US Senators Seek Military Ban on Kaspersky Lab Products Amid FBI Probe

An anonymous reader shares a report: U.S. senators sought on Wednesday to ban Moscow-based cyber security firm Kaspersky Lab's products from use by the military because of fears the company is vulnerable to "Russian government influence," a day after the FBI interviewed several of its U.S. employees as part of a probe into its operations. Federal Bureau of Investigation agents visited the homes of Kaspersky employees late on Tuesday in multiple U.S. cities, although no search warrants were served, according to two sources, who spoke on condition of anonymity because they were not authorized to discuss the FBI probe. Kaspersky Lab confirmed in a statement on Wednesday that FBI agents have had "brief interactions" with some of its U.S. employees, discussions that the company described as "due diligence" chats. The interviews were followed on Wednesday by the release of a defense spending policy bill passed by the Senate Armed Services Committee, which would prohibit the U.S. Defense Department from using Kaspersky software platforms because the company "might be vulnerable to Russian government influence," according to a summary of the legislation.

Russia, the saga continues...

Damn this is getting old. Of course they do intel collection but not any more than our 3 letter agencies.

Re:Russia, the saga continues...

Yeah sure. So we're just supposed to throw up our hands and say "Oh well, that's just 'business as usual'! Nothing to see here!" and ignore it?
You're a fucking moron, kill yourself.

Re:Russia, the saga continues...

[jellomizer]

Other countries have the right to not purchase US products if they are afraid that it would be used against their own personal benefit.

Countries like Russia with their 3 letter agencies, seems be near a lot missing people who seemed to happen to say something that they don't like.

While in America, we can bitch and complain about anything, including the President. Without fear of disappearing the next day.

For the most part and the US isn't at all perfect at it, the US 3 Letter Agencies are actually focused on National Security, not keeping the current political party in good standings.

Re:Russia, the saga continues...

[MightyMartian]

Because people in the West have it so good, relative to much of the rest of the world, I think that we have a tendency towards absurd hypercriticalness and outright hyperbole. I'm not saying the three letter agencies and their equivalents in other Western countries don't abuse their powers, and certainly the stores, for instance, of J. Edgar Hoover show us how it's important that there be oversight over the conduct of such agencies. But all in all, you're right. Imagine holding a big protest against the leadership in, say, China. In Thailand you can go to jail for insulting the King.

There's always been a strong non-comformist streak in the United States, and it's right in its DNA with the English Non-conformists heading across the Atlantic to get away from what they viewed as the tyrannical interference of the English Crown. And that's a healthy thing... to a point, but more and more I'm seeing paranoia and conspiracy thinking moving into the normal discourse, to the point where when anything happens, many just leap over all the mundane explanations immediately to "the government is out to get us!" I'll admit on occasion even I fall into the trap. It's easy to do, because the human brain seems wired to some extent to commit Fundamental Attribution Errors, and from there it's a short jump to confirmation bias and all the fallacious errors that lead even the best of us at times into accepting absurd explanations of the conduct of others.

Re:Russia, the saga continues...

This is everything you need to know.

http://www.otrfan.com/otr/series/c4fbi.html
https://www.youtube.com/results?search_query=I+Led+Three+Lives

Re:Russia, the saga continues...

Yes, if you look at the history of the John Birch Society. You can see how the American far-right used this innate American defiance of authority to turn the masses against organizations (government, unions, courts, etc...) that stand to protect their fundamental rights and freedoms.

As a result a large number of Americans got emotionally manipulated into working against their best interests and for the interests of the wealthy.

In recent years we have seen the Russian clepto-crats leverage the same mentality to place their quislings into American political offices

Re: Russia, the saga continues...

[dougdonovan]

come on kaspersky, put the jokers in their place.

Re:Russia, the saga continues...

"While in America, we can bitch and complain about anything, including the President. Without fear of disappearing the next day."

I'm gonna go out on a limb here and guess that you're a white hetero man.

wait...

[Frederic54]

the US military is using russian based software? you kidding me?

Re:wait...

[605dave]

I know. It's always seemed odd to me that anyone would use Russian anti-spy ware (from a US point of view, if I were Russian I wouldn't use US services). That's a whole lot of trust to put in somebody, much less a political adversary.

