Australia has launched a committee-led investigation into potential cybersecurity risks associated with Chinese-manufactured Yutong electric buses, amid concerns that the vehicles could be influenced or controlled through foreign servers. The probe follows reports suggesting that some electric buses produced by the company may contain remote access capabilities that pose national security and public safety risks.
According to a British media report, supported by findings from the United Kingdom’s National Cyber Security Centre, similar Yutong bus models operating in parts of Europe were found to have vulnerabilities that could allow remote shutdown through a so-called “kill switch.” These allegations have raised alarm among Australian lawmakers and cybersecurity experts, prompting scrutiny of the buses recently introduced into public transport networks.
The issue has gained particular attention as Australia accelerates its transition toward greener transport solutions. Transport Canberra, along with other state transport authorities, has been integrating electric vehicles into public fleets across regions including Queensland and New South Wales. In 2023 alone, more than 90 Yutong electric buses were purchased as part of the government’s broader zero-emissions strategy aimed at reducing carbon output and modernizing public transport infrastructure.
Critics argue that while electric buses offer environmental benefits, insufficient oversight of their digital systems could expose critical transport infrastructure to cyber threats. Concerns center on whether data generated by the vehicles could be transmitted overseas, or whether embedded software could be exploited to disrupt operations during times of heightened geopolitical tension.
However, Transport Canberra has sought to downplay the allegations. Jeremy Smith, Manager of Transport Canberra, described the claims as largely speculative and driven by media reports rather than verified evidence. He emphasized that the buses currently operating in Australia differ from those examined overseas and do not support full “over-the-air” software update capabilities, which are often cited as a potential pathway for unauthorized remote access.
Smith further stated that the vehicles comply with Australian cybersecurity and safety standards, and that additional safeguards are in place to prevent unauthorized interference. Despite these assurances, the committee-led probe is expected to continue, reflecting growing global concern over the intersection of cybersecurity, critical infrastructure, and foreign-manufactured technology.
The investigation’s findings could influence future procurement decisions and shape Australia’s approach to securing digital components within its expanding electric transport network.
Join our LinkedIn group Information Security Community!
