Security

UK government bans all Russian anti-virus software from Secret-rated systems

Starts talks with Kaspersky to 'prevent the transfer of UK data to the Russian state'

By Simon Sharwood

98 SHARE

The United Kingdom's National Cyber Security Centre has effectively banned the use of Russian anti-virus products from government departments and revealed it is trying to “prevent the transfer of UK data to the Russian state” from Kaspersky Labs software.

A guidance note published last Friday and distributed to permanent secretaries of government departments, addressed “The issue of supply chain risk in cloud-based products, including anti-virus (AV) software” and explained “how departments should approach the issue of foreign ownership of AV suppliers.”

The advice is simple:

“… where it is assessed that access to the information by the Russian state would be a risk to national security, a Russia-based AV company should not be chosen. In practical terms, this means that for systems processing information classified SECRET and above, a Russia-based provider should never be used.”

The guidance stated that its decision “will also apply to some Official tier systems as well, for a small number of departments which deal extensively with national security and related matters of foreign policy, international negotiations, defence and other sensitive information.”

The letter added that the National Cyber Security Centre is “in discussions with Kaspersky Lab … about whether we can develop a framework that we and others can independently verify, which would give the Government assurance about the security of their involvement in the wider UK market.”

“In particular we are seeking verifiable measures to prevent the transfer of UK data to the Russian state.”

The guidance continued: “We will be transparent about the outcome of those discussions with Kaspersky Lab and we will adjust our guidance if necessary in the light of any conclusions.”

The guidance quickly caused other problems for Kaspersky's UK outfit, as British banking giant Barclays has written to customers to advise it's discontinuing an offer of free Kaspersky software for users of its online banking services.

The letter, shared with The Register by a reader explains the decision as follows:

The UK Government has been advised by the National Cyber Security Centre to remove any Russian products from all highly sensitive systems classified as secret or above.

We've made the precautionary decision to no longer offer Kaspersky software to new users, however there's nothing to suggest customers need to stop using Kaspersky.

The letter said customers need take no action and should ensure they run AV software.

Kaspersky Lab said, in a statement sent to The Register, that it "appreciates the collaborative, risk management-based approach taken by the NCSC with regards to identifying and mitigating any potential information security risks involved in the sourcing of IT products."

"Kaspersky Lab fully agrees that supply chain risk management is critical to information security, and therefore, we look forward to continuing our dialogue with the NCSC to develop a framework that can independently verify and provide assurance of the integrity of Kaspersky Lab’s products and services."

We have also sought comment regarding Barclays' actions and will update this story if further information becomes available. ®

Sign up to our NewsletterGet IT in your inbox daily

98 Comments

More from The Register

NSA dev in the clink for 5.5 years after letting Kaspersky, allegedly Russia slurp US exploits

Bloke sent down after spilling Uncle Sam's cyber-weapons

We're Putin our foot down! DHS, FBI blame Russia for ongoing infrastructure hacks

Alert adds detail to 'Dragonfly' cyber-attack disclosed last year

NSA boss: Trump won't pull trigger for Russia election hack retaliation

And Uncle Sam's limp-cock response means Putin will keep on meddling with our affairs

Spotted: Miscreants use pilfered NSA hacking tools to pwn boxes in nuke, aerospace worlds

High-value servers targeted by cyber-weapons dumped online by Shadow Brokers

30 spies dead after Iran cracked CIA comms network with, er, Google search – new claim

Uncle Sam's snoops got sloppy with online chat, it seems

Hua-no-wei! NSA, FBI, CIA bosses put Chinese mobe makers on blast

No probs, says Huawei: It's a big world, we don't need America

WikiLeaks drama alert: CIA forged digital certs imitating Kaspersky Lab

Vault 8 release says spooks used disguise to siphon off data

FBI fingers North Korea for two malware strains

'Joanap' and 'Brambul' harvest info about your systems and send it home

Russian malware harvesting Telegram Desktop creds, chats

Python programmer may have outed himself on YouTube

That Saudi oil and gas plant that got hacked. You'll never guess who could... OK, it's Russia

FireEye reckons it's fingered the miscreants behind nasty cyber-infection at industrial complex