Contact Caroline Tabler or James Arnold (202) 224-2353

Washington, D.C. - Senator Tom Cotton (R-Arkansas) along with Senators Marco Rubio (R-Florida), Rick Scott (R-Florida), Mike Braun (R-Indiana), and Josh Hawley (R-Missouri) today sent a letter to Microsoft President Brad Smith in response to his recent comments that the U.S. government should provide more evidence of wrongdoing by Huawei so that business leaders can decide whether to continue doing business with the Chinese telecommunications company. The letter reproduces publicly available evidence of Huawei's spying, technology theft, and economic warfare, which illustrates the enormous threat Huawei poses to the national security of America and its allies. It goes on to recommend that the government look for appropriate ways to share intelligence about Huawei with affected businesses. The full text of the letter can be found below and by clicking here.

Brad Smith
President
Microsoft
One Microsoft Way
Redmond, WA 98052

Dear Mr. Smith,

We're writing in response to a recent article in Bloomberg Businessweek, which includes your remarks about the Chinese telecommunications company Huawei. You encouraged the United States government to disclose additional intelligence about Huawei's espionage, so that business leaders "can decide for ourselves" whether to continue dealing with the company.

We appreciate Microsoft's communications with our offices and your understanding of the threats posed by Huawei. We also understand that many American companies have conducted business in good faith with Huawei and other Chinese telecommunications companies. While the U.S. government and American industry must take certain steps to protect our people and our telecommunications infrastructure, we do not want to cause undue harm to those American companies.

We believe, however, that a review of publicly available evidence indicates that the security concerns about Huawei are real and urgent. To highlight those concerns to American citizens and businesses, we list below just some of this evidence:

Espionage Activities

  • Huawei's president and founder, Ren Zhengfei, is a former engineer for the People's Liberation Army and a member of the Chinese Communist Party (CCP). The CCP has office space and minders inside Huawei's Shenzhen headquarters.
  • Beginning in 2006, the Chinese government financed and built the African Union (AU) headquarters in Addis Ababa, Ethiopia. Huawei servers inside the building secretly transferred data to servers in Shanghai every night for five years until the theft was discovered. The AU replaced its Huawei servers at great expense, and declined an offer by China to help configure its new servers.
  • Last year, Huawei technicians collaborated with Ugandan intelligence officers to hack an encrypted messaging platform used by a political opponent of the regime.
  • Earlier this year, Polish authorities arrested a Huawei sales director and former Chinese diplomat on charges he was spying for the Chinese government.[4]
  • An independent research firm in the United States examined hundreds of Huawei products and "found Huawei devices to be less secure than comparable devices from other vendors" with "hundreds of cases of potential backdoor vulnerabilities...a large number of known vulnerabilities...and hundreds of potential 0-day vulnerabilities." 
  • A recent think tank study reviewed the resumes of 25,000 Huawei employees and found several who were simultaneously employed by Chinese intelligence services.
Technology Theft & Economic Warfare
  • Huawei has received tens of billions of dollars in grants, export finance, and loan guarantees from China's state policy banks, which indicates the government's vested interest in Huawei's overseas expansion.
  • Huawei allegedly used shell companies in Iran and Syria to deceive European banks into clearing hundreds of millions of dollars in transactions that violated U.S. sanctions against doing business with the repressive regimes in Tehran and Damascus.
  • Earlier this year, the U.S. government indicted Huawei for stealing advanced robotics technology from T-Mobile in the United States. The company allegedly offered rewards to employees who stole trade secrets from competitors.
  • In 2003, Cisco filed suit against Huawei, alleging "systematic and wholesale infringement of Cisco's intellectual property." It was later established that Huawei copied proprietary source code from a Cisco router down to the letter, including coding errors, help screens, and user manuals. A third-party expert concluded the similarities between the two sets of code were "beyond coincidence," despite Huawei's claims to the contrary. The case was settled out of court.
  • In 2010, Motorola filed suit against Huawei after a Motorola employee with ties to Huawei was stopped from boarding a flight to Beijing with a carry-on bag full of confidential documents from Motorola. The lawsuit revealed that Motorola employees created a company to funnel Motorola's trade secrets to Huawei. The case was settled out of court.
  • A former cybersecurity executive for Nortel has implicated Huawei in the company's downfall, warning other companies against doing business with Huawei. He alleges Huawei was involved in cyberattacks that emanated from China, stealing business plans and intellectual property. These attacks contributed to Nortel's bankruptcy.
This evidence, in conjunction with testimony from U.S. government officials and our allies, Britain, Japan, and Australia, makes a compelling case that Huawei serves as an intelligence-gathering apparatus for the Chinese state. As Secretary of Defense Mark Esper has said, "Huawei is the means by which China would get into our networks and our systems, and either attempt to extract information or to corrupt it, or to undermine what we're trying to do."

Of course, the government has more classified evidence to support this case, and we sympathize with your expressed concern that Microsoft and other businesses are not privy to this intelligence. We believe the Federal Bureau of Investigation or the intelligence community could share more of this intelligence in an appropriate fashion to affected businesses. We would welcome further conversation with Microsoft and other businesses about coordinating such briefings.

Thank you again for Microsoft's cooperation with our offices. And thank you for the many ways in which Microsoft works with our military, intelligence community, and law enforcement agencies.