Congress Asks US Agencies For Kaspersky Lab Cyber Documents (reuters.com)

← Back to Stories (view on slashdot.org)

Congress Asks US Agencies For Kaspersky Lab Cyber Documents (reuters.com)

Posted by msmash on Friday July 28, 2017 @09:00AM from the rock-bottom dept.

Reuters reports: A U.S. congressional panel this week asked 22 government agencies to share documents on Moscow-based cyber firm Kaspersky Lab, saying its products could be used to carry out "nefarious activities against the United States," according to letters seen by Reuters. The requests made on Thursday by the U.S. House of Representatives Committee on Science, Space and Technology are the latest blow to the antivirus company, which has been countering accusations by U.S. officials that it may be vulnerable to Russian government influence. The committee asked the agencies for all documents and communications about Kaspersky Lab products dating back to Jan. 1, 2013, including any internal risk assessments. It also requested lists of any systems that use Kaspersky products and the names of any U.S. government contractors or subcontractors that do so. Kaspersky has repeatedly denied that it has ties to any government and said it would not help any government with cyber espionage. It said there is no evidence for the accusations made by U.S. officials. The committee "is concerned that Kaspersky Lab is susceptible to manipulation by the Russian government, and that its products could be used as a tool for espionage, sabotage, or other nefarious activities against the United States," wrote the panel's Republican chairman, Lamar Smith, in the letters.

28 comments

Min score:

Reason:

Sort:

Cyber Documents by SmaryJerry · 2017-07-28 13:37 · Score: 3, Funny

Congress better be careful, cyber documents contain twice as much internet as regular documents.
1. Re:Cyber Documents by AHuxley · 2017-07-28 18:27 · Score: 1
  
  With all that cyber reading?
  Congress could reading who was behind Stuxnet, Duqu, Equation Group.
  https://en.wikipedia.org/wiki/...
  
  --
  Domestic spying is now "Benign Information Gathering"
Dumbasses. by Narcocide · 2017-07-28 13:40 · Score: 1

Kapersky can't be involved. That would be way too obvious. This has got to be a distraction. I fear it will be a costly one too...
1. Re:Dumbasses. by rmdingler · 2017-07-28 13:50 · Score: 1
  
  Kapersky can't be involved. That would be way too obvious. This has got to be a distraction. I fear it will be a costly one too...
  Unless there's some equivalent culpability involving a US-based anti-virus concern that's in jeopardy of exposure. I mean, then it could be a preemptive strike.
  I don't have my tin hat on, but it's within reach, on the desk.
  
  --
  Happiness in intelligent people is the rarest thing I know.
  Ernest Hemingway
2. Re:Dumbasses. by skids · 2017-07-28 15:21 · Score: 1
  
  You are giving them way too much credit. What's happening is simply that the comprehension of the stupidity of nearly the entire user base is finally dawning on them.
  Said stupidity being the installation of an application that by its very nature has unfettered access to everything and constantly communicates with central control servers because you are scared about accidentally installing a program that gains unfettered access to everything and constantly communicates with control servers.
  Said stupidity compounded by then failing to wondering what exactly prevents the producer of that software from acting against your interest -- the result of becoming so reliant on technology that we are in denial and recoil in horror at the depth of the rabbit hole one encounters when one questions who exactly they have trusted to provide them with technology.
  There may be a few that are aware that bad-mouthing Kaspersky does help ameliorate the damage to tech exports that the intelligence community did by effectively back-dooring made-in-America product, but most of them are just like "wow we are placing a lot of trust in these AV products aren't we... oh wait, one of them is from a company operating subject to the authority of an adversarial cleptocracy? Oh crap."
  
