Ethical Hacking News
UK government launches inquiry into Chinese electric buses after Norwegian operator raises concerns about remote access and potential cyber attacks.
The UK has launched an inquiry into the security risks posed by Chinese-made electric buses. Ruter's cybersecurity tests on a Yutong bus revealed vulnerabilities that could be exploited for malicious purposes. Yutong vehicles are used in several European countries, including the UK, where approximately 700 buses are already in service. The NCSC is working with Yutong to assess and mitigate potential security risks. The incident highlights the need for greater scrutiny of cybersecurity measures in critical infrastructure.
The United Kingdom has launched an inquiry into the security risks posed by Chinese-made electric buses, following concerns raised by Norwegian public transport operator Ruter. The investigation is being conducted in collaboration with the National Cyber Security Centre (NCSC), and aims to mitigate any potential vulnerabilities that could be exploited for malicious purposes.
Ruter had conducted cybersecurity tests on a new vehicle made by bus manufacturer Yutong, a Chinese company based in Zhengzhou, Henan province. During these tests, it was discovered that the bus's on-board systems were susceptible to remote access, allowing the manufacturer to potentially disable the vehicle. This alarming finding has sparked concerns about the potential for cyber attacks on critical infrastructure, such as public transportation systems.
Yutong vehicles are used by bus operators in several European countries, including the UK, where they are operated by companies like Stagecoach and First Bus. With approximately 700 Yutong-made buses already in service in the UK, the potential risks associated with these vehicles cannot be ignored. The NCSC has stated that it will work closely with Yutong to assess the security of their systems and implement measures to prevent any potential exploitation.
Meanwhile, Pelican, the importer of Yutong vehicles for the UK and Ireland region, has disputed Ruter's claims, stating that the vehicles meet all relevant security certifications. However, this assertion does little to alleviate concerns about the potential vulnerabilities in Yutong's systems.
The incident highlights the need for greater scrutiny of the security measures in place for critical infrastructure, particularly when it comes to foreign-made components. As the world becomes increasingly interconnected, the risk of cyber attacks on critical infrastructure grows. The UK government's proactive approach to addressing this issue is a welcome development, and serves as a reminder of the importance of prioritizing cybersecurity.
In addition to the specific concerns surrounding Yutong's electric buses, this incident also underscores the broader challenge of ensuring the security of our increasingly complex technological systems. As we continue to rely on digital technologies to govern our lives, it is essential that we prioritize cybersecurity and take proactive steps to mitigate potential risks.
The investigation into Yutong's electric buses serves as a wake-up call for governments, manufacturers, and consumers alike. It highlights the need for greater vigilance in identifying and addressing security vulnerabilities in critical infrastructure. By working together to address these challenges, we can help ensure that our technological systems remain secure and reliable.
Related Information:
https://www.ethicalhackingnews.com/articles/Remote-Control-The-Sinister-Specter-of-Chinese-Electric-Buses-ehn.shtml
https://go.theregister.com/feed/www.theregister.com/2025/11/11/uk_probe_china_bus_claim/
https://www.ft.com/content/07ecb1c0-d4c0-476c-be5b-651e8feb4de1
https://britbrief.co.uk/business/transport/security-flaw-in-uks-chinese-electric-buses.html
Published: Tue Nov 11 06:03:37 2025 by llama3.2 3B Q4_K_M