Re:wait...

[Presence+Eternal]

It's also using silicon fabricated in China and hiring Millenials.

Re:wait...

Better than trusting 90% of the people and companies in Silicon Valley.

Re:wait...

pssst. The US military uses all kinds of defense components that contain microchips, controllers, and other ICs all manufactured in Chinese fabrication plants. And China's not the only source!

Re:wait...

[Captain+Splendid]

"The Capitalists will sell us the rope with which we will hang them." - V.I. Lenin

Re:wait...

This is a such a bizarre, utterly unbelievable, completely true statement.

Re:wait...

This is a such a bizarre, utterly unbelievable statement.

Re:wait...

No they don't. There are no specialized milspec microchips, controllers, and other ICs fabricated in China. Any company attempting to do so would be in violation of several laws that come with severe penalties.

That's why China expends the large portion of their espionage budget stealing tech from the US. US authorities arrest several Chinese "business" man a year trying to get stolen tech out of the country. They should be careful because the Russians got bent over a royally screwed pulling the same shit back in the 80's. Russia was trying to steal some industrial controller and PLC technologies for oil and gas pipeline control in the mid-80's and the CIA let them but not before leaving a little surprise embedded in the firmware. 6 months later the Siberian-Russian oil pipeline suffered an explosion that could be seen from orbit.

Re:wait...

[PPH]

Yes.

U.S. senators sought ...

Posted from their Lenovo ThinkPads, no doubt.

Re:wait...

[EnsilZah]

Heh, wait till you hear about their rocket engines...

Re:wait...

Last time I checked, Kaspersky products weren't on the DISA-approved list for use by the Department of Defense.

Re:wait...

Bleep-

Re:wait...

"and the CIA let them but not before leaving a little surprise embedded in the firmware. 6 months later the Siberian-Russian oil pipeline suffered an explosion that could be seen from orbit."

So terrorism?

Re:wait...

That's just stupid: the feds can through you in jail on some bullshit cp or piracy or tax evasion charges. Russians can't do shit to you.
I propose the following: when in Russia, use US-based software. When in US, use Russia's.
*the above obviously does not apply to business or research people with real secrets to lose. In these cases, stick to Linux, and trust no one.

Re:wait...

It's a hoax:
https://sofrep.com/7999/the-myth-of-the-cia-and-the-trans-siberian-pipeline-explosion/
http://web.archive.org/web/20040606142830/http://www.themoscowtimes.com/stories/2004/03/18/014.html
http://www.vmyths.com/column/1/2005/7/12/

Re:wait...

Update yourself:
http://www.cnbc.com/2014/01/03/us-put-china-made-parts-in-f-35-fighter-program.html

Re:wait...

They should have it for research purposes, but that's it IMO

Re:wait...

[bongey]

Too bad Lenin's communism is pretty much dead, except for all but North Korea.

Re:wait...

[bongey]

Notice idiot, just because it is "Russian" owned , doesn't mean that the software actually comes from Russia.

Re:wait...

In this case, "We will sell the capitalists the rope they will use to hang themselves."

Re: wait...

Rochester electronics, Newburyport, MA

Re: wait...

The software in question is purchased to "protect" Microsoft based systems from compromise. Similar measures are rarely taken with *nix based systems. Moreover, there's scant evidence Kaspersky's software succeeds in doing what it claims to do.

The whole MS software ecosystem is a morass of security failures. You can thank Redmond for making a product seemingly designed to spread malware. You can thank idiot corporate IT managers, and an anemic US prosecution of antitrust violations for the steaming pile of poo that is the modern net.

Re:wait...

I thought that was from Marx.

Guilt by being Russian.

[SYSS+Mouse]

That's all.

Re:Guilt by being Russian.

Hmm. Why do you suppose the Swiss never have this problem?

Re:Guilt by being Russian.

Because they are not Russian?

Re:Guilt by being Russian.

[swb]

Maybe some of that, but the difference between that and Cisco being "guilty for being American" because of NSA hijacking shipments and hacking their hardware is what?

The reality is that a Russian company is far more vulnerable to kinds of influence that would be outright illegal and American companies have the luxury of being able to open resist explicit efforts to compromise their systems and organizations in an actual judicial system.