  --
  Someone had to do it.
3. Re:Dumbasses. by Anonymous Coward · 2017-07-28 16:10 · Score: 0
  
  Kapersky can't be involved. That would be way too obvious. This has got to be a distraction. I fear it will be a costly one too...
  My guess is that agents of Russia in the USA convincing US Congressmen that Kapersky is a threat.
4. Re:Dumbasses. by Narcocide · 2017-07-28 18:27 · Score: 1
  
  sigh...
  You may be right.
5. Re:Dumbasses. by Anonymous Coward · 2017-07-28 19:21 · Score: 0
  
  Or it is a classic case of projecting; The US government is using US based anti virus companies to spy on ailes and enemies, so they expect the Russians to do the same.
6. Re:Dumbasses. by Anonymous Coward · 2017-07-28 19:42 · Score: 0
  
  Kapersky's brand is being damaged.
  Kapersky should now take revenge by making its product the best. Time to report wink wink backdoors and vector hooking. Law enforcement can go firetruck themselves.
  Then threaten to expose UEFI, Hardware Management and graphic card DMA.
  But for now, report a checksum.
7. Re:Dumbasses. by Anonymous Coward · 2017-07-28 23:44 · Score: 0
  
  The real "oh crap" moment happens after waking from the smell of taint produced by an international system of kakistocratic kleptocrats. And We encourage it: by consent and decree.
I have an ask as well by Anonymous Coward · 2017-07-28 13:43 · Score: 0

Actually, it's less an ask and more of a DICK-Tate:
suck my DAMN balls
Suuuuure.... by Dan+East · 2017-07-28 14:16 · Score: 1

Kaspersky has repeatedly denied that it has ties to any government and said it would not help any government with cyber espionage.
Like they would have any choice in the matter.

--
Better known as 318230.
anti-red cold war commie hater, welcome to the 50s by Anonymous Coward · 2017-07-28 14:24 · Score: 0

Lamar Smith McCarthy. Livin' the cold war. Again.
pot calling kettle black by Anonymous Coward · 2017-07-28 14:35 · Score: 0

I'd say this is either a complete distraction from something else, or the govt is worried because they know just how much in bed they are with our own security firms on our own soil.
Used it for years ... by CaptainDork · 2017-07-28 14:37 · Score: 1

... and .

--
It little behooves the best of us to comment on the rest of us.
More so than yesterday by Trax3001BBS · 2017-07-28 14:46 · Score: 1

Format command in an autorun.ini would take out half of them.
Translation... by Anonymous Coward · 2017-07-28 17:35 · Score: 0

Unlike Microsoft and Symantec, Kaspersky didn't cave to demands from the NSA.
Witch! Witch! Wolf! Wolf! by grep+-v+'.*'+* · 2017-07-28 18:03 · Score: 2, Insightful

Maybe I'm naive, but I would suspect Mr Kaspersky tries to run an honest company. That being said, of course he's going to help somewhat if his government asks him to (An Offer You Can't Refuse, or You Only Do Once) -- just like AT&T and any company, I mean person over here.

NEVER MIND any moles or other unofficial "helpers" that might already exist in any company.

So they're being accused of all of this. At what point does he say "Screw it, I'm accused and already prosecuted of this, so let's DO it then. What, you're going to fine me or something?"

--
If the universe is someone's simulation -- does that mean the stars are just stuck pixels?
Well, Naturally! by BlueStrat · 2017-07-28 18:20 · Score: 3, Interesting

"...saying its products could be used to carry out "nefarious activities against the United States,"
Yes, absolutely!
It could well be capable of detecting the next US TLA cyber-weapon toolkit left laying about for hackers to copy and use, thereby threatening US national security by exposing the incompetence of the US government to the general public. A clear & present danger.
Strat

--
Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
"Free virus protection" from Russia by globaljustin · 2017-07-28 19:31 · Score: 0

Always seemed like bullshit to me.
I'm just saying, from the day I heard of Kaspersky from a friend and looked them up I thought they were sketchy.
I even used Kaspersky briefly before I stopped using Windows forever.
Still.
It always seemed inconveniently a bit sketchy. Like many others I was a bit lazy and assumed that something as widespread as Kaspersky virus protection software would be tested to death for vulnerabilities.
Kind of a herd mentality.

