FTC warns US tech firms against weakening encryption for foreign governments

First reported

23.08.2025 18:21

Last updated

26.08.2025 10:52

📰 2 unique sources, 2 articles

Summary

Hide ▲

The Federal Trade Commission (FTC) has warned major U.S. tech companies not to comply with foreign government demands that weaken encryption, compromise data security, or impose censorship. The warning comes amidst increasing pressure from foreign governments to access encrypted data and censor content. The FTC emphasizes that complying with such demands would violate the FTC Act and expose companies to legal consequences. The FTC's letter, signed by Chairman Andrew N. Ferguson, was sent to companies including Akamai, Alphabet (Google), Amazon, Apple, Cloudflare, Discord, GoDaddy, Meta, Microsoft, Signal, Snap, Slack, and X (Twitter). The letter highlights the potential risks to American users, including increased surveillance, identity theft, and fraud. The warning follows a recent incident where Apple was pressured to remove support for iCloud end-to-end encryption in the UK, a demand that was later retracted due to U.S. diplomatic pressure. The FTC's letter mentions the EU’s Digital Services Act and the UK’s Online Safety Act and Investigatory Powers Act as examples of foreign laws pressuring tech companies. The FTC expressed concern that companies might simplify compliance with foreign laws by censoring Americans or increasing foreign surveillance.

Timeline

23.08.2025 18:21 📰 2 articles

FTC warns US tech giants against foreign pressure on encryption
The Federal Trade Commission (FTC) has issued a warning to major U.S. tech companies, cautioning them against complying with foreign government demands that weaken encryption or impose censorship. The warning comes amidst increasing pressure from foreign governments to access encrypted data and censor content. The FTC emphasizes that complying with such demands would violate the FTC Act and expose companies to legal consequences. The FTC's letter, signed by Chairman Andrew N. Ferguson, was sent to companies including Akamai, Alphabet (Google), Amazon, Apple, Cloudflare, Discord, GoDaddy, Meta, Microsoft, Signal, Snap, Slack, and X (Twitter). The letter highlights the potential risks to American users, including increased surveillance, identity theft, and fraud. The warning follows a recent incident where Apple was pressured to remove support for iCloud end-to-end encryption in the UK, a demand that was later retracted due to U.S. diplomatic pressure. The FTC's letter mentions the EU’s Digital Services Act and the UK’s Online Safety Act and Investigatory Powers Act as examples of foreign laws pressuring tech companies. The FTC expressed concern that companies might simplify compliance with foreign laws by censoring Americans or increasing foreign surveillance.
Show sources

FTC warns tech giants not to bow to foreign pressure on encryption — www.bleepingcomputer.com — 23.08.2025 18:21

FTC Calls on Tech Firms to Resist Foreign Anti-Encryption Demands — www.securityweek.com — 26.08.2025 10:52
Open in new tab

Information Snippets

The FTC has warned major U.S. tech companies not to comply with foreign government demands that weaken encryption or impose censorship.
First reported: 23.08.2025 18:21

📰 2 sources, 2 articles
Show sources
- FTC warns tech giants not to bow to foreign pressure on encryption — www.bleepingcomputer.com — 23.08.2025 18:21
- FTC Calls on Tech Firms to Resist Foreign Anti-Encryption Demands — www.securityweek.com — 26.08.2025 10:52
The warning was sent to companies including Akamai, Alphabet (Google), Amazon, Apple, Cloudflare, Discord, GoDaddy, Meta, Microsoft, Signal, Snap, Slack, and X (Twitter).
First reported: 23.08.2025 18:21

📰 2 sources, 2 articles
Show sources
- FTC warns tech giants not to bow to foreign pressure on encryption — www.bleepingcomputer.com — 23.08.2025 18:21
- FTC Calls on Tech Firms to Resist Foreign Anti-Encryption Demands — www.securityweek.com — 26.08.2025 10:52
The FTC emphasizes that complying with such demands would violate the FTC Act and expose companies to legal consequences.
First reported: 23.08.2025 18:21

📰 2 sources, 2 articles
Show sources
- FTC warns tech giants not to bow to foreign pressure on encryption — www.bleepingcomputer.com — 23.08.2025 18:21
- FTC Calls on Tech Firms to Resist Foreign Anti-Encryption Demands — www.securityweek.com — 26.08.2025 10:52
The FTC's letter highlights the potential risks to American users, including increased surveillance, identity theft, and fraud.
First reported: 23.08.2025 18:21