Sure, there's all kinds of secret FISA courts and national security leverage the US government can use, but Tim Cook isn't going to the gulag for telling the FBI and NSA to bugger off. A Russian company is far more vulnerable to what really are mafia tactics.

Re:Guilt by being Russian.

Those chocolate people are useless.

Re:Guilt by being Russian.

[eaglesrule]

A Russian company is far more vulnerable to what really are mafia tactics.

Exactly.

This comes in the wake of a senior executive of Kaspersky being arrested for classified reasons. The Krebs article speculates on some reasons for the arrest.

Even assuming Putin did not want to take advantage of Kasperky's position of having a software foothold on millions of machines, the corruption in Russia makes the firm particularly vulnerable to organized cyber criminals. That reason alone is enough to not trust Kaspersky code.

Re:Guilt by being Russian.

Even assuming Putin did not want to take advantage of Kasperky's position of having a software foothold on millions of machines, the corruption in Russia makes the firm particularly vulnerable to organized cyber criminals. That reason alone is enough to not trust Kaspersky code.

Even assuming the US Government did not want to take advantage of undisclosed weaknesses in a certain operating system and advantage of Symantec's position of having a software foothold on millions of machines, the corruption in the United States of America makes the firm particularly vulnerable to organised cyber criminals. That reason alone ios enough to not trust Symantec code. FTFY comrade.

Re:Guilt by being Russian.

[bongey]

Sure, because the US Government never does any illegal spying or anything illegal or try to put back doors in software or encryption algorithms. You live in a fantasy world if you think the US Gov has some moral superiority.

Re:Guilt by being Russian.

[Agripa]

Sure, there's all kinds of secret FISA courts and national security leverage the US government can use, but Tim Cook isn't going to the gulag for telling the FBI and NSA to bugger off.

What happened to Quest CEO Joseph Nacchio would never happen to Tim Cook.

Re:Guilt by being Russian.

Sure, because the US Government never does any illegal spying or anything illegal or try to put back doors in software or encryption algorithms. You live in a fantasy world if you think the US Gov has some moral superiority.

Moral superiority? No. None at all.

The difference, however; is that here in the USA it is illegal for the U.S. government to do this "illegal spying or anything illegal", and when they get caught at it they get slapped down instead of being allowed to disappear anyone who might catch on and out them.

But you are just ranting on your anti-USA soap box, trying to score hipster douche-bag points, so carry on. Don't let logic and truth get in your way.

Re:Kaspersky Lab was always a shakedown

[HumanWiki]

They write the malware and then try to collect a bounty from vendors for "discovering" it during their "research". About time they crack down on those pricks.

"We'll create the cure; we made the disease"

"Well I know just what you need
I might just have the thing
I know what you'd pay to feel"

Russian software

I wouldn't touch that stuff with a ten foot Pole. Or even a Ukrainian.

Re:Russian software

[Opportunist]

*sigh* Are you Finnished?

Re:Russian software

[XxtraLarGe]

*sigh* Are you Finnished?

My grandmother was 100% Finnish. Instead of telling people to "Go to Hell!", she would say "Go to Russia!" :-D

Re:Russian software

*sigh* Are you Finnished?

No puns! We're sending you to Sighberia.

Re:Russian software

You mean Sighbeeria, that pub for those "temporarily in 2nd place?"

Re:Russian software

[Opportunist]

You should Czech your travel locations, it's so friggin' cold there, even in Summer nobody Swedes there. And food is scarce, even at Thanksgiving you'll stay Hungary for there will be no Turkey! If Iran this place, there's Norway it would be like this.

Better idea.

[Gravis+Zero]

Why not just cut to the heart of the issue and impose a ban on Microsoft products?

Re:Better idea.

Because M$ has deeper pockets than Linux.

Re:Better idea.

The communist menace hasn't changed in the last 100 years.

Thank God for J. Edgar Hoover and Senator Joseph McCarthy. They knew how to deal with traitors.

If Kaspersky employees are traitors, give them the Rosenberg treatment.

If we are going to have a "witch-hunt", let's reactivate the House Un-American Activities Committee and burn the real witches in this country.

It's time to get rid of them and their fake news, for good.

Make America great again!

Re:Better idea.

Yay, yay, the Russian Trolls are here!

Too late?

[Oswald+McWeany]

If Kaspersky is corrupt and letting Russian malware through (and I'm not saying they are, they're probably legit) could it be a little late?

If Kaspersky were rotten and letting Russian Malware through, then that software would already be installed and hooked into the computers. Sure, getting rid of Kaspersky may help new computers not be infected, but if they were bad, then the military is already infiltrated to a degree.

Re:Too late?

The trail of dead and disappeared Russians working for Kaspery is a good sign that they're somewhat involved in Russian security services.

Re:Too late?

[Rockoon]

By that Logic, so are the Clintons.

Re:Too late?

Kaspersky is the one of the very few anti-virus that has been consistent that malware is malware - regardless of where it comes from (even governments) for decades now.
If the US military wants their anti-virus software from companies that are willing to backdoor their products and/or turn a blind eye to malware, they are only hurting themselves.

Re:Too late?

[rahvin112]

You should really stop obsessing about the Clinton's. She Lost, get over it.

It doesn't help the president to point to the person that lost and say they do it as well, all that does is prove the president is as crooked as "Crooked Hillary".

Re:Too late?

[Rockoon]

We should get over the trail of dead bodies. Gotcha.

Re:Too late?

[rahvin112]

It's not the letting malware through that's an issue, it's that it could include a backdoor right to ring 0 of the kernel. Anti-Virus has full root privileges on Windows, if the Russian FSB (KGB) through it's connections to Kapersky has managed to put a backdoor into the software you've just let the KGB into your network.

Re:Too late?

Well, it's not like it's difficult.

They're just lying there. No challenge at all to step over them. Just lift your feet a bit higher.

Re:Too late?

[bongey]

I think the Clintons got the Russians beat on rotten.

Re:Too late?

[david_thornley]

Kaspersky apparently didn't detect the 2005 Sony rootkit, and I find it hard to believe that was accidental.

Next? VODKA!

I would have gotten away with it if it hadn't been for those meddling Russian government influencers!

Don't let the con artist find out

[quonset]

If the con artist gets wind there's an attempt to stop using Russian-based software because the company might be susceptible to Russian government influence, he'll order them to use it no matter what.

Remember, this is the same guy who was explicitly warned not to bring Michael Flynn into the fold because Flynn was highly susceptible to Russian blackmail. He went ahead and did it anyway, then tried to blame Obama when everything blew up in his face, ignoring the fact it was Obama who fired Flynn for insubordination.

Embrace it

[qbast]

I am using operating system from USA, antivirus from Russia and backup program from China. This way I have achieved multiple, geographically diverse backups for all my important data. I still need to test the recovery process though.

Re:Embrace it

I am using operating system from USA, antivirus from Russia and backup program from China. This way I have achieved multiple, geographically diverse backups for all my important data. I still need to test the recovery process though.

Your USA operating system was likely written in India as an added diversity bonus.

Re:Embrace it

I am using operating system from USA, antivirus from Russia and backup program from China. This way I have achieved multiple, geographically diverse backups for all my important data. I still need to test the recovery process though.

For the backup recovery process you need Finland and for privacy I was about to say Canada but CSEC and CSIS have already undermined any pretence of personal privacy in Canada. Just a moment, I have to answer the door. &%^&$&$^$&^$$&^^%$%#

Re:Embrace it

I am using operating system from USA, antivirus from Russia and backup program from China. This way I have achieved multiple, geographically diverse backups for all my important data. I still need to test the recovery process though.

Your USA operating system was likely written in India as an added diversity bonus.

Only if those Indian (cough) software engineers (cough) are transgender homosexual persons. Otherwise it Microsoft would be racist.

Re:Embrace it

If they're faggots they're likely Muslims. While there are faggot islams in India they're much more likely to be from Saudi Arabia, capital of all muslim faggots.

Re:Embrace it

Muslims cannot be faggots, because in the afterlife they go to a paradise with 72 (female) virgins (houri) each. QED :D

CYA

Bigger threat...

