Growing concerns about technological dependence are reshaping Europe’s approach to public transportation and cybersecurity. What was once a quiet and efficient sector in Scandinavia is now at the center of a heated debate about national security and digital sovereignty.
Rising alarms over Chinese-built buses
Public transportation operators in Denmark and Norway are confronting a potential security flaw in their electric bus fleets, specifically in vehicles produced by Yutong, the world’s largest bus manufacturer based in Zhengzhou, China. The issue stems from the buses’ ability to receive remote software updates and diagnostic checks — a feature that, while technologically advanced, also raises concerns that the vehicles could be immobilized or manipulated from afar.
Movia, the premier public transportation authority in Denmark, has conceded that this wireless capability could enable an external entity—be it the producer or a cybercriminal—to remotely incapacitate a bus. Jeppe Gaard, Movia’s chief operating officer, clarified that this issue isn’t exclusive to Chinese manufacturers but represents a wider concern linked to the growing digital integration in contemporary vehicles. Both electric cars and buses, he pointed out, are heavily dependent on networked systems that are, theoretically, susceptible to remote access and deactivation.
Since 2019, Movia has integrated over 260 Yutong buses into its operational fleet for Copenhagen and eastern Denmark. Comparable worries were voiced in Norway, where Ruter, a prominent public transport operator, conducted an independent inquiry. The firm executed controlled evaluations of both Yutong and Dutch-manufactured VDL buses within protected, subterranean facilities. The results indicated that while the Dutch models lacked the functionality for remote updates, Yutong retained direct digital connectivity to its vehicles for software enhancements and diagnostics — implying that, at least hypothetically, the buses could be disabled remotely, despite not being capable of remote driving.
China’s reaction and data security guarantees
Yutong has addressed these allegations by asserting its adherence to global standards and underscoring its dedication to data protection and digital security. The company declared that all vehicle-related data within the European Union is safely stored in an Amazon Web Services data facility situated in Frankfurt, Germany. Yutong additionally guaranteed that all retained information is encrypted, safeguarded by stringent access limitations, and cannot be accessed without explicit customer consent.
Despite these assurances, European officials and transportation firms maintain a wary stance. This event has amplified conversations regarding Europe’s increasing reliance on Chinese technology—a connection marked by reciprocal economic advantages yet overshadowed by profound geopolitical suspicion. Beijing’s purported participation in cyber espionage, intellectual property theft, and surveillance operations has prompted numerous European leaders to reevaluate the enduring consequences of their dependence on Chinese providers for essential infrastructure.
A broader European dilemma
The scrutiny surrounding Yutong’s buses is only the latest episode in Europe’s complex technological relationship with China. Across the continent, policymakers are attempting to strike a delicate balance between leveraging China’s advanced manufacturing capabilities and protecting national interests. Recent events — including the Netherlands’ decision to seize control of the Chinese-owned chipmaker Nexperia — have fueled concerns that Europe’s automotive and technology sectors could face major disruptions in the event of diplomatic or trade tensions.
Many administrations have already implemented measures to restrict susceptibility to potential weaknesses. Several European countries, emulating the United States, have purged Huawei and ZTE apparatus from their 5G infrastructure, citing espionage and data manipulation hazards. Currently, focus has shifted to the rapidly expanding sector of Chinese electric vehicles. As per JATO Dynamics, Chinese EVs saw their market penetration in Europe double in early 2025, surpassing 5% — a statistic that underscores both consumer demand and regulatory apprehension.
China, for its part, has dismissed Western fears as unfounded and politically motivated. Earlier this year, a spokesperson for China’s Foreign Ministry criticized U.S. restrictions on Chinese automotive technology, arguing that such measures “overstretch the concept of national security.” Chinese officials maintain that their companies operate transparently and pose no threat to foreign nations.
Western Intelligence Worries
Security experts across Europe, however, remain skeptical. Former MI6 chief Richard Dearlove warned that Western governments are facing a challenge similar to the one posed by Huawei during the 5G rollout. In his view, the increasing prevalence of connected vehicles built by Chinese manufacturers could create new vulnerabilities. He suggested that, in a worst-case scenario, China could theoretically disable fleets of electric vehicles in major cities — a scenario that could disrupt transportation networks during a crisis.
Still, some cybersecurity experts contend that such a situation, though technically possible, is improbable. Ken Munro, the creator of the Anglo-American company Pen Test Partners, pointed out that any vehicle connected to the internet—regardless of whether it’s manufactured by a Western or Chinese firm—inherently carries dangers of distant manipulation. Even prominent names such as Tesla, he clarified, rely on software connections that could be compromised under particular circumstances.
In light of these worries, Ruter has put in place several safeguards, such as improved cybersecurity measures, firewalls, and more rigorous scrutiny of upcoming vehicle purchases. The organization is also collaborating with national agencies to define more precise cybersecurity guidelines for public transportation networks. Nevertheless, specialists are still split on the adequacy of these preventative steps. Munro warned that the sole guaranteed way to eradicate the danger would be to entirely disconnect vehicles from the internet — an action that would simultaneously impede the capacity to carry out essential updates and remote upkeep.
Where groundbreaking ideas meet susceptibility
The discussion emerging in Scandinavia highlights a wider contradiction of the digital era: the very technologies that facilitate efficiency and progress can simultaneously expose systems to novel types of hazards. As urban centers endeavor to update public transit and decrease carbon output via electrification, they are also compelled to confront issues concerning technological autonomy, information confidentiality, and national defense.
Europe’s dependence on Chinese-manufactured parts and programs reaches well beyond its public transportation systems. From its communication grids to its green energy facilities, the continent’s advancement is profoundly linked to China’s industrial framework. As international conflicts escalate, the task for European countries will involve safeguarding their technological autonomy while continuing their journey towards ecological balance and pioneering development.
The controversy surrounding Yutong’s buses has made one thing clear: cybersecurity is now as crucial as clean energy in shaping the future of urban mobility. The issue is not confined to any one country or manufacturer — it represents a defining test for the next phase of Europe’s digital transformation.
In conclusion, as Ken Munro so aptly put it, the core of the discussion centers on a single concept—trust. And in our progressively intertwined global landscape, trust could very well emerge as the most precious and delicate commodity.
