Encrypted channels can protect attackers’ command and control technology, and the cloud “invites hard to spot zero day exploits.” For example, the Russian Ransomware group Conti was recently torn open in this way.”Ĭyber security may become a means to attack, Mr McGuinness also said. If Kaspersky is informed it increases the risk that an employee will publicise or obstruct it. If Kaspersky isn’t informed, then it may well intervene when it sees something unexpected. “This could be done with or without Kaspersky’s knowledge, which either way creates potential risks. They open a door into a network, and highlight the best options for disruptive effect”, Paddy McGuinness of cybcersecurity company Venari Security told The Independent. They would therefore be aware of weak points that clients were trying to protect, legacy systems and known vulnerabilities. “Cyber security firms such as Kaspersky are trusted to have a presence on or around client networks and to process client data. With this controversial history, it remains unclear whether the Russian government could or would use Kaspersky software to launch attacks. The Department of Homeland Security issued an order in 2017 that Kaspersky products cannot be used within the US civilian federal government because of “ about the ties between certain Kaspersky officials and Russian intelligence and other government agencies, and requirements under Russian law that allow Russian intelligence agencies to request or compel assistance from Kaspersky and to intercept communications transiting Russian networks.” Kaspersky’s chief executive, Eugene Kaspersky, formerly worked for the Russian military and was educated at a KGB-sponsored technical comments, but the company has denied that it has direct ties with the Russian government. Kaspersky offers a range of software including antiviruses, VPNs, ad-blocking, anti-phishing, and more.Īntivirus software generally scans programs and files as they enter the computer, or scans software already on the device. It also released a lengthy statement to “address its and other regulators’ concerns”. “We have received the request from the Italian DPA (GPDP) and are ready to communicate with the agency on any questions or concerns they may have”, Kaspersky said in a comment. “A Russian IT manufacturer can carry out offensive operations itself, be forced to attack target systems against its will, or be spied on without its knowledge as a victim of a cyber operation, or be misused as a tool for attacks against its own customers,” BSI reportedly said. The German cyber security agency has also claimed that Kaspersky’s anti-virus software could pose a serious risk if it is used by Russian government agents to hack IT systems. Italy’s cybersecurity agency said there is no evidence that Russian products have been compromised since the invasion of Ukraine on 24 February, but that anti-virus software could be particularly sensitive because of their “high level of invasiveness”. But as official warnings increase, experts have mostly chosen to remain silent on whether it is safe to keep using the anti-virus company’s products.įranco Gabrielli, the Italian state undersecretary for security, said last week that the government was working to replace Kaspersky software that state organisations used. Sam Bird at the Rome ePrix in April (Getty Images for Kaspersky Lab)Įuropean governments have warned that Kaspersky could potentially be used by the Russian government to hack websites.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |