China’s Top Cybersecurity Firms Face Growing Military Procurement Restrictions

www.news4hackers.com-china-s-top-cybersecurity-firms-face-growing-military-procurement-restrictions-china-s-top-cybersecurity-firms-face-growing-military-procurement-restrictions

China’s leading cybersecurity firms have faced escalating restrictions from the military procurement system, with over a dozen companies subjected to suspensions or permanent bans since 2024, according to analysis by threat intelligence firm Natto Thoughts.

Analysis of Procurement Restrictions

The study, which examined public procurement notices, corporate disclosures, and media reports, identified 21 enforcement actions between 2021 and 2026 linked to violations in contract bidding processes rather than technical shortcomings. These measures are part of a structured three-tier framework employed by the People’s Liberation Army (PLA) to address procurement misconduct.

The Three-Tier Enforcement Framework

The system includes a private warning list for initial concerns, a suspension list for confirmed but limited infractions, and a public blacklist for severe violations that may result in lifetime prohibitions affecting affiliated entities and leadership.

Case Studies of Affected Firms

Beijing TopSec Network Security, a subsidiary of TopSec Technologies Group, serves as a case study. The company faced a three-year suspension from specific military services in 2024 after allegations of collusive bidding on an Army contract. Subsequent investigations expanded the penalty to cover all military branches, culminating in a lifetime ban on procurement activities in January 2026 following a two-year review.

Similar Trajectories for Other Firms

Venustech Group experienced a similar trajectory, with its Beijing-based subsidiary initially suspended from a regional military command in August 2024 and later barred from all military contracts in February 2025. While the parent company was added to the sanctions list in April 2026, the penalty remained a suspension rather than a permanent exclusion.

Implicated Firms and Their Roles

Additional firms implicated in the research include Qi An Xin’s Legendsec division, digital certificate provider BJCA, Kylinsec, Westone (CETC Cyber Security), and Huaru Technologies. Many of these entities operate as publicly traded companies or hold credentials for managing classified systems and defense-related infrastructure.

Expert Insights on Dual Roles

According to Eugenio Benincasa, a cybersecurity researcher at ETH Zurich and author of the Natto report, these firms occupy a dual role in China’s security landscape. They have historically contributed to defensive infrastructure, such as firewall development and threat intelligence, while maintaining long-term relationships with the PLA and national security agencies.

Benincasa noted that while none of the companies are directly linked to offensive hacking operations, they support military cyber activities through training programs and service contracts. Qi An Xin’s investments in entities associated with Chinese advanced persistent threat (APT) groups further highlight their integration into state-aligned initiatives.

Broader Context and Reforms

The surge in enforcement actions aligns with broader reforms in PLA procurement oversight, including 2024 regulations aimed at strengthening competitive bidding for military equipment. The report also attributes the trend to the growing influence of China’s newly established Cyberspace Force, which has been implicated in six of the reviewed cases.

Economic and Technological Influences

Economic factors, such as shifting security budgets and increased demand for AI-driven solutions, have also played a role. Venustech’s 2025 outlook, for instance, cited declining security spending and a market shift toward data-centric technologies, a challenge TopSec appears to be addressing.

Conclusion: Balancing Enforcement and Modernization

Despite the penalties, the report emphasizes that the Chinese military continues to rely on these firms for modernization efforts. The crackdown is framed as a measure to enhance procurement professionalism rather than an indication of diminished cybersecurity capabilities. The findings underscore the complex interplay between commercial operations and state interests in China’s cybersecurity sector.



About Author

en_USEnglish