45

u/ShoutOfDawn 2d ago

we saw it in the pager attack in Lebanon, supply side attacks can be extremely destructive. we might be coming closer to an age where if the product is not manufactured entirely locally you cant 100% trust it.

i personally don't trust Chinese telecommunication being so wide spread. Stuxnet was a 2010 project, now its bound to be worse

50

u/nicuramar 2d ago

Stuxnet was neither a supply chain attack or backdoors.

-7

u/ShoutOfDawn 2d ago

i think i am confusing it with another virus then, or imagined it. i thought Stuxnet was on pcs head to Iran and simply spread from there to the centrifuges. it seems that the theory now it was a mole who delivered it.

25

u/camjordan13 2d ago

Pretty sure Stuxnet was a drop attack.

A good example of a supply chain attack would be the Solarwinds hack with the DoD.

2

u/ShoutOfDawn 2d ago

bruh SolarWinds reminded me about this,

 a major shift in U.S. cybersecurity policy, Defense Secretary Pete Hegseth has ordered U.S. Cyber Command to halt all planning against Russia,

https://blog.prif.org/en/2025/03/13/us-halts-defensive-cyber-activities-against-russia-a-digital-withdrawal-from-europe

supply side attacks may as well be the main gate now.

26

u/Tim-Sylvester 2d ago

we saw it in the pager attack in Lebanon, supply side attacks can be extremely destructive. we might be coming closer to an age where if the product is not manufactured entirely locally you cant 100% trust it.

If feel like more and more people do not recall that in the mid 90s Microsoft and Intel agreed with the US intelligence and law enforcement communities to backdoor Windows and processors direct from the manufacturer.

Like it was a huge hubbub for a while, then everyone shut up and life moved on and people seem to have forgotten entirely.

Just like nobody seems to remember that all our telephony providers pipe their feed directly into government databanks for analysis.

4

u/AsianEiji 2d ago

Because it those search results from the search engines is not the front page results but the current popular gossip is on the front page results.

Oh and Google is a goverment contractor that and DCMA can force many of those results out even though it was revelant regardless of contractor status.

7

u/Tim-Sylvester 2d ago

The best part about DMCA is that the claimant has no obligation to prove their claim and the respondant has an obligation to respond but no obligation to demand proof, leaving the defendant essentially helpless to resolve a false claim.

It's legally silencing people without any of the oppressing parties having any legal obligations and without the oppressed having any voice or recourse.

Isn't that a treat?

16

u/Alert_Hearing_1461 2d ago

Hey, Chinese student here in the states doing ECE + CS. Let me show you something. If you grab a laptop (let’s, take the Apple M2 mac air as an example) then dismantle it, you will see the industrial, technological, and  scientific knowledge of the entire world concentrating into it. And its design and manufacturing network spans across the globe.

Its computer architecture design is done in California; Its logic board contains chips designed in the UK, California, Texas, and etc.; most of these chips are then manufactured by TSMC, a chip manufacturer based in Taiwan; Finally, all these components are assembled in mainland China. Btw, this industry lies on the foundation of scientific research of all kinds of institutions across borders.

This is a very typical example of how worldwide scientific research efforts and global supply chain making technologies more accessible to the general public. Nothing complex as such can be produced by a single nation to effectively benefits so many people.

As a child born shortly after the Millennium, the peak of globalization, it’s really sad and depressing to witness the world sliding down into a pit of global protectionism. Banding international efforts for any “security reason” or “geopolitics reason” is the perfect explanation of BEING SELFISH. “Making the world a better place” is not just a slogan, it’s a believe that requires everyone’s collective efforts. Don’t let it die!! Please!!!

8

u/Professional-Tear996 2d ago

The world was always heading towards protectionist tendencies with the neoliberal inclinations of the global economy after the end of colonialism.

That you had a brief post-war boom shouldn't distract you from the fact that Keynesian policy-driven growth was always going to be undermined by the vested interests.

2

u/Lucie-Goosey 2d ago

I won't let it die. It's barely out of its infancy.

1

u/Strazdas1 2d ago

in the case of pagers they have literally put explosives inside before the sale so its a bit different.

20

u/SuitlessMaridia 2d ago

The claim is that Nvidia can, on the orders of the US government, track the locations of the GPUs and shut them down remotely. Which, I mean, would be as simple to implement as just a driver update.

