURRENDER’: A blockade or outlying island seizure would be an act of war, and China’s drills last month have emboldened Taipei in its response plans, an official said The Republic of China Army Command Headquarters has agreed to purchase 5,000 Kestrel close-range anti-armor missiles worth NT$400 million (US$12.63 million) from the Chungshan Institute of Science and Technology, according to the military’s latest arms purchase bid notice. The army asked the institute to complete the order within 13 months, a military source said on condition of anonymity. Kestrel missiles are designed to penetrate armored vehicles and are used in anti-surface warfare, as they feature optical sights and night vision, and can be operated in all weather conditions. The missile has a 400m range, or a 150m range when used for breaching brick
IF THE CHIPS ARE DOWN: The US secretary of state warned that a disruption to the supply of Taiwanese semiconductors would play havoc with the global economy If Taiwan were attacked, the global economy would face devastation, as that is where most of the world’s semiconductors are produced, US Secretary of State Antony Blinken said on Sunday. In an interview that aired on the 60 Minutes television program, Blinken was asked whether instability across the Taiwan Strait would be felt around the world. Blinken said that China has been increasingly aggressive against Taiwan, posing a threat to peace and stability in the region, while economically the world would feel the effects of such aggression. Blinken was interviewed for the program after meeting with Chinese Minister of Foreign Affairs Wang Yi
‘ABSURD’: UN Resolution 2758 expelled the Chiang Kai-Shek government without mentioning Taipei, something the Chinese minister did not acknowledge, Taipei said Taiwan yesterday criticized Chinese Minister of Foreign Affairs Wang Yi (王毅) for “intentionally misinterpreting” a 1971 UN resolution to misrepresent Taiwan’s status to the global community. In his address on Saturday to the UN General Assembly, Wang cited Resolution 2758 as a basis for Beijing’s claim that Taiwan is part of China. He said that Beijing considers Taiwan an “inseparable part of China’s territory since ancient times.” “Only when China is completely reunified can there be enduring peace across the Taiwan Strait... Any move to obstruct China’s reunification is bound to be crushed by the wheels of history,” Wang said. General Assembly Resolution 2758