Germany Warns Kaspersky Software Risks Being Exploited by Russia

Germany warned against using anti-virus software from Moscow-based Kaspersky Lab due to risks it could be exploited by Russia for a cyber attack. From a report: The Federal Office for Information Security, or BSI, issued the warning on Tuesday, saying that companies and authorities with special security status and operators of critical infrastructure could be "particularly at risk." The danger has increased since Russia's invasion of Ukraine, the Bonn-based agency said in a press release, citing threats made by Moscow against NATO, the European Union and Germany. In 2017, the U.S. government banned all use of Kaspersky Lab software in federal information systems, citing concerns about the firm's links to the Russian government and espionage. The company denied any wrongdoing in that case and pushed back against Germany's move now.

I like Kaspersky software

[wakeboarder]

I used it years ago and I thought they made a good product. However, they might not have a choice when the KGB comes knocking at their door and threatens Kaspersky to do whatever the KGB wants. So I'm going to have to agree with germany on this one.

Re: I like Kaspersky software

[ThurstonMoore]

I uninstalled it right after Russia attacked Ukraine.

Re:

[Darinbob]

In 2014?

Re:

[WankerWeasel]

The potential for them to be exploited by the KGB has been there since the start and it'd be foolish to believe a company based in the country hasn't been long ago.

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[detritus.]

Kaspersky's software was so good it quarantined and uploaded all the NSA zero-day exploits a contractor lifted and brought home with him, which is why the US is so hysterical about it. I'll bet every US-based antivirus vendor whitelists them unconditionally.

Re: I like Kaspersky software

[sphere]

Kaspersky is going to do whatever Putin wants. Think about that.

Re:

[detritus.]

US AV firms are going to do whatever Defense Production Act and Biden wants. Think about that.

But US firms don't even need that, their consent is manufactured voluntarily, same propaganda you're clearly susceptible to.

Re:

[AmiMoJo]

What is the alternative though? If you are worried about attacks by state level actors you have to rule out all the Chinese and American ones. Then filter out the ones that are crapware or sell your internet history (e.g. Avast), and that leaves you with... F-Secure?

Re: I like Kaspersky software

[NagrothAgain]

At least in theory, a US based company cannot be compelled by the CIA, NSA, etc. to plant backdoors or do other nasty things. And in general, the workers don't have to worry about about disappearing, or their families being sent to a labor camp, if they tell the government to fuck off.

But in reality nobody in Russia (or elsewhere) has to worry about the KGB. (You should probably avoid pissing off the FSB though.)

Re:

[wakeboarder]

No, but I suspect that the CIA or NSA just plants 'moles' in US companies to plant exploits.

Re:

[AmiMoJo]

Not even with a National Security Letter?

In any case, the NSA loves hacking US companies. Wouldn't trust British either.

Re:

[Local ID10T]

Not even with a National Security Letter?

You bring this idea up a lot. That is not how a National Security Letter works.

A National Security Letter compels an organization to turn over information that is has, and not tell anyone that it has done so. It is essentially a subpoena with a gag order attached.

Re:

[fafalone]

A US judge ordered a "no logging" company to start logging all their user's activity just so they could turn it over in a copyright spat with the recording industry. I don't know what hope companies have when agents coming knocking with a FISA court order with gag provisions. The Supreme Court just reaffirmed all the government has to do is say the magic word "National Security", and it doesn't even matter if everybody already knows what they're trying to protect. If they defied a court's gag order, they're

Re:

[wakeboarder]

If I live in north America I am much less worried about being attacked by a country in north america than I am a country (russia) that has actively cyber attacked and runs bot networks in western countries.

I used to love avira, a good German company that made a great product with a low profile, until they got bought out. I still use them but I'm looking for another alternative.

Re:

[quantaman]

What is the alternative though? If you are worried about attacks by state level actors you have to rule out all the Chinese and American ones. Then filter out the ones that are crapware or sell your internet history (e.g. Avast), and that leaves you with... F-Secure?

US companies are less likely to be asked by their government, and they're more likely to push back. Though it probably still happens though not so much to individuals/companies in the West.

But in Russia? The Russian government has zero qualms about forcing companies to do unethical things on behalf of the government.

Frankly, I suspect the only reason that Kapersky hasn't been forced to install a backdoor or something is that the Russian government has realized that it's a one-time play and then the company

Re:

[Midnight_Falcon]

The difference for corporations (rather than individuals) is liability. If you're a CISO and you went with Kaspersky, despite it being an outdated product not competitive with USA options on Gartner such as Microsoft and CrowdStrike, and then you get breached because of this -- that's your fault. You can be sued easily for data breaches etc from there. If you went with made-in-USA CrowdStrike and then the NSA hacked you, who's getting sued in what court? You think CMS is going to sue for HIPAA violatio

Re:

[UpnAtom]

Current events aside, I think it's still the best free AV. I'm here reading comments to help me make a decision.

