Biden bans Kaspersky: No more sales, updates in US

Blockade begins July 20 on national security grounds as antivirus slinger vows to fight back

by 9SIX

The Biden administration today banned the sale of Kaspersky Lab products and services in the United States, declaring the Russian biz a national security risk.

Commerce Secretary Gina Raimondo announced the crackdown today during a call with reporters. “Russia has shown it has the capacity – and even more than that, the intent – to exploit Russian companies like Kaspersky to collect and weaponize the personal information of Americans,” Raimondo told assembled hacks.

Under the prohibition, Uncle Sam will block the sale of Kaspersky software in the US to new customers beginning July 20 – and also ban the antivirus maker from distributing software updates and malware signatures to existing Stateside customers after September 29.

Raimondo said Kaspersky, based in Moscow, is basically at the mercy of Putin, and with its tools installed all over American computers, the antivirus maker could – ironically enough – be ordered or forced to act as a conduit into those systems by the Kremlin.

In an official statement, the US government revealed that an investigation into the developer found that:

… the company’s continued operations in the United States presented a national security risk — due to the Russian Government’s offensive cyber capabilities and capacity to influence or direct Kaspersky’s operations – that could not be addressed through mitigation measures short of a total prohibition.

Kaspersky, in a lengthy statement to The Register, said it believed the White House “made its decision based on the present geopolitical climate and theoretical concerns, rather than on a comprehensive evaluation of the integrity of Kaspersky’s products and services.”

The antivirus slinger also denied engaging “in activities which threaten US national security,” and said it plans to “pursue all legally available options to preserve its current operations and relationships.” You can read Kaspersky’s entire statement at the bottom of this story.

The move follows a two-year US Department of Commerce probe that found the biz’s products could vacuum up “valuable US business information, including intellectual property,” along with US citizens’ sensitive personal data, and hand it over to the Russian government for “malicious use.”

Technically speaking, Kaspersky Lab Inc., the developer’s US subsidiary, will be forbidden “from directly or indirectly providing antivirus software and cyber security products or services in the United States or to US persons.”

And in addition to that, the Commerce Department’s Bureau of Industry and Security (BIS) added AO Kaspersky Lab and OOO Kaspersky Group in Russia, and the UK’s Kaspersky Labs Ltd, to its Entity List of foreign individuals and organizations deemed to be a national security risk. That will make it difficult to impossible for Americans to do any legal business with the trio as well as the US-based unit.

Those three foreign Kaspersky entities, we’re told, were added for their “cooperation with Russian military and intelligence authorities in support of the Russian Government’s cyber intelligence objectives.”

Long time in the making

Today’s actions by the Biden administration follow earlier moves to kick Kaspersky products out of US government networks.

In 2017, Homeland Security issued a directive requiring federal agencies to remove and discontinue use of Kaspersky products on their IT systems. Shortly after, reports surfaced that Russian government snoops used Kaspersky antivirus software to steal classified material from a PC belonging to an NSA contractor.

In response, Kaspersky Lab offered to open up its source code for third-party review.

A year later, the National Defense Authorization Act (NDAA) for Fiscal Year 2018 prohibited the use of Kaspersky by the Feds.

And in March 2022, shortly after the start of Russia’s illegal invasion of Ukraine, the FCC added Kaspersky products and services to its “list of communications equipment and services that pose a threat to national security.”

Source: theregister

logo lb webp

Copyright @2024 Developed by Plamen Alexandrov

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept