Skip to main content
  1. Home
  2. Web
  3. News

DHS aware of imported electronics pre-loaded with malware

By
DHS Greg Schaffer
Image used with permission by copyright holder

Testifying before the House Oversight and Government Reform Committee, acting deputy secretary of the DHS National Protection and Programs Directorate Greg Schaffer admitted on the record the that DHS is aware of instances were electronics imported into the United States have been pre-loaded with malware, spyware, and other cyber-security threats, and that both the DHS and the White House have been aware of the threat for some time.

When repeatedly asked a “softball” question by Utah representative Jason Chaffetz (R) whether he was aware of instances where foreign-manufacturers software or hardware components had been intentionally embedded with security risks, Schaffer hesitatingly stated “I am aware of instances where that has happened.”

Recommended Videos

The focus of the Oversight and Government Reform Committee is more on infrastructure—systems that control power grids, water and hydro systems, emergency communications, and government response rather than consumer electronics.

Schaffer did not offer any details on the nature of the compromised technology, but did emphasize that many American-made systems use components from foreign manufacturers. The implication is that foreign agencies or interests are using international suppliers to get compromised software and equipment into the supply chain, potentially laying the groundwork for cyberattacks against U.S. infrastructure systems or even everyday consumers. The attacks could take the form of security holes that provide access to sensitive and/or classified information, or could potentially provide a foreign power the ability to cripple portions of the U.S. infrastructure, causing significant economic damage to the country.

Schaffer has an extensive background in private sector cybersecurity and managing communications infrastructure.

The White House’s recent Cyberspace Policy Review (PDF) recently hinted at the same vulnerability, noting that while consumers are most likely to be targeted by counterfeit products, supply chain attacks “might narrowly focus on particular systems and make manipulation virtually impossible to discover.”

Schaffer’s testimony before the committee was to discuss a proposal that would offer incentive for private sector organizations to share security-related information with the federal government.

Topics
Geoff Duncan
Geoff Duncan
Former Digital Trends Contributor
Geoff Duncan writes, programs, edits, plays music, and delights in making software misbehave. He's probably the only member…
How to download a video from Facebook
An elderly person holding a phone.

Facebook is a great place for sharing photos, videos, and other media with friends and family. But what if you’d like to download a video to store offline? This means you’d be able to watch the clip on your PC or mobile device, without needing to be connected to the internet. Fortunately, there’s a way to download Facebook videos to your everyday gadgets, although it’s not as straightforward a process as it could be.

Read more
How to delete your Gmail account (and what you need to know)
The top corner of Gmail on a laptop screen.

Is it time to part ways with your Gmail account? Whether you’re moving onto greener email pastures, or you want to start fresh with a new Gmail address, deleting your old Gmail account is something anyone can do. Of course, we’re not just going to bid you farewell without a guide all our own. If you need to delete your Gmail account, we hope these step-by-step instructions will make the process even easier.

Read more
How to change margins in Google Docs
Laptop Working from Home

You may find that Google Docs has a UI that is almost too clean. It can be difficult to find basic things you're used to, such as margin settings. Don't worry, though, you can change margins in Google Docs just like with any other word processor through a couple of different means.

Read more