Huawei security slammed by UK government report

News
By published

NCSC finds "long-term security risks" from Huawei

(Image credit: Shutterstock) (Image credit: Shutterstock)

Huawei has been strongly criticised by a UK government-backed report into the security protections of its products.

The report by the National Cybersecurity Centre (NCSC) said that it could only provide "only limited assurance that the long-term security risks can be managed in the Huawei equipment currently deployed in the UK".

However it stopped short of confirming any concrete evidence of surveillance by the company, which unveiled its latest P30 Pro flagship this week, or the Chinese government.

Significant

The report comes from the Huawei Cyber Security Evaluation Centre (HCSEC) Oversight Board, an organisation set up by the NCSC back in 2014.

It stated there were "significant technical issues in Huawei's engineering processes" and that the company's approach to software development brings "significantly increased risk to UK operators".

“If an attacker has knowledge of these vulnerabilities and sufficient access to exploit them, they may be able to affect the operation of the network,” the report said, noting this could allow hackers to “access user traffic or reconfiguration of the network elements.”

Huawei currently supplies several of the top UK operators with 4G and 5G infrastructure, and the report comes a matter of weeks before the UK is set to decide its 5G network spectrum allowance.

The report noted that the current oversight process into Huawei means that any possible risks could for the moment be managed, but added this "can only provide limited assurance that all risks to UK national security from Huawei's involvement in the UK's critical networks can be sufficiently mitigated long-term".

Huawei has continued to deny any wrongdoing, especially as the company comes under maintained criticism from the US over supposed government-backed spying.

In a statement, a Huawei representative said it understood the concerns over its software engineering capability and took them "very seriously".

It also reaffirmed its pledge to work closely with the NCSC and UK partners to meet their security requirements, and revealed it had invested $2bn to improve its capabilities and a high level plan had been developed.

Mike Moore
Mike Moore
Deputy Editor, TechRadar Pro

Mike Moore is Deputy Editor at TechRadar Pro. He has worked as a B2B and B2C tech journalist for nearly a decade, including at one of the UK's leading national newspapers and fellow Future title ITProPortal, and when he's not keeping track of all the latest enterprise and workplace trends, can most likely be found watching, following or taking part in some kind of sport.

Latest in Security
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Ransomware
Cl0p resurgence drives ransomware attacks to new highs in 2025
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak
A major Keenetic router data leak could put a million households at risk
Code Skull
Interpol operation arrests 300 suspects linked to African cybercrime rings
Latest in News
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Microsoft Surface Laptop and Surface Pro devices on a table.
Hate Windows 11’s search? Microsoft is fixing it with AI, and that almost makes me want to buy a Copilot+ PC
Oura Ring 4
Activity tracking on Oura Ring is about to get a whole lot better, but I've got bad news about your step count
Google Pixel Buds Pro 2
Cleaned your Pixel Buds Pro 2 recently? If not, you might be getting worse sound
Google Maps on a phone being held in someone's hand
Google Maps is getting two key upgrades, for easier route planning and quicker access to Gemini AI
URL phishing
HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
More about security
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.

Broadcom warns of worrying security flaws affecting VMware tools
URL phishing

HaveIBeenPwned owner suffers phishing attack that stole his Mailchimp mailing list
Amazon Kindle Colorsoft in black on blue background with don't miss sign

The brand-new Kindle Colorsoft drops to its lowest-ever price in the Amazon Spring Sale
See more latest
Most Popular
Render of a new RTX 4000 Max-Q gaming laptop.
I can't say I'm surprised, but Nvidia's RTX 5090 laptop GPU has a big performance leap over its predecessor, according to early benchmarks
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Broadcom warns of worrying security flaws affecting VMware tools
Apple Music on a tablet, showing a new Listening Guide feature
Apple Music Classical just got 3 excellent perks in its biggest upgrade since launch
Google Pixel Buds Pro 2
Cleaned your Pixel Buds Pro 2 recently? If not, you might be getting worse sound
Quick move in Civ 7.
Sid Meier's Civilization 7 update 1.1.1 is here and it finally adds a setting that I've wanted since day one
A green claw wraps around the carcass of a monster
Is Lagiacrus coming to Monster Hunter Wilds? Some fans are convinced, and here's why
Gemini on a smartphone.
Gemini 2.5 is now available for Advanced users and it seriously improves Google’s AI reasoning
Microsoft Surface Laptop and Surface Pro devices on a table.
Hate Windows 11’s search? Microsoft is fixing it with AI, and that almost makes me want to buy a Copilot+ PC
Google Maps on a phone being held in someone's hand
Google Maps is getting two key upgrades, for easier route planning and quicker access to Gemini AI
Android Auto
Android Auto 14.0 is rolling out now – and it'll soon swap Google Assistant for the smarter Gemini