Kaspersky Named First Russian Company on Security Risk List (bloomberg.com) 62
The U.S. placed internet-security provider AO Kaspersky Lab on a list of companies deemed a threat to national security, for the first time adding a Russian entity to a list dominated by Chinese telecommunications firms. Bloomberg reports: The Federal Communications Commission on Friday also added China Telecom (Americas) Corp, and China Mobile International USA Inc. to the list. Once a company is on the list, federal subsidies can't be used to purchase its equipment or services. The action is part of the FCC's efforts to "strengthen America's communications networks against national security threats," Jessica Rosenworcel, the agency's chairwoman, said in a news release.
Kaspersky is a well known provider of anti-virus software, and has conducted investigations into a range of nation-state hacking incidents. It calls itself the world's largest privately-owned cybersecurity company on its website. It says it protects over 400 million users and 240,000 companies. [...] For Friday's update of the list, the FCC said it relied on findings by the Department of Homeland Security and an executive branch interagency body called the Committee for the Assessment of Foreign Participation in the United States Telecommunications Services Sector.
Kaspersky is a well known provider of anti-virus software, and has conducted investigations into a range of nation-state hacking incidents. It calls itself the world's largest privately-owned cybersecurity company on its website. It says it protects over 400 million users and 240,000 companies. [...] For Friday's update of the list, the FCC said it relied on findings by the Department of Homeland Security and an executive branch interagency body called the Committee for the Assessment of Foreign Participation in the United States Telecommunications Services Sector.
Again? (Score:2)
Re: (Score:1)
caught at what? Kaspersky never has been found guilty of wrongdoing and its source code is open for review by governments and regulators. What Kaspersky has done is uncovered malware attacks made by USA, UK, Israel.. that's why USA government keeps harping how evil it is.
Re: (Score:2)
Not "found guilty" in no way means innocent.
It just means that you got away with it, this time.
Re: (Score:1)
well some are convinced it's not so stupid. and if it were stupid they would not be on said list. unless you believe the us government has done a stupid thing doing so. and just because they haven't been charged with a crime does not mean they have done nothing wrong.
Re: (Score:2)
>well some are convinced it's not so stupid. and if it were stupid they would not be on said list
It only counts if they publish their evidence. Otherwise it's indistinguishable from reacting to being butthurt about being outed by Kaspersky.
Re: (Score:1)
i've always wondered how do you go about publishing a system log or a scan log or the like? take away sensitive info, which is most of it.... you can't distinguish one report from another. and i'm under the impression that most legal evidence is privileged info where we go by the published opinions of the lawyers and judges rather than a general release of sensitive data.
Re: (Score:2)
Yeah, I was wondering this too. Also, wasn't Kaspersky already on some kind of US government restriction list?
Re: (Score:2)
Yes, basically Kaspersky products were banned on all US gov't PCs (& US contractors PCs).
That was slightly before the covid pandemic. But I didn't take it off my personal PC then, because I wasn't a US gov't worker or contractor, and their AV product is quite superior to Microsoft's built-in product. There have been rumors going back a decade of Kaspersky doing "favors" for Russian intelligence agencies, but that could have also been the malign gossip of AV competitors, who are all either comatose and
Re: (Score:2)
Here is a current list of Kaspersky vulnerabilities [cvedetails.com]
So, are you just saying that they are incompetent
Frankly speaking, it is idiotic to use a security software developed by an employee of a security service of a nation we are at war with
Re: (Score:2)
Ordinary citizens often work in key infrastructure and can be a means to gain access to that infrastructure
imo, MY big brother protects me, or at the very worst ignores me, while the russian big brother throws me out of windows
Re: Again? (Score:1)
Re: (Score:1)
Wrong and ignorant, U.S. government agencies spy on civilians, commit crimes of incitement and false flags and evidence planting.
Re: (Score:2)
Yes, with the US government handing over excruciating details of every person who's applied to be a federal employee or US contractor to the (Chinese) MSS (and probably every engineering detail of the F22 and F35), why bother worrying about what the Russians are going to do to your personal data?
Re: (Score:1)
No, you are incompetent and don't know how to use CVE list links to see the patches Kaspersky made to those CVE.
Let's pick one.
Problem:
https://www.cvedetails.com/cve... [cvedetails.com]
Patch (linked in the problem)
https://support.kaspersky.com/... [kaspersky.com]
You're either ignorant or some kind of agenda driven mole
Re: (Score:1)
them and william barr.
Re: (Score:1)
Its economic warfare (Score:1)
Re: (Score:3)
This is about destroying any independent non western tech company in Russia. Even companies like Kaspersky which are anti Putin are being sanctioned. When Russia and Ukraine fight, US tech firms get cheap refugee Ukrainian and Russian engineers to build Silicon Valley's products instead of building competing products.
My word, Trump really was playing 5D-chess the entire time. Project STABLE GENIUS has been a complete success.
Re: (Score:1)
This is about destroying any independent non western tech company in Russia. Even companies like Kaspersky which are anti Putin are being sanctioned. When Russia and Ukraine fight, US tech firms get cheap refugee Ukrainian and Russian engineers to build Silicon Valley's products instead of building competing products.
My word, Trump really was playing 5D-chess the entire time. Project STABLE GENIUS has been a complete success.
Trump would be the US president under whom Russia didn't invade Ukraine.
Obama and Biden would be the presidents under which Russia did invade Ukraine.
No amount of internet snarking can change those facts.
Re: (Score:2)
Russia has a lot of cool stuff (Score:2)
Re: Its economic warfare (Score:1)
Re: (Score:2)
If they were really anti-Putin, they would have moved to Dublin long time ago.
