Old devices, idle servers can be turned to spy on us, China’s top security agency warns
In continuing awareness campaign, Beijing’s Ministry of State Security says foreign agencies control disused equipment to gain state secrets
In a post on the Chinese messaging app WeChat, the Ministry of State Security said the tactic had become a trend in recent years.
In another case, it said, a camera monitoring platform was attacked, with the names and passwords for many users’ cameras still on the platform’s server. The system had not been maintained or updated for a long time, leading to a high risk of data leaks, the article said.
The ministry said that if a spy agency took control of the platform, it could manipulate its cameras and use them to steal secrets. Meanwhile, network ports could also be controlled by overseas agencies to log on to servers and launch attacks.
The ministry cautioned that as China’s network equipment was upgraded, the risks from idle equipment also increased. Units with access to top secrets should better manage this equipment and better train staff to carry out periodic checks and prevent the risk of leaks.
Furthermore, idle equipment in information systems should be checked, ports no longer in use should be closed and any security loopholes plugged, the MSS said.