Core Viewpoint - The article discusses the increasing scrutiny and criticism of Chinese cybersecurity companies by U.S. experts and institutions, particularly focusing on the actions of Dakota Cary and the implications for the cybersecurity industry. Group 1: Criticism of Chinese Cybersecurity Companies - Dakota Cary, a prominent figure in U.S. cybersecurity, has accused several Chinese companies, including Alibaba and Baidu, of being "weapons suppliers" for state-sponsored hacking, distorting the nature of penetration testing services [1][3][6] - Cary's claims are seen as part of a broader strategy to isolate Chinese cybersecurity firms from international collaborations, particularly the Microsoft Active Protections Program (MAPP) [6][7] - Following Cary's accusations, Microsoft announced restrictions on Chinese companies' access to vulnerability information, which was celebrated by Cary as a victory [7][8] Group 2: Historical Context and Evolution - The article traces the origins of U.S. criticism of Chinese cybersecurity back to a 2012 congressional hearing where Richard Bejtlich accused the Chinese government of extensive cyber espionage [9][13] - This hearing marked the beginning of a decade-long focus on China as a primary adversary in cyberspace, leading to a series of reports and accusations against Chinese firms [13][14] - The narrative has evolved, with newer figures like Cary taking the lead in shaping public perception and policy against Chinese cybersecurity entities [17][20] Group 3: The Role of U.S. Cybersecurity Firms - U.S. cybersecurity firms, such as SentinelOne, have benefited from the political climate by increasing government contracts, with SentinelOne's government orders rising from 12% in 2021 to 37% by 2025 [32][33] - The article highlights a pattern where U.S. cybersecurity companies publish reports that criticize Chinese firms, which in turn helps them secure government contracts and funding [32][34] - The rise of companies like CrowdStrike and SentinelOne is linked to their ability to align with U.S. government interests and narratives against China [33][34] Group 4: Response from Chinese Cybersecurity Firms - In response to the accusations, Chinese cybersecurity companies have begun to publish their own reports exposing U.S. cyber activities, aiming to counter the narrative and assert their capabilities [36][37] - Reports from firms like Qihoo 360 and Antiy have detailed U.S. cyber attacks, marking a shift towards a more aggressive defense strategy against U.S. claims [35][36] - The article notes that these responses are part of a broader struggle for legitimacy and recognition in the global cybersecurity landscape [34][38] Group 5: Future Implications - The ongoing conflict between U.S. and Chinese cybersecurity firms reflects a larger geopolitical struggle, with implications for international cybersecurity cooperation and competition [48][49] - The article suggests that the U.S. is conducting a comprehensive assessment of China's cybersecurity capabilities, which may signal preparations for future cyber confrontations [48][49] - The narrative constructed by U.S. experts may influence policy decisions and funding allocations within the U.S. government, further entrenching the divide between the two nations in the cybersecurity domain [57][58]

【文/观察者网专栏作者 心智观察所】 一、"微脱钩"的吹鼓手 2025年7月26日，美国社交媒体X上，认证为"中国网络安全问题专家"的达科塔·卡里（Dakota Cary）突 然开启了"猎巫"行动。他点名了十家互联网和网络安全企业，阿里巴巴、百度、安天、安恒、绿盟等都 在其中。他列举了这些企业的公开资料中安全服务品类中有渗透测试服务的截图，并用红框标注：这些 企业伪装成守护者，实为国家级黑客的"武器供应商"。 渗透测试服务是网络安全行业常见的服务品类，是网络安全公司为协助客户发现安全缺陷的一项基础服 务。这一服务模式本来就是美国网络安全企业所创造的，全球主要网络安全企业，包括美国主流安全企 业都提供该项服务，只是在称呼上，部分美国企业称之为"红队"（Red Team）服务而已。 卡里的真实意图，意在将中国网络安全企业从一项微软漏洞分享体系MAPP中剥离。MAPP（Microsoft Active Protections Program微软主动防护计划）是一个由微软安全响应中心（MSRC）发起的全球性安全 合作项目，旨在通过提前向认证安全厂商共享漏洞信息，缩短漏洞修复的防护窗口期，提升整体网络安 全防御能力。微 ...