Huawei employees allegedly aid cyber espionage in Africa

Encrypted messages were intercepted and cracked enabling the scuppering political protests

Huawei

Huawei employees have allegedly been helping African governments spy on their opposition using its own technology and other spyware to break into encrypted messages and scupper political protests.

Security officials working in direct contact with the Huawei employees have spoken out against those from the embattled Chinese tech giant inserted into the Ugandan and Zambian cyber security forces for helping governments hack, track and halter their opposition, according to a Wall Street Journal investigation.

In one instance, Huawei technicians were allegedly drafted in to help Ugandan cyber surveillance teams intercept encrypted communications sent and received by Bobi Wine, a musician-cum-political activist and highly outspoken opponent of the Ugandan government.

The report revealed that Ugandan security officials unsuccessfully tried for days to hack into Wine's Skype and WhatsApp groups - in which he organised political rallies in coded slang - before turning to Huawei employees for assistance.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"The Huawei technicians worked for two days and helped us puncture through," said one senior officer at the surveillance unit to the WSJ.

The employees who helped hack Wine have since been arrested and their names included in police reports which have been withheld from the wider media.

In hacking the encrypted messages, authorities were able to deploy forces to stop secretly organised street rallies and, in one case, Wine from drafting in 11 lawmakers to speak at one of his concerts.

"It was very clear he was organising a political event, not a music show. We had to act quickly," one of the officials said.

Wine has said the surveillance has spread to his family and has now resorted to alternative tactics in order to stay under the government's radar such as swapping phones and even using devices belonging to members of the public while on the move to evade surveillance.

"The deal with Huawei is a survivor strategy to consolidate power," said Wine. "It's an all-out assault."

It was much the same in Zambia, Huawei technicians, who have now also been arrested but not publicly named, were accused of helping the government break into the phones and Facebook pages of a blogging group which ran a news site publishing criticism of President Edgar Lungu.

According to the WSJ, the operation was conducted out of a surveillance unit in Zambia's telecoms regulator which tracked bloggers locations, ultimately leading to their arrest. It followed an April crackdown, under President Lungu's command, to neuter news sites that published pro-opposition stories after a long period of stable democracy in the country.

The agency responsible for tackling the spread of these damaging stories was Zicta, Zambia's Information and Communications Technology Authority, around half of the staff of which are Huawei employees.

"Whenever we want to track down perpetrators of fake news, we ask Zicta, which is the lead agency," said Antonio Mwanza, Zambia's ruling party spokesperson. "They work with Huawei to ensure that people don't use our telecommunications space to spread fake news."

Advertisement
Advertisement - Article continues below

Huawei first arrived in Africa in 2000, securing the contract for the Ugandan government's sole IT provider eight years later. The report states that after President Museveni expanded digital snooping in 2017, police officers were sent for training in Beijing and then visited Huawei's Shenzhen headquarters to hear about the company's surveillance systems.

Huawei executives allegedly told Uganda to look at Algeria's mass monitoring surveillance systems, supplied by Huawei. Ugandan officers spent time in Algeria doing just that, before co-producing a classified report between Uganda and Algeria titled 'Huawei's intelligent video surveillance system'.

Advertisement - Article continues below

"We completely reject the Wall Street Journal's unfounded and inaccurate allegations against Huawei's business operations in Algeria, Uganda, and Zambia," said Huawei in a statement to IT Pro. "Huawei's code of business conduct prohibits any employees from undertaking any activities that would compromise the data or privacy of our customers or end users, or that would breach any laws.

"Huawei prides itself on its compliance with local laws and regulations in all markets where it operates and we will defend our reputation robustly against such baseless allegations."

However, the revelations come after a period of calm as regards Huawei's reputation as an alleged international cyber espionage outfit, operating on behalf of the Chinese government.

The US has currently placed Huawei on a trade blacklist but in the last few weeks, reports suggested that US companies would be able to apply for licences to once again trade with the tech giant, indicating the White House would loosen its sanctions that have had ramifications on the global supply chain.

Featured Resources

The IT Pro guide to Windows 10 migration

Everything you need to know for a successful transition

Download now

Managing security risk and compliance in a challenging landscape

How key technology partners grow with your organisation

Download now

Software-defined storage for dummies

Control storage costs, eliminate storage bottlenecks and solve storage management challenges

Download now

6 best practices for escaping ransomware

A complete guide to tackling ransomware attacks

Download now
Advertisement

Recommended

Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/operating-systems/microsoft-windows/354297/this-exploit-could-give-users-free-windows-7-updates
Microsoft Windows

This exploit could give users free Windows 7 updates beyond 2020

9 Dec 2019
Visit/security/identity-and-access-management-iam/354289/44-million-microsoft-customers-found-using
identity and access management (IAM)

44 million Microsoft customers found using compromised passwords

6 Dec 2019
Visit/cloud/microsoft-azure/354230/microsoft-not-amazon-is-going-to-win-the-cloud-wars
Microsoft Azure

Microsoft, not Amazon, is going to win the cloud wars

30 Nov 2019
Visit/hardware/354237/five-signs-that-its-time-to-retire-it-kit
Sponsored

Five signs that it’s time to retire IT kit

29 Nov 2019