Can we just stop Kaspersky updating anything other than malware definitions?

Or just go with Defender for a bit.

Re:

[quantaman]

Current events aside, I think it's still the best free AV. I'm here reading comments to help me make a decision.

Can we just stop Kaspersky updating anything other than malware definitions?

Or just go with Defender for a bit.

Are you doing regular backups?

If Moscow is looking to retaliate against sanctions then encrypting the hard-drives of millions of Kapersky users is one way they could do it.

Re:

[UpnAtom]

Are you doing regular backups?

What do you think? LOL

Though my important stuff is on Dropbox, GMail etc.

It's great advice though and I'll see what more I can do.

Re:

[UpnAtom]

Kaspersky announced a new version today from within the app. Says nothing about opposing potential Putin demands for malware. Think I'm going to uninstall.

https://usa.kaspersky.com/free... [kaspersky.com]

Time to move company out of russia?

[Tora]

Perhaps for the future of their company it'd be wise to move out of Russia.

Re:

[MaxRockatansky]

And change the name

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[WankerWeasel]

Hard to quickly move 4000+ employees out of the country. Would take quite a bit of time. Also quite a massive resource commitment to replace them (ignoring the negative impacts of laying off so many left there). Not sure what the ideal solution is, but none of them are great.

Re:

[Ilgaz]

They moved the HQ to Switzerland. It isn't enough, Kaspersky needs to open the source and switch to Apache license now. VirtualBox, Android, Open Office are all the good examples out there. You can be commercial and be open source same time and still make tons of money.

About a decade since I've used their stuff

[Surak_Prime]

They had some pretty good removal tools once upon a time, but I stopped using them the first time I had a client get crypto-ransomed a little over a decade ago. (Not our fault, they were using administrator and no password on a critical piece of hardware, and we were engaged to clean up AFTER the fact.)

We (the FBI guy working with us, and I) figured out that the perpetrator was operating out of Belarus. After an abundance of research and an increase in my general level of paranoia, I decided to only use sof

I served in the US Army back in the '80s.

[mmell]

Even then, we knew not to trust Communist Russia for anything. Just because the USSR fell, that doesn't somehow make Russia not the home of men like Stalin, Kruschev, Breznev and Putin. It still blows my mind to see so many Western organizations and individuals forgetting that because they only learned it from history books instead of real life.

But I've worked in plenty of IT shops - even big ones - that apparently have decided to trust Kapersky and other Russia-based firms to provide critical materials

Ugh, probably not just Kapersky.

[Narcocide]

How many Steam games are made by and/or hosted in Russia?

Re:

[garyisabusyguy]

They have this wicked cool war game, where you invade a neighboring country that you share a long history with

Just remember to play as the blue/gold team as they seem to be winning, if you auto sort to a Z or V team, just kill the toon and keep trying until you get blue/gold

Re:

[Darinbob]

Special Military Operation 2022, 2 out of 5 on GamerRanx because it ends in a stalemate.

Re:

[IdanceNmyCar]

War Thunder is a clear, big example. Worse yet it has this "updater' that runs in the background all the time. Talk about something that could be exploited, you probably don't need to look any further.

Was that headline auto-translated from Russian?

[drinkypoo]

"Germany Warns Kaspersky Software Risks Being Exploited by Russia" should be "Germany Warns Kaspersky Software Presents Russian Exploit Risk"

Cue the shills

[RightwingNutjob]

whatabouting about National Security Letters and gitmo and Assange and Snowden.

Nevermind that America foreswore wars of conquest over a century ago.

Re: Cue the shills

[RightwingNutjob]

Iraq was handed over to locals in Spring 2004. Perhaps too soon, but in terms of messaging, a move like that signals something other than "you will be assimilated," especially when combined with a persistent drumbeat in American politics of "we need to get out of Iraq" that existed in some form on both sides since the beginning.

Afghanistan had no occupation authority. We picked off Taliban military assets from the air and let the other local factions assume responsibility for government.

It was far from hand

Re:

[iggymanz]

No difference, slaughtering and maiming hundreds of thousands of civilians that didn't attack us and were no threat to us is no better. Being a self-righteous sociopath about US actions is a common patriotic brainwashing result. Not to mention USA supported despots that did the same.

You deserve it

[mthomas731]

If you're still using Kaspersky today, you deserve every virus, trojan or spyware that Russia puts on your computer.

Re:

[iggymanz]

You're funny, there is zero evidence Kaspersky does such things. Look no further than the US government for an entity that actually does such things.

Germany supports open source software such as KDE

[Ilgaz]

They are clever to use Linux/Kubuntu/(open)SUSE in government but they don't do a sizeable donation/support to something like Clamav.

Here is a crazy idea. Acquire a well known, respected German AV makers code. Cleanup the code. Re-release it similar to VirtualBox, e.g. source is open but for extra commercial/secret things, require a separate binary module.