Slashdot Mirror
Kaspersky Software Banned From US Government Systems Over Concerns About Russia (betanews.com)
Mark Wilson writes: The Department of Homeland Security has told US government agencies to remove Kaspersky software from their systems. The directive was issued because of concerns about influence exerted over the company by the Russian government. Government agencies have been given three months to identify and start to remove Kaspersky's security products. Kaspersky has constantly denied connections to the Russian government, but the US is simply not willing to take the risk.
jimstone.is
After hackers released all the NSA hackware files, Kaspersky went through them and plugged all the holes. That would explain why American intelligence is telling people to avoid Kaspersky.
Let me repeat an old story on this site . . . .
Years ago, (2012 or so) a Norton programmer contacted me and told me that both Norton and McAfee had people permanently stationed at Microsoft, and their only job was to cooperate with Microsoft and make sure their system security products did not close any NSA backdoors that Microsoft put there for the NSA. This is cold hard irrefutable fact, not internet rumor.
So do you think I am going to listen when American intelligence tells me to avoid Kaspersky, WHICH HAS NO PEOPLE SITTING AT MICROSOFT, cooperating to make sure no holes get plugged? Also of note: This programmer made no mention of Trend Micro, so maybe Trend Micro products actually work too.
Anyway, testing the waters here with Kaspersky (and hopefully not testing fate!)
I will certainly keep you updated.
the only thing going between the really really white right in the US government is this is the only Russian connection they can sever and look like heroes.
if this is supposed to be a new economy, how come they still want my old fashioned money?
Will they try to use the Kaspersky uninstall tool and expect everything to be removed? Only a full clean reinstall of Windows will remove everything. And is there an independent tool to run to confirm that Kaspersky has actually been removed?
I tried to uninstall but bash repeatedly reported program not found or something to do with my "path"? What do?
Yup, basically what I logged in to say. "Removing" software that already had administrative/root access to your systems after telling the vendor that you're going to do it a couple months down the road for a product that has auto-update capabilities built into it is borderline criminal negligence if you sincerely thought there was a legitimate risk to begin with. Silly.
In answer to your second question, no, there is not. And there can't be. The system can never be trusted until wiped down to the firmware level (and maybe not even then if you don't trust the hardware manufacturers or physical access was compromised in some way). Any tool you might build can be lied to by the underlying kernel and/or firmware that you must assume is already compromised.
Will they try to use the Kaspersky uninstall tool and expect everything to be removed? Only a full clean reinstall of Windows will remove everything. And is there an independent tool to run to confirm that Kaspersky has actually been removed?
I wouldn't bother with such a tool, as you pointed out earlier, the most efficient tool to confirm that Kaspersky has been uninstalled is the Windows Installer. On the positive side I suppose a bunch of federal IT workers will be getting some fat overtime payments which will stimulate the economy (YAY! Capitalism!).
This is cold hard irrefutable fact, not internet rumor.
Got any more hard irrefutable facts I'm supposed to blindly believe? Just checking before I make any important decisions. BTW, I'm on the internet, and I'm seeing this claim made on the internet by a totally anonymous person with no actual attribution or sources backing it up, so that kinda, by definition, makes it an "internet rumor".
Better known as 318230.
Then, Microsoft will report to the NSA that you are running Kaspersky, you will be put on a special list and they will put more effort into accessing your system. They have several ways, some of which an anti-virus can't do anything about.
Everything I write is lies, read between the lines.
The only sane way you can ... distrust the fuck out of everything, measure it for network connections you can't trust, and decide if you really need that software.
Every state actor these days is doing shit like this. Which means you need to take some ownership of your security and act as if you have no assumption but to assume at least one government is trying to undermine your security.
What I don't get is how the idiots in the US get all butt-hurt when people try to hack them, yes entities like the NSA are aggressively hacking everyone else.
America has lost the right to complain about other entities hacking them, and quite frankly should lose the right to extradite people for hacking them, because US agencies are actively doing it to the rest of the world.
America has simply become a state you can't trust, because like childish assholes they like to act like their security supersedes all other considerations. I'm really looking forward to the day when someone burns the US security infrastructure to the ground.
Of all possible attack vectors into a system, antivirus software would have to be the most ideal mechanism for taking over or otherwise collecting data. By its very design it must have full reign of the system, read the data of every file accessed by any process, and have the ability to edit and delete any file on the system.
