Chinese government directive to stop using US- and Israel-made cybersecurity software
Public Sector Action
Summary
Hide ▲
Show ▼
The Chinese government is directing domestic companies to stop using US- and Israel-made cybersecurity software, tightening access to foreign security tools in China. The reported directive names vendors including CrowdStrike, Palo Alto Networks, Fortinet, Wiz, Check Point, and SentinelOne. The scope of the order is unclear, but it could push Chinese buyers toward domestic alternatives across the cybersecurity market.
Related Happenings
Publicly exposed Ollama AI compute footprint spans 175,000 hosts worldwide
Target Trend
First: 29.01.2026 20:37
Last: 29.01.2026 20:37
Sources 1
About this happening:
A **175,000-host** population of **Ollama** deployments across **130 countries** has emerged as a broadly exposed AI-compute layer, increasing the risk of unmanaged access and wea...
Publicly exposed Ollama AI compute footprint spans 175,000 hosts worldwide
Target TrendAbout this happening: A **175,000-host** population of **Ollama** deployments across **130 countries** has emerged as a broadly exposed AI-compute layer, increasing the risk of unmanaged access and wea...
Penguin Account-Heavenly Alliance-Overseas Alliance ecosystem shift changes threat-actor operations
Threat Actor Meta
First: 12.01.2026 09:34
Last: 12.01.2026 09:34
Sources 1
About this happening:
A **PBaaS service-provider ecosystem** is packaging **pig butchering** operations as turnkey fraud, boosting scale and lowering entry costs across **Southeast Asia**. Providers se...
Penguin Account-Heavenly Alliance-Overseas Alliance ecosystem shift changes threat-actor operations
Threat Actor MetaAbout this happening: A **PBaaS service-provider ecosystem** is packaging **pig butchering** operations as turnkey fraud, boosting scale and lowering entry costs across **Southeast Asia**. Providers se...
Kimwolf and Aisuru linked as a shared botnet operator ecosystem
Threat Actor Meta
First: 09.01.2026 01:23
Last: 09.01.2026 01:23
Sources 1
About this happening:
**Infoblox** says **PBaaS service providers** are helping industrialize **pig butchering** operations by supplying **scam kits**, **stolen identities**, **mobile apps**, **CRM/SCR...
Kimwolf and Aisuru linked as a shared botnet operator ecosystem
Threat Actor MetaAbout this happening: **Infoblox** says **PBaaS service providers** are helping industrialize **pig butchering** operations by supplying **scam kits**, **stolen identities**, **mobile apps**, **CRM/SCR...
UAT-7290's ORB Relay Role Expands China-Nexus Initial Access Operations
Threat Actor Meta
First: 08.01.2026 16:54
Last: 08.01.2026 16:54
Sources 1
About this happening:
**UAT-7290** is being assessed as a **dual-role** China-nexus actor that combines **espionage intrusions** with **initial access** activity, expanding the threat ecosystem beyond...
UAT-7290's ORB Relay Role Expands China-Nexus Initial Access Operations
Threat Actor MetaAbout this happening: **UAT-7290** is being assessed as a **dual-role** China-nexus actor that combines **espionage intrusions** with **initial access** activity, expanding the threat ecosystem beyond...
UK Government Cyber Action Plan and public-sector cyber defense launch
Public Sector Action
First: 07.01.2026 14:15
Last: 07.01.2026 14:15
Sources 1
About this happening:
The **United Kingdom** launched the **Government Cyber Action Plan**, backed by **more than £210 million ($283 million)**, to harden **public-sector cyber defenses** and reduce di...
UK Government Cyber Action Plan and public-sector cyber defense launch
Public Sector ActionAbout this happening: The **United Kingdom** launched the **Government Cyber Action Plan**, backed by **more than £210 million ($283 million)**, to harden **public-sector cyber defenses** and reduce di...
Timeline
-
16.01.2026 13:25 2 articles · 4mo ago
China directs domestic companies to stop using foreign cybersecurity software
Legal Policy Action UpdateThe Chinese government is instructing domestic companies to stop using cybersecurity software made by companies from the United States and Israel, affecting vendors including CrowdStrike, Palo Alto Networks, Fortinet, Wiz, Check Point, Broadcom (VMware), SentinelOne, Recorded Future, Claroty, McAfee, Rapid7, Google (Mandiant), Orca, CyberArk, Imperva, and Cato Networks. The scope of the order is unclear, and several named vendors said they have little or no China exposure or have not received any government notification.
Show sources
- Cybersecurity Firms React to China’s Reported Software Ban — www.securityweek.com — 16.01.2026 13:25
- Cybersecurity Firms React to China’s Reported Software Ban — www.securityweek.com — 16.01.2026 13:25