Mounting worries regarding reliance on technology are transforming Europe’s strategy for public transit and digital security. A sector that was previously calm and effective in Scandinavia is now the focal point of an intense discussion concerning national defense and digital autonomy.
Growing concerns regarding Chinese-manufactured buses
Public transport providers in Denmark and Norway are facing a possible security vulnerability within their electric bus fleets, particularly in vehicles manufactured by Yutong, the globe’s leading bus producer headquartered in Zhengzhou, China. The problem arises from the buses’ capacity to accept remote software updates and perform diagnostic assessments – a functionality that, despite its technological sophistication, also sparks worries that the vehicles could be disabled or controlled remotely.
Movia, the premier public transportation authority in Denmark, has conceded that this wireless capability could enable an external entity—be it the producer or a cybercriminal—to remotely incapacitate a bus. Jeppe Gaard, Movia’s chief operating officer, clarified that this issue isn’t exclusive to Chinese manufacturers but represents a wider concern linked to the growing digital integration in contemporary vehicles. Both electric cars and buses, he pointed out, are heavily dependent on networked systems that are, theoretically, susceptible to remote access and deactivation.
Since 2019, Movia has integrated over 260 Yutong buses into its operational fleet for Copenhagen and eastern Denmark. Comparable worries were voiced in Norway, where Ruter, a prominent public transport operator, conducted an independent inquiry. The firm executed controlled evaluations of both Yutong and Dutch-manufactured VDL buses within protected, subterranean facilities. The results indicated that while the Dutch models lacked the functionality for remote updates, Yutong retained direct digital connectivity to its vehicles for software enhancements and diagnostics — implying that, at least hypothetically, the buses could be disabled remotely, despite not being capable of remote driving.
China’s response and data protection assurances
Yutong has addressed these allegations by asserting its adherence to global standards and underscoring its dedication to data protection and digital security. The company declared that all vehicle-related data within the European Union is safely stored in an Amazon Web Services data facility situated in Frankfurt, Germany. Yutong additionally guaranteed that all retained information is encrypted, safeguarded by stringent access limitations, and cannot be accessed without explicit customer consent.
Despite these assurances, European officials and transportation firms maintain a wary stance. This event has amplified conversations regarding Europe’s increasing reliance on Chinese technology—a connection marked by reciprocal economic advantages yet overshadowed by profound geopolitical suspicion. Beijing’s purported participation in cyber espionage, intellectual property theft, and surveillance operations has prompted numerous European leaders to reevaluate the enduring consequences of their dependence on Chinese providers for essential infrastructure.
A broader European dilemma
The examination of Yutong’s buses represents just one recent chapter in Europe’s intricate technological ties with China. Throughout the continent, political leaders are striving to achieve a careful equilibrium: harnessing China’s sophisticated production prowess while simultaneously safeguarding national interests. Recent occurrences, such as the Netherlands’ move to take over the Chinese-owned chip manufacturer Nexperia, have intensified worries that Europe’s automotive and tech industries might encounter significant disturbances should diplomatic or commercial disputes arise.
Many administrations have already implemented measures to restrict susceptibility to potential weaknesses. Several European countries, emulating the United States, have purged Huawei and ZTE apparatus from their 5G infrastructure, citing espionage and data manipulation hazards. Currently, focus has shifted to the rapidly expanding sector of Chinese electric vehicles. As per JATO Dynamics, Chinese EVs saw their market penetration in Europe double in early 2025, surpassing 5% — a statistic that underscores both consumer demand and regulatory apprehension.
China, for its part, has dismissed Western fears as unfounded and politically motivated. Earlier this year, a spokesperson for China’s Foreign Ministry criticized U.S. restrictions on Chinese automotive technology, arguing that such measures “overstretch the concept of national security.” Chinese officials maintain that their companies operate transparently and pose no threat to foreign nations.
Western Intelligence Worries
Security experts across Europe, however, remain skeptical. Former MI6 chief Richard Dearlove warned that Western governments are facing a challenge similar to the one posed by Huawei during the 5G rollout. In his view, the increasing prevalence of connected vehicles built by Chinese manufacturers could create new vulnerabilities. He suggested that, in a worst-case scenario, China could theoretically disable fleets of electric vehicles in major cities — a scenario that could disrupt transportation networks during a crisis.
Still, some cybersecurity professionals argue that such a scenario, while technically feasible, is unlikely. Ken Munro, founder of the British-American firm Pen Test Partners, noted that any internet-connected vehicle — whether produced by a Western or Chinese company — carries inherent risks of remote interference. Even well-known brands like Tesla, he explained, depend on software connectivity that could be exploited under specific conditions.
In response to these concerns, Ruter has implemented a series of protective measures, including enhanced cybersecurity protocols, firewalls, and stricter oversight of future vehicle acquisitions. The company is also working with national authorities to establish clearer cybersecurity standards for public transport systems. However, experts remain divided on whether such precautions are sufficient. Munro cautioned that the only foolproof method to eliminate the risk would be to completely remove online connectivity from vehicles — a move that would also hinder the ability to perform critical updates and maintenance remotely.
Where groundbreaking ideas meet susceptibility
The discussion emerging in Scandinavia highlights a wider contradiction of the digital era: the very technologies that facilitate efficiency and progress can simultaneously expose systems to novel types of hazards. As urban centers endeavor to update public transit and decrease carbon output via electrification, they are also compelled to confront issues concerning technological autonomy, information confidentiality, and national defense.
Europe’s reliance on Chinese-made components and software extends far beyond public transport. From communication networks to renewable energy infrastructure, the continent’s modernization is deeply intertwined with China’s industrial ecosystem. As global tensions rise, the challenge for European nations will be to secure their technological independence without stalling their progress toward sustainability and innovation.
The controversy surrounding Yutong’s buses has made one thing clear: cybersecurity is now as crucial as clean energy in shaping the future of urban mobility. The issue is not confined to any one country or manufacturer — it represents a defining test for the next phase of Europe’s digital transformation.
In the end, as Ken Munro aptly summarized, the debate boils down to one word — trust. And in an increasingly interconnected world, trust may prove to be the most valuable and fragile asset of all.