However, the most concerning part is that antivirus software must receive new functionality and data on a practically daily basis to detect and remove newly created malware. An antivirus program can take down its host system at any time by simply receiving a virus definition that causes it to remove or corrupt critical system files. It can also do the same targeting any specific application.
Personally I don't trust ANY antivirus company to wield that sort of power over my system.
Better known as 318230.
In the same way that some US three-letter-acronym could walk up, serve Cisco or any other company with a FISC order and associated national security gag order so they couldn't even talk about it.... Lets face it, in terms of net capability US FISC/FISA orders ~= FSB knock at the door ~= PLA/MSS order ~= UK GCHQ and Home Secretary order China already forces homegrown buys for government. As do many countries for this reason. The only real news here is that it took so long to happen.
You fool! You are going to delete the /proc directory!
On the other hand, that command is perfectly safe and the recommended way to remove Kaspersky on Linux:
rm -rf --one-file-system /
Everything I write is lies, read between the lines.
This makes no sense though from a government perspective. The US isn't banning Kaspersky from US consumers, but only from US government computers, for which ostensibly they already have several means of intercepting and tracking data. Those computers are already government property, not the property of the employees who use them.
Look back up at my post, now look back down, you're on the Internet. Now look back up. I'm a signature.
...all Russian government should not use US Windows software because it does contain CIA backdoor to get in!
You say that as if the "US government" is a homogenous group with common goals. I'd really like that to be the case, but there is ample evidence that there are many factions that practically carry out a cold war. The controversies over "unmasking" should suffice as an example.
Aah, change is good. -- Rafiki
Yeah, but it ain't easy. -- Simba
It's generally pretty hard to get any irrefutable facts on things like this. While people are fond of disclosing secrets like this, they never do so when they expect a permanent record.
An example: the author of once-dominant anti-virus program in Poland (mks_vir) used to brag about releasing tens of viruses himself. It was illegal even then, but what can you do? If I'd say "this guy said this to my dad, then my dad repeated this to me", is this a proof good enough? (The guy died in 2004, so at least there's no reputation to tarnish.)
The creatures outside looked from Alt-Right to Antifa; but already it was impossible to say which was which.
jimstone.is
After hackers released all the NSA hackware files, Kaspersky went through them and plugged all the holes. That would explain why American intelligence is telling people to avoid Kaspersky.
Let me repeat an old story on this site . . . .
Years ago, (2012 or so) a Norton programmer contacted me and told me that both Norton and McAfee had people permanently stationed at Microsoft, and their only job was to cooperate with Microsoft and make sure their system security products did not close any NSA backdoors that Microsoft put there for the NSA. This is cold hard irrefutable fact, not internet rumor.
Why would the government need to worry about Kaspersky plugging "NSA backdoors" on systems they personally own and have full physical access to? If they want to see what's on their own systems they can, in a worst-case scenario, just walk in the take them.
It is the US government who makes companies insert spy software into their machines. I run Kaspersky because they aren't under threat from the NSA to look the other way about back doors that The NSA and CIA might be putting on my computers.
The ultimate irony: the US government worried about other governments compromising security software.
Most important fact, you can't trust any thing a slashdot user with a 4 digit UID says.
You don't seriously believe that everything someone writes anonymously on the Internet counts as inside information, do you? To provide inside information anonymously, you deliver original documents and/or reveal other knowledge that only insiders should have. The receiver then tries to validate these documents or claims by comparing it with other evidence, expert testimony, and further sources.
Another thing that makes these claims rediculous is that if they really where working with Microsoft they wouldn't need and holes at all.
Recall the Magic Lantern (software). https://en.wikipedia.org/wiki/...
Why do some 5 eye nations have issues?
https://en.wikipedia.org/wiki/...
The good work done on Stuxnet, Flame, Equation Group.
https://en.wikipedia.org/wiki/...
Domestic spying is now "Benign Information Gathering"
And yet if you search a sentence from his comment, it's taken verbatim from a single comment from a clearly sleezy site debunking HIV, denying the holocaust. And posted here to try to make it believable.
Copy and paste a sentence from that ACs comment and see only two hits come up. Here and the place it was stolen from. And judge for yourself how credible that source is.