--
Thank you Dave Raggett
1. Re:"Free virus protection" from Russia by MrL0G1C · 2017-07-28 23:25 · Score: 2
  
  Sketchy because? Most of the AV solutions seem to offer a free version. I haven't heard 1 single fact yet that says Kaspersky is anything other than a straight forwards AV vendor.
  If I were Kaspersky I'd be talking to lawyers about taking the US to arbitration under trade treaty rules because this looks like straight forwards discrimination.
  
  --
  Waterfox - a Firefox fork with legacy extension support, security updates and better privacy by default.
All self-updating apps are suspect by Anonymous Coward · 2017-07-28 19:50 · Score: 0

It only takes one, but I am sure there are hundreds. Semi-innocuous applications that self-update, probably automatically without intervention, and which at some point can be co-opted by the owner or some other nefarious party to turn into malware. The OS vendors are already pimping for them, making it hard to prevent apps from updating when they feel like it. At any point in time I am sure that foreign or criminal elements think they could unleash hell on a substantial fraction of all smartphones, and increasingly PCs. The more clever among them can probably exploit DNS issues etc to co-opt Windows Update, Adobe, and other common installs.
Pot, meet regiment of kettles by Archtech · 2017-07-28 23:09 · Score: 4, Insightful

'The committee "is concerned that Kaspersky Lab is susceptible to manipulation by the Russian government, and that its products could be used as a tool for espionage, sabotage, or other nefarious activities against the United States..."'
Lunar Smith may not have noticed that Microsoft, Google, Yahoo, Amazon, Twitter, Facebook, HP and many other US corporations are susceptible to manipulation by the US government, and that their products could be used as a tool for espionage, sabotage, or other nefarious activities against the rest of the world.
In fact, I am sure that they are. Maybe Lunar Smith doesn't think that matters. But I do.

--
I am sure that there are many other solipsists out there.
1. Re:Pot, meet regiment of kettles by MrL0G1C · 2017-07-28 23:29 · Score: 2
  
  'The committee "is concerned that Kaspersky Lab is susceptible to manipulation by the Russian government, and that its products could be used as a tool for espionage, sabotage, or other nefarious activities against the United States..."'
  This is pretty much true of every software company in every country everywhere, either the committee shuts up or they ban software from half the planet.
  
  --
  Waterfox - a Firefox fork with legacy extension support, security updates and better privacy by default.
Oh, Okay. Maybe later, then by hyades1 · 2017-07-28 23:47 · Score: 1

Barn Door, Meet Horse.

--
I've calculated my velocity with such exquisite precision that I have no idea where I am.
Politics... by beheaderaswp · 2017-07-28 23:59 · Score: 3, Insightful

Politics and intrigue have made their way into the internet at levels most of us old timers would not have suspected. Now we're seeing competition between state actors over who will be the most effective surveillance state.
If privacy is important to you- the internet is not a place to get it. My suspicion is that this will not change. Every product is suspect. Every company is suspect. Assume everyone can see what you do. Make that assumption even if you take steps to attain basic anonymity.
And if you use onion or garlic routing (Tor/i2p etc.) remember that those networks are targeted by law enforcement and state actors.
The best policy is to not do anything illegal or involve yourself in espionage while using the internet. No one cares about pictures of your puppies or your World of Warcraft character.
It's not Kapersky we have to be worried about: The political chess game is being played out with the internet being a full part of the drama. It is best to assume every company is involved- and act accordingly.

--
Another consultant who stuck it out.

"We are the Priests, of the Temples of Syrinx..."
Cyber documents? by drinkypoo · 2017-07-29 00:34 · Score: 1

Is that like logs of netsex?
The word you want is "records". If they're actually on paper, then that might be news, and you can say "paper documentation"
HTH, though I know it won't

--
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
Russian Based Company Distrusted by USA, film @ 11 by Anonymous Coward · 2017-07-29 01:45 · Score: 0

My father did red threat simulation in the US army in the '80s sometimes. Then he became a technology teacher and IT administrator. The day he found out Kaspersky was "Russian" he vowed never to allow its use. That was in the early 2000's.