U.S. Security Agencies Warn of Cyber Threats from Chinese Drones

The FBI and CISA report outlines potential risks to U.S. data and infrastructure, urging a shift to secure alternatives.

The FBI and Cybersecurity and Infrastructure Security Agency (CISA) have released a report warning of the cybersecurity threats posed by Chinese-manufactured drones, particularly those by DJI, which holds a significant share of the global consumer drone market.
The report suggests that Chinese laws allow the government to access and control data held by Chinese firms, potentially exposing sensitive U.S. information if these drones are used in critical infrastructure operations.
U.S. lawmakers have been increasingly concerned about the potential for Chinese drones to spy on the U.S., leading to a wave of bans targeting Chinese drone manufacturers.
The report does not provide hard evidence of espionage, but outlines the conditions that could allow the People's Republic of China (PRC) to acquire sensitive data.
The FBI and CISA recommend that U.S. companies procure only drones that adhere to CISA’s secure-by-design principles, and consult the Department of Defense’s Blue UAS Cleared List, which lists drones that comply with U.S. federal cybersecurity policies.