I'm not a software expert. I'm just an average consumer. Should we trust Kaspersky? I do not know the answer. I'm hoping more enlightened people would know the answer to this. I have to discount what the government position is as there are sanctions against Russia because of political reasons and their [the us] position might be more retaliation than fact. I have not seen any factual evidence from the us or from Kaspersky either. I have had Kaspersky software products on my computer for years and have not had grief from attacks or viruses in all that time. A time or two I have had chance to have trouble and Kaspersky did it's job and protected me. However I know Russians are aggresive on their hacking. Should it be prudent to change or is this an attempt to destroy a company because it is Russian?
webcrawler
It little behooves the best of us to comment on the rest of us.
But none that The Shadow Brokers hasn't released.
It little behooves the best of us to comment on the rest of us.
The NSA isn't the government. NSA does have its plugs in lots of systems e.g. I know they do in large(r) academia networks but they can only reach the higher ups, sysadmin level people aren't supposed to know about the existence of a black box on their network partially because they aren't vetted and it's too many people with little to lose and loose lips.
If the NSA directly interfered with government operations, people would have a fit especially on the smaller, local levels. Federal buildings often share space with non-federal government agencies (e.g. Where I live, federal buildings double as DMV and state and DA offices), solely for political posturing it would be a shitstorm.
Custom electronics and digital signage for your business: www.evcircuits.com
... pun cleverly crafted, is to install the hell out of Kaspersky right now.
It little behooves the best of us to comment on the rest of us.
Most important fact, you can't trust any thing a slashdot user with a 4 digit UID says.
Liar! What you just said is a cold hard irrefutable fact!
The NSA and the security advisors have full access to every computer from the USG? I thought there were other sectors in the government.
I also thought that Wikileaks just published CIA's ExpressLane project, showing the "cyber operations the CIA conducts against liaison services", which includes the NSA, DHS and the FBI, proving that this kind of group does hack into other sectors of the USG too (and not just innocent foreigners in their own homes).
Even if they could walk in and get the computers, being able to hack gives them much more power. It's funny that when the Chinese government wants people using IE everybody knows that it is to keep people hackeable, but when the USG does similar things most Americans just fall for it, as if they had the people's best interests in mind and the habit of following the law.
How much proof that they are more interested in obtaining more power than in protecting the American people do Americans need?
I honestly can't tell if that's intentional satire.
"So long and thanks for all the fish."
Unfortunately, it is not so easy. Can you imagine government officials using some Linux desktop instead of Windows and some opensource office suite instead of Microsoft Word?
And it is only practical way to avoid use of proprietary software from US-based corporations in Russian government. We are trying, but it is hard way to go.
Only a full clean reinstall of Windows will remove everything.
You mean everything except what is supposed to be there for the benefit of NSA. So now we have officially good backdoors and bad backdoors.
[Citation needed]
As far as I know, Kaspersky doesn't have a reputation for being hard to remove. Or is this 'just in case' thinking?
The NSA put the backdoors in Windows and Norton and McAffee. The NSA does not have access to all the machines, e.g. not the Windows machines that you type on now.
So the reason they do not want you to use Kapersky is not so much that it would make it possible for the Russians to have access, but because it would make it harder or even impossible for the NSA to access all your data.
As far as I can tell, the Russians will use the NSA leaks as well. So it is better to use Kaperski.
reason:
If you use e.g. Norton, the NSA and Russia will read your data.
If you use Kaperski, only the Russians will read your data.
Don't fight for your country, if your country does not fight for you.
Yes, remove that bad Russian code from our hardware, all our beautiful Chinese hardware. Made in China.
Windows banned from Russia government systems over concerns about USA
Will $CURRENT_YEAR be the year of the Linux Desktop?
Hey! I resemble that remark!
Just junk food for thought...
This is about the DHS telling government agencies to avoid Kaspersky. I haven't heard anything from US intelligence agencies. I am completely unaffected by any such request. I'm not a government agency, but rather a private citizen. Personally, I"m not worried about the Russian government spying on me, so I'm fine with Kaspersky.
Of course, no antivirus vendor whose product didn't detect the Sony rootkit (which is pretty much all of them) can be trusted.
"When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
Just-in-case thinking. If Kaspersky is the mostly harmless company it claims to be, the ban is unnecessary. If Kaspersky is spying on the US government, then Kaspersky is doubtless putting additional features in so they can pwn US computers.
Therefore, it makes very little sense to uninstall Kaspersky in the standard manner. Either it is insufficient, or id didn't need to be done.
"When you have eliminated the unacceptable, whatever is left, however improbable, must be the truthiness" - Holmes
both
Everything I write is lies, read between the lines.