Kaspersky Security Concerns
The U.S. government has moved to control the use of Russian created security applications amid concerns of state-sponsored cyber espionage activities.
Department of Homeland Security (DHS) Secretary Elaine Duke has ordered that civilian agencies identify and remove Kaspersky Lab software on their networks.
The directive comes months after the federal General Services Administration, the agency in charge of government purchasing, removed Kaspersky from its list of approved vendors. In doing so, the GSA has indicated that it considers there maybe a vulnerability that could potentially offer unsolicited access to the systems the company protects.
The DHS has notified Kaspersky that it must prove its products are not a security risk or to mitigate the concerns.
“ If Kaspersky want to provide additional information or mitigation strategies, our door is open.” said Christopher Krebs, a senior DHS official in the National Protection and Programs Directorate.
Kaspersky reponse came in a statement made on Wednesday that “it does not have inappropriate ties with any government, which is why no credible evidence has been presented publicly by anyone or any organization to back up the false allegations made against the company. The Russian law requiring assistance does not apply to the company. Kaspersky Lab has never helped, nor will help, any government in the world with its cyber espionage or offensive cyber efforts, and it’s disconcerting that a private company can be considered guilty until proven innocent, due to geopolitical issues,”
Kaspersky comments “The company looks forward to working with DHS, as Kaspersky Lab ardently believes a deeper examination of the company will substantiate that these allegations are without merit.”