wordpress blog stats
Connect with us

Hi, what are you looking for?

India’s Cybersecurity Agency Investigates Possible Chinese Link in iPhone Breach Attempt: Report

Apple warned several noted figures, including Opposition politicians, journalists and activists, about a “potential state-sponsored spyware attack” earlier this month, leading to several politicians accusing the government of spying on Opposition members.

India’s primary cybersecurity agency, Computer Emergency Response Team (CERT-In), is investigating whether agencies linked to the Chinese government were involved in a potential breach of several Indian Opposition politicians and journalists’ iPhones, reports the Indian Express , citing unnamed sources. Interestingly, CERT-In is examining if the location of manufacturing and potential vulnerabilities in iPhones, most of which were made in China, could play a role in the threat.

The probe began after several politicians, including Congress’s Shashi Tharoor and Aam Aadmi Party’s Raghav Chadha, and some journalists and people working with think tanks, received a “threat notification” from Apple warning of a “potential state-sponsored spyware attack”. The notification had led to opposition politicians accusing the government of India of spying on the opposition, which is relevant especially since India goes to elections in early 2024.

A few points.

1. The potential link between the place of iPhone production (China) and the cyber threats underscores the complexities of global supply chains in the tech sector. It suggests a need for more stringent security measures in the manufacturing process, along with more transparency from tech giants about potential vulnerabilities associated with certain products. At the same time, if there is such an issue, then the responsibility for such vulnerabilities lies squarely with Apple, since it is Apple’s responsibility to ensure the security of their products. The buck stops with them, even though global supply chains are complex and difficult to manage. Lastly, India is already a hub for production of iPhones, and the Indian government could be opportunistic here in terms of pushing Apple to supply locally manufactured/assembled iPhones.

2. The China angle here could also be a red herring, with the government trying to deflect responsibility towards something it can never conclusively prove. Attributing such information is obviously tricky, given that attacks online are designed to prevent traceability of the source of the attack. That being said, CERT-In is hardly an independent agency/body, and the government of India stands accused of orchestrating these attacks. Investigating of these attacks should be done by an independent agency.

3. The current investigation is not the first of its kind in India. Last year, the Supreme Court set up a committee of technical experts to investigate allegations of unauthorized surveillance utilizing the Pegasus software developed by Israeli firm NSO Group, which involved several activists, journalists, and politicians, but it’s worth pointing out that the committee report has still not been made public by the Supreme Court, and the government of India had declined then to either confirm or deny that it had deployed the Pegasus spyware.

4. Apple’s response to the threat notifications has been ambiguous by design, probably because it doesn’t want to get embroiled in what can be sensitive political and geopolitical issues, with the company stating that it “does not attribute the threat notifications to any specific state-sponsored attacker.” It does not explain how it knows that an attack is state sponsored or not, given that it doesn’t want to disclose how it determined the source of the attack.

Also Read:

STAY ON TOP OF TECH NEWS: Our daily newsletter with the top story of the day from MediaNama, delivered to your inbox before 9 AM. Click here to sign up today!


Written By

Founder @ MediaNama. TED Fellow. Asia21 Fellow @ Asia Society. Co-founder SaveTheInternet.in and Internet Freedom Foundation. Advisory board @ CyberBRICS

MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.



Factors like Indus not charging developers any commission for in-app payments and antitrust orders issued by India's competition regulator against Google could contribute to...


Is open-sourcing of AI, and the use cases that come with it, a good starting point to discuss the responsibility and liability of AI?...


RBI Deputy Governor Rabi Shankar called for self-regulation in the fintech sector, but here's why we disagree with his stance.


Both the IT Minister and the IT Minister of State have chosen to avoid the actual concerns raised, and have instead defended against lesser...


The Central Board of Film Certification found power outside the Cinematograph Act and came to be known as the Censor Board. Are OTT self-regulating...

You May Also Like


Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...


135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...


By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...


Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to our daily newsletter
Your email address:*
Please enter all required fields Click to hide
Correct invalid entries Click to hide

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