Sign Up
All SecurityCyber-crimePatchesResearchCSO
All Off-PremEdge + IoTChannelPaaS + IaaSSaaS
All On-PremSystemsStorageNetworksHPCPersonal TechCxOPublic Sector
All SoftwareAI + MLApplicationsDatabasesDevOpsOSesVirtualization
All OffbeatDebatesColumnistsScienceGeek's GuideBOFHLegalBootnotesSite NewsAbout Us

Security

Uncle Sam says 'nyet' to Kaspersky amid fresh claims of Russian ties

Security biz maintains it has no 'inappropriate ties' with Kremlin as software blocked by officials

Shaun Nichols in San Francisco Tue 11 Jul 2017  //  23:29 UTC

Kaspersky Lab is facing new restrictions from the US government to go along with a fresh round of accusations that the antivirus makers works closely with Russian intelligence.

The US General Services Administration (GSA), the agency that handles government IT purchases and subscriptions, has removed the Russian software slinger from its list of approved suppliers for government contracts. That means Uncle Sam's IT bods can't officially order and install copies of the anti-malware suite, dealing a humiliating blow to the Moscow-based biz.

"After review and careful consideration, the General Services Administration made the decision to remove Kaspersky Lab-manufactured products from GSA IT Schedule 70 and GSA Schedule 67 – Photographic Equipment and Related Supplies and Services," a GSA spokesperson told The Register today.

"GSA's priorities are to ensure the integrity and security of US government systems and networks and evaluate products and services available on our contracts using supply chain risk management processes."

While not outright banned from use by the government, the move does make Kaspersky products way more difficult for agencies to obtain, effectively freezing the technology out of offices. Members of the US Senate had previously called for an even stronger ban on Kaspersky products from government offices.

The GSA decision comes amid speculation that the Russia-headquartered Kaspersky Lab was working closely with the Kremlin and Russian police in their intelligence and law-enforcement efforts – something Kaspersky has soundly denied. Earlier this month, the vendor offered to open up its source code to investigators to prove its software was not stealing information for Moscow.

Still, stories of Kaspersky's ties to Russia persist. Earlier today Bloomberg reported that the company was not only working closely with Russia's FSB, but had taken the cooperation to the level of accompanying agents on raids. The story goes on to reference a 2009 email from CEO and namesake Eugene Kaspersky to an employee, referencing what is said to be a "big project" on behalf of the FSB.

"In the internal communications referenced within the recent article, the facts are once again either being misinterpreted or manipulated to fit the agenda of certain individuals desperately wanting there to be inappropriate ties between the company, its CEO and the Russian government, but no matter what communication they claim to have, the facts clearly remain there is no evidence because no such inappropriate ties exist," Kaspersky said in its response to the aforementioned explosive story. ®
Send us news
46 Comments

US government excoriates Microsoft for 'avoidable errors' but keeps paying for its products

In what other sphere does a bad supplier not feel pain for its foulups?

OpenAI's GPT-4 can exploit real vulnerabilities by reading security advisories

While some other LLMs appear to flat-out suck

H-1B visa fraud alive and well amid efforts to crack down on abuse

It's the gold ticket favored by foreign techies – and IT giants suspected of gaming the system

Kremlin's Sandworm blamed for cyberattacks on US, European water utilities

Water tank overflowed during one system malfunction, says Mandiant

Rust developers at Google are twice as productive as C++ teams

Code shines up nicely in production, says Chocolate Factory's Bergstrom

Microsoft squashes SmartScreen security bypass bug exploited in the wild

Plus: Adobe, SAP, Fortinet, VMware, Cisco issue pressing updates

French issue <em>alerte rouge</em> after local governments knocked offline by cyber attack

Embarrassing, as its officials are in the US to discuss Olympics cyber threats

Microsoft slammed for lax security that led to China's cyber-raid on Exchange Online

CISA calls for 'fundamental, security-focused reforms' to happen ASAP, delaying work on other software

Feds probe alleged classified US govt data theft and leak

State Dept keeps schtum 'for security reasons'

Japanese government rejects Yahoo<i>!</i> infosec improvement plan

Just doesn't believe it will sort out the mess that saw data leak from LINE messaging app

It's 2024 and Intel silicon is still haunted by data-spilling Spectre

Go, go InSpectre Gadget

Zero-day exploited right now in Palo Alto Networks' GlobalProtect gateways

Out of the PAN-OS and into the firewall, a Python backdoor this way comes