Doing this give foreign governments and militaries the excuse they need to move away from American software assets, such as ClamAV, Windows, McAfee, etc. Does anyone involved not realize the threat this is causing to foreign consumption of American domestic software manufacturing.

Nevermind the fact that the current malware threat facing the globe is caused by NSA/CIA leaked hacking tools, meaning the sensible moratorium is on U.S. AV software, which is FAR more likely to be permitting access of domestically funded and developed malware to foreign and/or domestic systems, whichever they need compromised for their current agenda.

Re:Bigger threat...

[Oswald+McWeany]

Doing this give foreign governments and militaries the excuse they need to move away from American software assets, such as ClamAV, Windows, McAfee, etc.

Maybe they should.

Maybe China and Russia shouldn't be using American software for sensitive equipment. I'd be very surprised if there weren't some American retial software that does spy on foreign computers.

Re:Bigger threat...

[david_thornley]

I'm fairly sure there's US retail software that spies on everyone, foreign or not.

This is the best endorsement for using Kaspersky

This is the best endorsement for using Kaspersky ie. the US government is/was using them despite their being Russian. Also, lets be real...everyone already knows they are the best but this just about confirms it.

 

The problem is unfamiliarity with virus protection

[sarbonn]

I've seen this with a lot of IT sections of larger companies where quite a few of the professionals actually don't know a lot about virus protection other than the concept that they should be using it. Quite often, if they're not working with virus definitions and protection on an ongoing basis, their knowledge is quite often years old, based on the norms of those years back then. And it's not really their fault. It's just because too many people are compartmentalized in doing exactly what they do, so that often an "expert" has little idea what to do when it comes to dealing with security. And instead of try to learn more, people tend to shame anyone that comes up short on time specific knowledge. It's a weird dilemma that has shown up quite a few times, and everyone I talk to always claims to be an expert in an area that he or she really doesn't know that well. It's no wonder companies are hit so hard when actual threats become active.

ACs posting vatnik propaganda, the saga continues

And this saga has been going strong since just before the US election cycle.

Are you STILL making rubles for this?

3 letters

The 3 letter thing is a myth. The Russian intelligence community has many agencies with 4 or 5 letters, like the SVR RF.

Re:3 letters

So, FSB is a mythical entity like unicorns

Re:3 letters

[david_thornley]

No, it's more like referring to black-and-white stripes as normal to hoofed mammals, and you're pointing at a zebra and saying "Hey!".

What's the current line?

[BradleyUffner]

I thought the current li(n)e was that there isn't anything wrong with Russian influence. Or does that only apply to The Holy One?

Russian Influence

[rashanon]

I think its a great idea to stop working with people who are under the influence of Russia.

Anyone who may be compromised by Russians, say they have a shit load of their money tied in projects with russians banks also should be under severe scrutiny. Ah yea, so that why the President is under investigation

Will she change her last name to Loser now?

Hey now, how could you not hire someone named Reality Winner?

ball bearings.... again

This is likely a confession based on a lack of actually understanding the adversary.
It says something about north American software and hardware vendors.

Bullshit and FUD

Kaspersky have been around for many years, and they've always been in the forefront of AV innovation and product development. Everything that comes out of their PR and their employees public statements seems entirely sincere, honest, and with integrity.

This is just another one of America's campaigns to hurt the Russian image, and it's weak and dishonest move.

Re:Bullshit and FUD

What did FBI ask you?

Or Maybe

Kasperky's products actually protect systems from NSA, CIA, FBI, etc. hacks and they want it gone.

US Senators seek military ban on Kaspersky lab

[najajomo]

"U.S. senators sought on Wednesday to ban Moscow-based cyber security firm Kaspersky Lab .. because" we've already got backdoors into all the rest.

Who better to guard you from malware...

[hyades1]

...than the people writing the malware?

Umm

[HBI]

This is pointless grandstanding.

We should start writing to congressmen about Linux

[TheOuterLinux]

Out of all the things to bitch about, I feel like to get actual work done, there are certain things we need to get past, and Micro$oft products in government offices is one of them.

Buzzfeed News is source

[bongey]

GTFOH using buzzfeed news as source for senate bill is insane.

Re:This is the best endorsement for using Kaspersk

is it "endorsment" or rather a sign of crass iresponsability ?