.png)
A variety of foreign-manufactured hardware components. Only July 8, Greg Schaffer, acting Deputy Undersecretary of the Department of Homeland Security (DHS) National Protection and Programs Directorate, said he was 'aware of some instances' where such items had been purposely embedded with malware. (The Epoch Times)
Greg Schaffer, acting Deputy Undersecretary of the Department of Homeland Security (DHS) National Protection and Programs Directorate, testified before the House Oversight and Government Reform Committee on July 8 during a policy proposal session. Schaffer indicated that he was “aware of some instances” where foreign-manufactured software or hardware components had been purposely embedded with malware or insertions that pose a security risk.
Schaffer testified in response to Rep. Jason Chaffitz’s question as to whether or not there were risks in devices built overseas and what the DHS could do about it, to which Schaffer attempted to avoid the question or neutrally respond several times before affirming that “we believe there is significant risk in the area of supply chain,” and that he himself was aware of instances where foreign insertion of security risks had occurred.
“This is one of the most complicated and difficult challenges that we have,” Schaffer acknowledged. “There are foreign components in many U.S. manufactured devices.”
The overall concern is that these components may be widespread in a variety of devices and their insertions well-hidden, creating the possibility of mass and undetectable breaches of numerous networks throughout the country by a foreign entity.
Schaffer said that a task force had been established between the DHS and the Department of Defense to investigate the situation, determine “short-term mitigation goals”, and ensure the integrity of the U.S. manufacturing infrastructure.