Chinese authorities have instructed domestic companies to stop using cybersecurity software produced by around a dozen firms from the United States and Israel, citing national security concerns, according to two people briefed on the matter.
Among the affected U.S. companies are Broadcom-owned VMware, Palo Alto Networks and Fortinet, while Israel’s Check Point Software Technologies is also included, the sources said. The directive was issued in recent days, though it remains unclear how many Chinese companies received the notice or whether it applies across specific industries or regions.
The sources said Chinese regulators are concerned that foreign-made cybersecurity software could collect sensitive data and transmit confidential information outside the country, potentially exposing critical systems to overseas intelligence agencies. They declined to be named due to the sensitivity of the issue.
China’s top internet watchdog, the Cyberspace Administration of China (CAC), and the Ministry of Industry and Information Technology (MIIT) did not respond to requests for comment at the time of publication. None of the companies named has publicly commented on the reported restrictions.
The move comes as China and the United States remain locked in a prolonged struggle for technological supremacy, amid heightened trade, security and diplomatic tensions. Washington has in recent years tightened export controls on advanced semiconductors and other high-tech equipment destined for China, citing national security risks. Beijing, in turn, has accelerated efforts to reduce reliance on Western technology.
While China’s push to develop self-sufficiency in semiconductors and artificial intelligence has drawn the most international attention, analysts say Beijing has also been steadily working to replace Western-made computer hardware, operating systems and productivity software within government agencies and state-linked enterprises.
Cybersecurity has emerged as a particularly sensitive area. Chinese analysts and state media commentators have repeatedly warned that foreign software and hardware could contain “backdoors” that might allow overseas governments to conduct surveillance or disrupt critical infrastructure during periods of geopolitical tension.
In recent years, China has introduced a series of data security and national security laws that give regulators broad powers to review, restrict or ban technology deemed a threat to national interests. The reported ban on certain foreign cybersecurity products appears to align with that broader policy direction.
Industry observers say the decision could benefit domestic Chinese cybersecurity firms, but may also create challenges for multinational companies operating in China that have long relied on established Western security platforms to protect their networks and data.