📰 2 sources, 2 articles
Show sources
- FTC warns tech giants not to bow to foreign pressure on encryption — www.bleepingcomputer.com — 23.08.2025 18:21
- FTC Calls on Tech Firms to Resist Foreign Anti-Encryption Demands — www.securityweek.com — 26.08.2025 10:52
The warning follows a recent incident where Apple was pressured to remove support for iCloud end-to-end encryption in the UK, a demand that was later retracted due to U.S. diplomatic pressure.
First reported: 23.08.2025 18:21

📰 2 sources, 2 articles
Show sources
- FTC warns tech giants not to bow to foreign pressure on encryption — www.bleepingcomputer.com — 23.08.2025 18:21
- FTC Calls on Tech Firms to Resist Foreign Anti-Encryption Demands — www.securityweek.com — 26.08.2025 10:52
The FTC's letter cites prior enforcement cases, including against Zoom Video Communications in 2021 for deceptive marketing of its end-to-end encryption and Ring in 2023 for failure to encrypt customers' video feeds.
First reported: 23.08.2025 18:21

📰 1 source, 1 article
Show sources
- FTC warns tech giants not to bow to foreign pressure on encryption — www.bleepingcomputer.com — 23.08.2025 18:21

Similar Happenings

Chinese State-Sponsored Actors Compromise Global Critical Infrastructure Networks

Chinese state-sponsored Advanced Persistent Threat (APT) actors, specifically the group known as Salt Typhoon, have been conducting a sustained campaign to gain long-term access to critical infrastructure networks worldwide. This campaign targets telecommunications, transportation, lodging, and military networks, exploiting vulnerabilities in routers and taking steps to evade detection and maintain persistent access. The Cybersecurity and Infrastructure Security Agency (CISA), in coordination with the National Security Agency (NSA), Federal Bureau of Investigation (FBI), and international partners, released a joint advisory detailing this ongoing malicious activity. The advisory provides actionable guidance and intelligence to help organizations defend against these sophisticated cyber threats. The advisory builds on previous reporting and incorporates updated threat intelligence from investigations conducted through August 2025, reflecting overlapping indicators with industry reporting on various Chinese state-sponsored threat groups. Salt Typhoon has been active since at least 2019, targeting at least 600 organizations, including 200 in the U.S., and 80 countries. The Czech Republic's National Cyber and Information Security Agency (NUKIB) issued a warning about data transfers to China, highlighting concerns over the transfer of system and user data to the PRC and the remote administration of technical assets. The Czech government previously accused China of targeting its critical infrastructure through APT 31, which began in 2022. China's offensive cyber activities include large-scale telco attacks by Salt Typhoon and positioning for potential destructive cyberattacks. The advisory tracks this cluster of activity to multiple advanced persistent threats (APTs), though it partially overlaps with Salt Typhoon. The advisory details how state-backed threat actors, including Salt Typhoon, penetrate networks around the world, as well as how defenders can protect their own environments. The Czech Republic's National Cyber and Information Security Agency (NUKIB) has assessed the risk of significant disruptions caused by China at a 'High' level, indicating a high probability of occurrence. NUKIB confirmed malicious activities of Chinese cyber-actors targeting the Czech Republic, including a recent APT31 campaign targeting the Czech Ministry of Foreign Affairs. The Chinese government has access to data stored by private cloud service providers within the Czech Republic, ensuring that sensitive data is always within its reach. NUKIB warns about consumer devices, such as smartphones, IP cameras, electric cars, large language models, and even medical devices and photovoltaic converters manufactured by Chinese firms, as risky devices that can transfer potentially sensitive data to Chinese infrastructure. 45 previously unreported domains associated with Salt Typhoon and UNC4841 have been discovered, with the oldest domain registration activity dating back to May 2020.

Open in new tab

FTC Chair Warns Tech Companies Against Compromising Encryption

FTC Chair Andrew Ferguson has warned major US tech companies to resist foreign government pressure to weaken encryption. Ferguson emphasized the importance of encryption for protecting public discourse and consumer privacy. He cited examples of foreign laws and policies that have led to censorship and degraded security measures. The FTC Chair also warned that complying with such regulations could violate the FTC Act. The letter was sent to executives at Akamai, Alphabet, Amazon, Apple, Cloudflare, Discord, GoDaddy, Meta, Microsoft, Signal, Snap, Slack, and X. The warning comes amid increasing global pressure on tech companies to provide backdoor access to encrypted data.