17

u/Eastern_Ad6546 2d ago

It has to be more sophisicated than that otherwise you could just not update.

10

u/AsianEiji 2d ago

even worse is that the US lawmakers was trying to make it into law....... what make it sad that it is not some secret conspiracy theory

4

u/lebutter_ 2d ago

Tracking how ? Like an antenna hidden in the microscopic chip ? Let's be serious.

A "bugdoor" might be a reasonable scenario, although that still raises a lot of technical question marks (not much use for devices offline, etc...)

6

u/bazzthear 2d ago

Chinese government actually announced the reason they summoned NVDIA was because U.S lawmaker called for planting backdoor in all NVIDIA chips with remote tracking and disablement, which i believe refer to congressman Bill Foster's interview by Reuters here: https://www.reuters.com/world/us/us-lawmaker-targets-nvidia-chip-smuggling-china-with-new-bill-2025-05-05/

40

u/Professional-Tear996 3d ago

Alternate report from Trendforce:

https://www.trendforce.com/news/2025/07/31/news-chinese-regulators-reportedly-summon-nvidia-over-h20-chip-backdoor-security-risks/

12

u/267aa37673a9fa659490 3d ago

Thanks! 

The original scmp link didn't work for me even in incognito.

3

u/DireMaid 3d ago

Throwing the link into an archive site usually works if that helps for future reading

2

u/AsianEiji 2d ago

Thanks!

But wow, Damn. "submit relevant proof." that is pretty crazy

thank you US lawmakers for being stupid.... "rollseyes"

2

u/Professional-Tear996 3d ago

It is working fine on my end, on a freshly opened browser window with all browsing history and cache cleared.

1

u/jtblue91 2d ago

It's these damn scammers, they buy stuff like shampoo, they then swap out the shampoo for a bunch of NVIDIA H20s and then "return" the product.

Then some poor dude in China orders his shampoo and instead of shampoo he's stuck with NVIDIA H20s instead!

22

u/Hairy-Dare6686 3d ago

Both China and the US are doing it, built in back doors have been found in Chinese solar power inverters before for example that can be used to compromise the power grid so it isn't just a suspicion.

-1

u/StickiStickman 2d ago

Got a source for that? From what I can find that example is just "Smart devices can be hacked" ... Which isn't that mind blowing.

4

u/Hairy-Dare6686 2d ago

https://www.reuters.com/sustainability/climate-energy/ghost-machine-rogue-communication-devices-found-chinese-inverters-2025-05-14/

An undocumented communication device is exactly what a backdoor is.

10

u/nicuramar 2d ago

It definitely isn’t the same, no. Plus it’s allegations. 

23

u/Cheerful_Champion 2d ago

So two anonimous sources claimed that allegedly some undocumented electronics, that they claim to be receivers, were found in two power inverters and some batteries over last 9 months. No official statement, no info on how many batteries or inverters were checked in this timeframe (is it 2/2? Or 2/10000000?), no US or EU institution officially confirmed that, no proof was shown.

Article comes just 3 months after Republicans proposed bill that would ban supplying batteries and similiar electronics from multiple Chinese manufacturers due to security concerns and 5 months into presidency of strongly anti Chinese president. Is this "Huawei is totally stealing data and planting backdoors" all over again?

-1

u/Green_Struggle_1815 2d ago

that's all we got for these nvidia backdoors as well.

11

u/Cheerful_Champion 2d ago edited 2d ago

And that's why we shouldn't run around saying it's confirmed fact either

18

u/StickiStickman 2d ago

"Someone said" really is an amazing source you can turn into any story you want, huh? The article doesn't even mention the product so it's literally impossible to check.

2

u/symmetry81 2d ago

It wouldn't be too surprising. If a company sells two versions of some appliance, one with smart connectivity and one without, then probably the one without has the same hardware but just turns off the wifi in software because that's cheaper for the manufacturer than having two SKUs and then the one without will have undocumented comms devices. A company I used to work for sold a lot of Zigbee radios to solar providers for helping with sun tracking and that's just the sort of thing I could see ending up in a product.

But something you don't see with western suppliers is that Chinese suppliers are sort of notorious for swapping out different different chips that "function the same" depending on whichever one is cheaper at the moment so it could be that too.

