Chairmen Moolenaar, Garbarino Announce Joint Investigation into Airbnb, Anysphere, and the National Security Risks Posed by Chinese AI Models

Today, House Select Committee on China Chairman John Moolenaar (R-MI) and House Committee on Homeland Security Chairman Andrew R. Garbarino (R-NY) announced a joint investigation into the national security and cybersecurity risks posed by the growing adoption of Chinese-developed artificial intelligence models, including low-cost, open-weight, and API-accessible systems developed by Chinese companies such as DeepSeek, Alibaba, Moonshot AI, and MiniMax. 

“Airbnb and Anysphere’s decisions to build their products on Chinese Communist AI models threaten critical infrastructure Americans use every day. The AI models these companies use are trained by China’s censorship regime and introduce hidden vulnerabilities that put Americans’ data and businesses at risk. Chinese AI companies are beholden to Chinese law and could turn over data they collect from Airbnb and Anysphere to the Chinese government if they are asked to do so. Chairman Garbarino and I look forward to hearing from Airbnb and Anysphere as we investigate what they have done, and we will continue to work together to protect the American people from CCP threats,” said Chairman John Moolenaar.

“The Chinese Communist Party is trying to turn America’s AI breakthroughs into Beijing’s strategic advantage. Through adversarial model distillation and the rapid global distribution of PRC-developed models, China is working to undercut U.S. leadership, weaken trusted American alternatives, and embed CCP-aligned technology across the software supply chains our economy and national security depend on. American companies cannot afford to treat Chinese AI as a cheap and convenient tool when the consequences may include exposed data, compromised systems, and long-term dependence on adversary-controlled technology. I am proud to partner with Chairman Moolenaar on this investigation to better understand how these models are being adopted in the United States and what steps are needed to secure American innovation and protect our national security,” said Chairman Andrew Garbarino.

The investigation comes amid growing concern that China-based AI companies are using unauthorized model distillation and other illicit techniques to extract capabilities from leading American frontier models, then repackaging those capabilities into lower-cost models without the same safeguards included in the original American models, which are then marketed or made available to U.S. companies, developers, and consumers. While model distillation can be a legitimate AI development technique, distillation conducted through fraudulent accounts, proxy networks, evasion of access restrictions, or violations of U.S. companies’ terms of service raises serious concerns about model provenance, intellectual property, cybersecurity, and supply-chain risk.

As an initial step in the probe, the Chairmen sent letters to Anysphere and Airbnb, raising concerns about the companies’ use of or exposure to these risks through Chinese-developed AI. The letters also follow an April 2026 memo from the White House Office of Science and Technology Policy warning that foreign entities, primarily based in China, are conducting deliberate, industrial-scale campaigns to distill U.S. frontier AI systems through proxy accounts and other coordinated methods.

In the letter to Anysphere, the Chairmen focus on Cursor’s Composer 2 model, which was reportedly built on an open-weight model developed by Moonshot AI, one of the China-based companies publicly implicated in large-scale distillation campaigns targeting American AI systems. 

In the letter to Anysphere, the Chairmen write, “The billions of dollars American companies invest in foundational research, compute infrastructure, and security engineering is being undercut by a sustained extraction campaign conducted at a fraction of the cost of independent development. This threat is not limited to commercial harm. American frontier AI laboratories invest heavily in security testing and in building guardrails designed to prevent their models from being used to develop weapons, automate software vulnerability discovery and exploitation, generate tailored disinformation, or assist in the synthesis of dangerous chemical or biological agents. When capabilities are stripped out through distillation and repackaged without equivalent safeguards, the resulting models may become available to hostile state actors, terrorist organizations, and criminal enterprises.” 

The Chairmen conclude, “These issues are unfolding against a broader and accelerating strategic shift. PRC-developed open-weight AI models have experienced rapid global adoption. In late 2024, PRC models reportedly accounted for an estimated one percent of global AI workloads. By the end of 2025, that share had reportedly grown to an estimated 30 percent. PRC-developed models also have been reported to exhibit censorship aligned with Chinese Communist Party (CCP) positions on politically sensitive topics, and federal testing has found that leading PRC models echoed CCP-approved narratives at rates far exceeding comparable American systems. Beijing has been explicit in its view that the global distribution of open-weight AI serves PRC strategic interests. What is at issue, therefore, is not simply market competition, but the growing risk that software systems used across the American economy, government, and defense industrial base will come to depend on models developed by PRC-linked laboratories and shaped by PRC strategic objectives.” 

Read the full letter here. 

In a separate letter to Airbnb, the Chairmen request additional information regarding the company’s reliance on an AI model developed by a China-based company, Alibaba, for customer service operations. The Chairmen raise concerns about the company’s preference for Chinese-developed technology, which could present serious security implications for their consumers and the integrity of their systems.

In the letter to Airbnb, the Chairmen write, “[Airbnb] recently stated publicly that Airbnb is relying on Qwen over American alternatives because it is ‘fast and cheap.’ The Committees have serious concerns about the national security and data-security implications of that approach for Airbnb’s American customers and for the integrity of its systems.” 

The Chairmen conclude, “The spread of Chinese open-weight AI models carries consequences well beyond ordinary software adoption preferences. As witnesses warned in the House Committee on Homeland Security’s March 17, 2026, hearing on PRC AI and robotics, technologies developed inside “adversary-controlled technology ecosystems” can introduce risks including “potential surveillance, exposure of sensitive operational data, and persistent access to critical infrastructure systems.” American firms adopting these models are not simply choosing a cheaper tool, they are importing an architecture designed to serve the Chinese state…Passive reliance on PRC-origin AI is not a neutral commercial decision but a national security choice with consequences extending well beyond any single company's bottom line.” 

Read the full letter here. 

Background: 

In December 2025, Chairmen Moolenaar and Garbarino, along with other congressional Republicans, sent a letter to the Department of War, urging it to list Deepseek, Gotion, Unitree, Wuxi, and 13 other companies as Chinese military companies, thereby restricting the Department’s ability to contract with them. The Chairmen also joined House Republicans in November 2025 in sending a letter to Secretary of Commerce Howard Lutnick, recommending an investigation of products developed by known adversaries in critical and emerging industries, warning that China leverages their innovations as instruments of state influence.