Huawei sends team of engineers to discuss router security revelations with hacker

Huawei sends team of engineers to discuss router security revelations with hacker

Summary: The company, which is not known for co-operating with security researchers, says it is sending a team to talk to German hacker Felix Lindner, after Lindner exposes serious flaws in Huawei's routers.

TOPICS: Security, China

The telecoms kit manufacturer Huawei says it has 'taken on board' criticisms of its routers' security capabilities, made by a German hacker earlier this month.

Some, including a US congressional committee, suspect the Chinese firm may be putting backdoors into its kit for the benefit of state spies (this has never been proven). However, hacker Felix Lindner told a security conference there are "so many vulnerabilities" with Huawei's equipment that backdoors would not be needed in order to intercept and manipulate traffic running through it.

Now, Reuters reported on Wednesday, Huawei security chief John Suffolk has said the company is sending a team of engineers to speak with Lindner about the flaws.

"We've very much taken on board Felix's views and you'll see over the coming period we've got a whole host of significant operations to deal with these issues," Suffolk — the former UK government CIO — was quoted as saying at a New Delhi cybersecurity conference.

The report suggests that this is a change of tack by Huawei, which does not usually co-operate with security researchers pointing out vulnerabilities in its systems.

The flaws revealed by Lindner affect a variety of Huawei's routers, from those used in core networks to those placed in customers' premises. The researcher criticised security features such as Huawei's bootloader protection, which he said was configured in a way that would make it possible to load new software on the company's routers.

Lindner's talk this month was not the first time he revealed these vulnerabilities — he covered the same ground in a July talk — but it was the first time he had Huawei representatives sitting in his audience.

Topics: Security, China

David Meyer

About David Meyer

David Meyer is a freelance technology journalist. He fell into journalism when he realised his musical career wouldn't pay the bills. David's main focus is on communications, as well as internet technologies, regulation and mobile devices.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.


Log in or register to join the discussion
  • Huawei trades on cheap

    Why would anyone expect quality from them?
  • Oh I bet...

    ...they'll "talk" to him alright.
  • No surprises in this

    I'm sure there are intentional vulnerabilities to go with the straight screw ups but all the Chinese are doing is trying to catch up with the experts - the Russians and Americans :-)
    John in Brisbane
  • don't talk to them Felix

    Thye just want to know Felix's weaknesses.
  • You TRUST THESE GUYS??? I Don't...

    What other BETTER way to deny doing it on purpose (in the 1st place) then to make them SO OBVIOUS that an idiot could discover them (IF HE TOOK THE TIME). They probably just want to see WHICH ones he found so they can design some MORE Stealthy ones in the future... That's how I'd do it...

    In view of the Prism revelations perhaps the scare stories about Chinese network kit were to ensure friendly nations installed US manufactured kit to allow NSA back-door access.