Senate Intel Vice Chair Pressures Trump on TikTok Strategy

Concerns regarding Oracle’s potential acquisition of TikTok from its parent company, ByteDance, have been amplified following the software company’s two significant data breaches, according to a letter from Senator Mark Warner, Vice Chair of the Senate Intelligence Committee, directed to President Donald Trump. The ongoing discussions about Oracle’s role in TikTok’s future raise alarm bells amid reports that the tech giant has recently suffered notable security incidents.

In Warner’s letter, he highlighted that President Trump’s recent executive order, which grants an extension until June 19 for ByteDance to divest TikTok, not only contradicts existing law but also leaves American users vulnerable to potential manipulation by foreign entities. Warner specifically emphasized the implications of Oracle’s breaches, questioning the company’s ability to secure sensitive user data if it were to manage TikTok.

“The law passed by Congress allowed for only a single extension of no more than 90 days. This additional delay clearly violates that law and exacerbates vulnerabilities to hostile influence operations,” Warner stated. Oracle’s two recent data breaches have drawn scrutiny, particularly as they involve sensitive health records and data from the company’s cloud services, raising doubts about its trustworthiness in handling critical data.

As of January 2024, TikTok faced a legal ban in the United States due to national security concerns related to ByteDance’s operations. The ban went into effect after ByteDance missed a divestiture deadline, resulting in the app’s temporary shutdown. Warner reminded Trump that any management of TikTok by Oracle would require stringent measures to prevent ByteDance’s influence, especially given that recent reports suggest Oracle has provided ByteDance with significant technological access, including to advanced semiconductors.

Warner’s apprehensions are rooted in specific hacking incidents involving Oracle. The company disclosed an unauthorized access breach that impacted Cerner data earlier this year, alongside a separate breach that compromised customers’ login information. These incidents invoke tactics outlined in the MITRE ATT&CK framework, including initial access and credential theft, indicating the potential methods used by adversaries. Concerns also arise over the adequacy of Oracle’s incident response, given its history of denial regarding the extent of breaches amidst corroborating reports.

Despite the pressing nature of these issues, Oracle has not yet commented on Senator Warner’s letter or the recent data breaches reported. Additionally, reports indicate that other companies, including Amazon and Blackstone, are being considered as potential stakeholders for TikTok’s divestiture, complicating the landscape for Oracle’s involvement. As negotiations progress, the relationship between TikTok and U.S. national security interests remains a contentious topic in the broader context of U.S.-China relations.

Amidst the backdrop of escalating tariffs and regulatory scrutiny, Senator Warner has called for greater clarity and responsibility in the ongoing discussions surrounding TikTok’s future. He expressed concern over a process that could potentially be influenced by overarching trade negotiations, urging compliance with legal mandates to ensure the protection of American users from foreign influence.