Slashdot Mirror

← Back to Stories (view on slashdot.org)

'US Intelligence Agencies Should Put Up Or Shut Up With Kaspersky Rumors' (csoonline.com)

Posted by msmash on from the make-your-mind-already dept.

itwbennett writes: As previously reported on Slashdot, U.S. intelligence agencies have warned against using Kaspersky software amid swirling rumors of ties between Kaspersky Lab executives and the Russian government. White House cybersecurity coordinator Rob Joyce this week advised against consumer use of Kaspersky software. This may be good politics, but CSOonline's Fahmida Rashid warns that it's bad infosec. 'If the government has any evidence -- or even compelling reasons for being suspicious -- it should be sharing that, because many companies and consumers rely on Kaspersky Lab products. The fact that the government hasn't done so makes it likely this is all just geo politics,' writes Rashid. 'There is enough FUD in the market without throwing in politics into decision-making. Organizations should focus on deploying the technology which best addresses their needs.'

6 of 115 comments (clear)

  1. It's about risk by Oswald+McWeany · · Score: 4, Insightful

    You don't have to prove that Kaspersky is in bed with Russian intelligence to not want to use it for government computers.

    Merely suspecting it might be is enough reason not to use it.

    --
    "That's the way to do it" - Punch
  2. We already know why Kaspersky is untrustworthy by Anonymous Coward · · Score: 1, Insightful

    I have the info on why nobody should be using Kaspersky's software, and I don't have any classified intell. I'm about to tell you something that you've probably already known for 20 years:

    Virus scanners are bullshit. If your security relies on executing totally untrusted code but hoping to have checked it against a blacklist first, then you have already lost. Your solution is stupid and you're a stupid person for thinking it might have worked.

    The way to protect against viruses is to not run any code that you have no reason to trust. If you are having unprotected sex with a dozen strangers per day, you are going to get an STD even if you ask each stranger "hey, have you been checked out lately?" before each encounter.

    Stop downloading and running random code. If you keep picking up strangers in bars, you're eventually going to get an STD. Maybe you've been lucky so far, but it's still just a matter of when. At a minimum, use a condom (run random untrusted code in a sandbox/VM/disposable) and accept that even protection isn't perfect. I'm not saying you need to be monogamous (only run code from the Debian repo) but that is the way to minimize risk. But geez, asking the strangers "have you been checked out lately" is not a serious solution in any way.

    If you're using AV software, you are wasting your time. And if you're paying for AV software, you are wasting money.

    And you already knew that. There are no surprises here.

  3. Re:The government will use a well known line... by Mr+D+from+63 · · Score: 2, Insightful

    BTW, this line was used by Obama administration as well, when they were talking about Russian involvement in last year's elections.

    How it makes sense, I cannot figure out.

    I recall that. If one wants the gov to 'put up or shut up' regarding evidence for Kapersky, they should want the same regarding evidence regarding Trump and Russia, but the media seems to be fine with insinuations, a lot more to assume that way.

  4. Re:Kaspersky = KGB by Entropius · · Score: 4, Insightful

    How are you going to verify if it's spyware or not?

    Most likely the software is programmed to download automatic updates. This means that it could go from being benign to being a trojan overnight -- for whichever subset of IP addresses the people running the update servers want.

    It's impossible to audit the security of autoupdating code; you're at the mercy of whoever controls the updates.

  5. tired of ppl wanting intel world to out self. by WindBourne · · Score: 2, Insightful

    The last thing that the intelligence world wants to do is tell every tom, dick, and harry out here how it spies on other nations and how it catches ppl/organizations.
    I am amazed at all of the idiots calling for NSA to out themselves for what they do LEGALLY.
    Even now, look at what is going on with trump investiation. Trump/family/admin continue to make a statement that is a lie. So, NSA will release a peice of evidence that refutes those lies, along with offers up another clue. Now, why do they not simply dump all of their data on ppl like Trump, Pence, Bannon, etc for their treason? Because to do so, would allow Russia and China to figure out how we spy on their spies and then get around us. That would be a disaster. The best thing that happens is when these top nations have inside information about POLICY/WHY, but not about the HOW. This has prevented a number of wars. But, once a nation like China get the HOW, then it will lead from this China's cold war with the west, to a full blown hot war, which could lead to nukes.
    REAL BAD IDEA.

    --
    I prefer the "u" in honour as it seems to be missing these days.
  6. Re:The government will use a well known line... by h4ck7h3p14n37 · · Score: 4, Insightful

    Back during the Cuban Missile Crisis President Kennedy put forward the U-2 photos showing the missile sites. He didn't hide behind the whole sources and methods thing.

    If someone's not willing to present their evidence, then you probably shouldn't trust them unless they have demonstrated they can be trusted. The three letter agencies have all demonstrated they cannot be trusted.