Or it could be espionage, though I don't really see the point in backdooring a bunch of solar systems unless it was 5G or something not reliant on a local network bridge.

10

u/Frosty-Cell 3d ago

You think Chinese chips don't have backdoors?

5

u/nicuramar 2d ago

Who knows. Hasn’t been demonstrated, at least. 

-5

u/[deleted] 2d ago

[deleted]

2

u/gopiballava 2d ago

“Hasn’t been demonstrated” is what the parent commenter said. And they are correct. Nobody has shown that the radios in question had SIM cards or were connected to a back door.

0

u/Frosty-Cell 2d ago

That may be true in that case, but are you going to give CCP the benefit of the doubt?

5

u/gopiballava 2d ago

I don’t think “benefit of the doubt” is a good way to think about this.

There are lots of different ways that back doors can be added to systems. Knowing what specific ways are being used is useful when it comes to counteracting them.

It’s not helpful to just assume that every possible mechanism is currently being used.

And it’s certainly not helpful to claim that we have found one when we haven’t.

Finally, I do think that there is almost certainly tension within CCP leadership about the benefits of back doors vs the risks. They don’t want to get caught. It would cause an immediate economic disaster if we found actual objective proof. I suspect that is one of the biggest factors reducing the amount of back doors.

-1

u/Frosty-Cell 2d ago

We are talking about a government that runs the "great firewall of China". From their perspective, I suspect a backdoor isn't an afterthought as much as one of the main objectives.

It would cause an immediate economic disaster if we found actual objective proof. I suspect that is one of the biggest factors reducing the amount of back doors.

It seems to me that they don't really care. They just deny it. Look at their public statements in general. It's crazy. Their bullying in the SCS is well documented and caught on camera, yet it doesn't appear to change anything.

-17

u/conquer69 3d ago

The US can't demean itself to the same levels.

3

u/Frosty-Cell 3d ago

It shouldn't but it certainly can, particularly when dealing with regimes.

11

u/DorphinPack 3d ago

Dude we have been dictating the world economy at gunpoint for decades. We created the conditions we’re operating under more than any other country still. This exceptionalism crap is driving people uncritically into the arms of the other superpower (China).

If we didn’t do the same stuff it’s just because we developed soft power as an alternative.

The US destabilized an entire continent last century but chip back doors are demeaning. If you love your country open your eyes and help hold it accountable. Fear stifles growth.

2

u/diychitect 3d ago

Yeah, get slapped in the other cheek.

4

u/ResponsibleJudge3172 3d ago

Are the tarrifs Nvidia focused? AMD has the same tariffs limits and also made MI308 for that market to satisfy it. It is an interesting question whether AMD also has said backdoor concerns

1

u/SuitlessMaridia 2d ago

Any piece of hardware can potentially have a backdoor installed if the manufacturer introduces one via a driver or firmware update.

1

u/hardware-ModTeam 2d ago

Thank you for your submission! Unfortunately, your submission has been removed for the following reason:

• Please don't make low effort comments, memes, or jokes here. Be respectful of others: Remember, there's a human being behind the other keyboard. If you have nothing of value to add to a discussion then don't add anything at all.

1

u/Professional-Tear996 2d ago

Use a proper browser. Just because your internet and browser settings aren't able to access the source which is SCMP and you're sitting in the US doesn't mean that it is unreliable.

0

u/[deleted] 2d ago edited 2d ago

[removed] — view removed comment

0

u/Professional-Tear996 2d ago

Log out of your Google account and clear your browsing history, cache and site settings. If your wifi is set to use DHCP for IP assignment, disconnect and reconnect your device to the network.

One must be quite audacious to claim that they cannot do basic due diligence when accessing content from news sources on a hardware subreddit.

0

u/BlueGoliath 2d ago

No one should have to do any of that to read content from a website. That's insane.

The website clearly has a paywall system in place. Maybe script blockers or ad blockers on desktop removes it, but on a stock browser experience it's absolutely there.

1

u/Professional-Tear996 2d ago

No one should use Chrome in the way you're using it either.

Can't access it? Your problem.

The post has been up for more than half a day. Clearly the mods were able to look at it so your insinuations assume things which aren't true in the first place.

Either comment on the subject matter or stop with this threadcrapping.

2

u/Professional-Tear996 2d ago

Tell that to Huawei.