This so much. There are so many neutral countries that they could have moved to without having to align themselves with America. They didn't even need to move all their people out, just a few computers and administrators sufficient to ensure that they knew and could prove exactly what was being sent to customer's systems so that if any of their Russian employees were compromised by the Russian secret services they would at least have an audit trail.
Re: (Score:2)
Now we see what the Ukraine hoopla is all about. US kept arming and training Ukraine and Putin fell into the trap. This is about destroying any independent non western tech company in Russia.
You do realize that they could have sanctioned Russian tech companies without a war, right? The pipeline hack gave them all the justification they need.
As far as starting the war, only Putin and his allies are responsible for that.
Obviously (Score:3)
The NSA absolutely hates Kaspersky sabotaging their spying.
Re: (Score:2)
Agreed. However, Kaspersky is in Russia, Putin has absolute power there, and there's no way to know if he has insisted that the software be used to hijack foreign computers or not. If this was a Chinese company, so many people would instantly be wary, but Putin is just as devious and probably more brutal yet people outside of the intelligence service rarely saw Russia as a threat.
Re: (Score:2)
Well, yes. The fact of the matter is that most likely every AV company of sufficient size is compromised in some way. That said, Kaspersky always has been under close scrutiny because they are Russian. So they may get coerced, but chances are anything bad they do will be discovered pretty fast. Not so with the companies compromised by US intelligence.
Re: (Score:2)
lol nice deflection
when faced with obvious flaws, just claim that everybody else does it
Re: (Score:2)
Pointing out relevant facts is not "deflection".
Re: (Score:2)
facts =/= opinion
you offer opinion
Re: (Score:2)
Nope. I summarize observations. That _you_ cannot see the difference is not a surprise though.
Re: (Score:2)
Sure buddy
>> The fact of the matter is that most likely every AV company of sufficient size is compromised in some way.
Just because you use the word "fact" in your statement does not make it factual. You are simply using whataboutism [wikipedia.org] to DEFLECT away from the idea that Kaspersky software should not be trusted while Russia is actively attacking countries with cyber-attacks (oh yeah tanks, planes and missiles as well).
>>Kaspersky always has been under close scrutiny because they are Russian. So the
Re: (Score:2)
So they may get coerced, but chances are anything bad they do will be discovered pretty fast.
AV software phones home for things like signature updates. Given that Kaspersky controls the update infrastructure this means that they can do targeted attacks which will only be visible on the specific machine attacked and so almost impossible to detect unless they are very unlucky about which target they go for.
Re: (Score:2)
So they may get coerced, but chances are anything bad they do will be discovered pretty fast.
AV software phones home for things like signature updates. Given that Kaspersky controls the update infrastructure this means that they can do targeted attacks which will only be visible on the specific machine attacked and so almost impossible to detect unless they are very unlucky about which target they go for.
That is not how things work.
Re: (Score:2)
again, opinion and deflection
Re: (Score:2)
Nope.
Re: (Score:2)
Are you claiming that Anti-Virus software does not contact a company server for periodic virus signature downloads, and software updates?
Or, are you suggesting that the antivirus could not download and install malware during the prior two activities?
Re: Obviously (Score:1)
Re: (Score:2)
So, if Kaspersky detects some NSA malware that would be bad for their business? How does that work? I think the very opposite is the case. As to catching attackers, that is their business. And AV is supposed to find malware by _all_ attackers.
Re: Obviously (Score:1)
Re: (Score:2)
Am not convinced Kaspersky is actively working with the Russian government to spy on the rest.
There have been a few examples of Kaspersky getting fined or it's staff getting arrested in Russia as well.
https://www.forbes.com/sites/t... [forbes.com]
http://www.rapsinews.com/judic... [rapsinews.com]
And I understand it's back end data processing has shifted out of Russia.
https://gulfbusiness.com/kaspe... [gulfbusiness.com]
Seems very unlike other companies which are closely associated with Russian government.
Anyway, I have always told people who asked recommen
Re: (Score:2)
There is also the problem that spying would be blatantly obvious. Sure, AV searches everything. But it only phones home if it finds malware it does not have a signature for. And typically, it asks the user for permission. From the size of that transfer and from the malware then getting a signature, you can pretty reliably find out whether anything besides that malware sample was transferred. There is more, but the bottom line is that AV software is only suitable for spying is the vendor is willing to sacrif
I uninstalled about a week ago (Score:2)
They'll almost certainly do nothing wrong and their AV is easily the best for low-end computers (better than Defender).
But Russia thinks it's at war with the West. Security is about safety after all.
I'll reinstall when everything dies down in a year or so.
Re: (Score:2)
There is no way for a company in Russia to not do FSB bidding. Esp. given this company's size, reach and specialization. (It would be difficult in any other country, but absolutely impossible in Russia). No one in Russia is in any position of power/money/value unless they are intimately connected to the security services.
Re: (Score:2)
With that logic and by those standards you should stop using anything made in China, ie. basically all electronics.
It's the same reason western nations are hesitant to roll out 5G infrastructure operating on hardware and software developed by Huawei.
Re: I uninstalled about a week ago (Score:1)
Re: (Score:2)
This. Kaspersky has long struggled to be independent and fair, and has long stood as probably the best antivirus software on the market in terms of protecting against all threats. The problem is that as Russia has become more authoritarian, they can't really resist the influence of the Kremlin anymore. You can't trust any company from Russia at this point, because anyone who doesn't play along with Putin winds up accidentally falling off a balcony.
Kaspersky (Score:1)
Re: (Score:2)
Try Malwarebytes instead, you can even throw a free copy of f-prot on afterwards to keep it buttoned up
oh darn... (Score:2)
At least until now we had a choice - who we'd allow to have a backdoor on our computer, the NSA or the FSB.
Not a smart idea (Score:2)
Same goes for other software from
I was suspicious (Score:2)
,,,ever since it offered to de-Nazify my computer.