Aussie Rockman
#Lenovo vaguely confirm #China require #backdoors in locally sold products. No reason to believe that backdoors on global products are provided. The price of selling to the world's biggest population I guess?
https://www.theinquirer.net/inquirer/news/3062910/lenovo-companies-working-in-china-may-have-to-install-local-backdoors
Lenovo: Companies working in China may have to install local backdoors | TheINQUIRER

But emphasises that this doesn't apply to the rest of the world,Security ,Security,privacy,LENOVO,china

Sep 19, 2018 at 8:32pmWeb
Show threadvenyaSep 20, 2018
@aussierockman so I’m a complete noob in infosec and I have a question: what are the sort of backdoors that nation-states request? Do these backdoors tend to be hardware, firmware, or software? I see the term “backdoor” all the time but I never know what that entails. All I have for reference are some NSA TAO tactics, such as installing beacon firmware; but I wanted to know of other tactics/strategies. Thanks!
Show threadAussie RockmanSep 20, 2018
@venya I'm not fully clued into the exact vulnerabilities desired but if I were them I'd be asking for firmware level vulnerabilities. If it's baked into the kernel it makes it much easier to circumvent anti-virus detection and gives greater versatility to access all levels of data.
Show threadvenyaSep 20, 2018
@aussierockman ah ok. Yeah that makes sense for sure. Thanks for the response!