Kaspersky Lab Denies Involvement in Russian Hack of NSA Contractor (theguardian.com)

← Back to Stories (view on slashdot.org)

Kaspersky Lab Denies Involvement in Russian Hack of NSA Contractor (theguardian.com)

Posted by msmash on Friday October 6, 2017 @02:00AM from the denial-denial-denial dept.

Moscow-based cybersecurity firm Kaspersky Lab has hit back at a report in the Wall Street Journal which accused it of being involved in a Russian government hack of an NSA contractor in 2015. From a report: The paper reported on Thursday that the NSA contractor, a Vietnamese national who was working to create replacements for the hacking tools leaked by Edward Snowden, was hacked on his personal computer after he took his work home. There, the report says, the contractor's use of Kaspersky's antivirus software "alerted Russian hackers to the presence of files that may have been taken from the NSA." Once the machine was in their sights, the Russian hackers infiltrated it and obtained a significant amount of data, according to the paper. Calling the allegations "like the script of a C movie," Eugene Kaspersky, the infosec firm's founder, gave his own explanation of what might have happened. Mr Kaspersky vehemently denied that his company had played any active role in the breach, noting: "We never betray the trust that our users put into our hands. If we would do that a single time that would be immediately spotted by the industry and our business would be done." Instead, he implied that the root of the problem was that Kaspersky Lab had correctly identified the hacking tools the contractor was working on as malware -- perhaps through Kaspersky Lab's own research into the Equation Group, a "sophisticated cyber espionage platform" believed to be linked to the NSA.

76 comments

Min score:

Reason:

Sort:

Calling Captain Renault by Anonymous Coward · 2017-10-06 02:08 · Score: 0

I'm shocked, shocked to see spying from a Russian company!
After all, Russia is TEH EVUL!!!!, right?
1. Re:Calling Captain Renault by Anonymous Coward · 2017-10-06 02:22 · Score: 0
  
  I've been preventing their use in my organizations for years and years. Never trusted them.
2. Re:Calling Captain Renault by jellomizer · 2017-10-06 02:38 · Score: 1, Insightful
  
  Not necessary evil but insidious is a better term for the Russian Government. After the chaos after the Soviet Union dissolved, there population in general has accepted a strong man government to keep order. Russia is a major world player and with its strong man government in charge, it isn't happy with just controlling it local populous but also the rest of the world. They realize that the military would suffer losses if they try to openly attack NATO countries, or China and its allies.
  However after generations of being a master in the propaganda engine under the USSR, they can use these skill sets with modern technology to manipulate other countries.
  Being that it is strong man government with a lot of control, a company based in Russia, wouldn't be free from government influence and if the company had built up some good will with rival nations, that could be used for Russia's advantage.
  Trump became president due to Russian influence in our election, If Trump and his team was involved with the Russians is a different question, but with the Russians spamming Facebook with fake news, raising the ideas of divisions where they were more or less settled in the past, and create chaos in the systems. Allowed for people be afraid of the establishment and vote for the Simple Fix.
  
  --
  If something is so important that you feel the need to post it on the internet... It probably isn't that important.
3. Re:Calling Captain Renault by cascadingstylesheet · 2017-10-06 02:44 · Score: 2, Insightful
  
  Trump became president due to Russian influence in our election
  No, that's not why he became president, but it's a wonderful ego-saving belief for a segment of the country.
4. Re:Calling Captain Renault by ohnocitizen · 2017-10-06 03:15 · Score: 5, Insightful
  
  I wonder if, when Mueller's report comes out showing collusion, the shrinking minority of Republicans who still support Trump will eat their words? Or if they'll act like Fox News analysts caught in a lie, and just move onto the next hot topic with their credibility among other conservatives mysteriously intact?
  
  But you're right to a tiny degree, Trump didn't become president due to Russian influence alone. Voter suppression, moving from dog whistles to overt racism and sexism that appeal to a segment of the country, and the Democrats refusing to acknowledge how weak a candidate they chose... All of these things played a role.
  
  I'm curious to see if Republicans will switch from ignoring the evidence of foreign influence to excusing it. It'll be fascinating to watch that play out, even as we figure out what to do with the court appointments and other fruit of the poison tree of an illegitimate president.
5. Re:Calling Captain Renault by allcoolnameswheretak · 2017-10-06 03:16 · Score: 1, Informative
  
  Trump became president due to Russian influence in our election
  No, that's not why he became president, but it's a wonderful ego-saving belief for a segment of the country
  There are a number of high-profile investigations going on that are starting to provide results and evidence of how a foreign actor (Russia) tried to influence the election in favor of Trump.
  And Russia has a history of manipulating public opinion and interfering with elections in other countries.
  Do you think all of this is "fake news" and all the agents, secret services, politicians and other actors that are involved in these investigations are part of a liberal conspiracy?
  I guess that's a wonderful ego-saving belief for a segment of the country.
6. Re:Calling Captain Renault by Anonymous Coward · 2017-10-06 03:40 · Score: 0
  
  Trump became president due to Russian influence in our election
  No, that's not why he became president, but it's a wonderful ego-saving belief for a segment of the country.
  If you don't think that Russian influence wasn't a contributing factor, you're terribly naive.
7. Re:Calling Captain Renault by Anonymous Coward · 2017-10-06 03:45 · Score: 0
  
  Trump became president due to
  Trump became president because the alternative was worse. That's right, worse than Trump. (How's that for a Halloween scare?)
8. Re:Calling Captain Renault by PolygamousRanchKid+ · 2017-10-06 03:50 · Score: 2
  
  Trump became president due to Russian influence in our election,
  Nope. Trump became president because a lot of folks detest Hillary Clinton. She still hasn't realize this. It reminds me of celebrity who cries:
  "What?!?! There are people who don't like me!?!?! I'm so great that everyone must absolutely love me!"
  In the election folk did not vote for the better candidate. They voted for the least worse.
  A lot of folks held their noses while voting.
  It's quite sad actually.
  
  --
  Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
9. Re: Calling Captain Renault by Anonymous Coward · 2017-10-06 03:54 · Score: 1
  
  Burr said the committee had come to a conclusion on at least one issue: that it had faith in the conclusions of the intelligence community assessment (ICA) presented by the CIA, FBI and NSA to Barack Obama and Donald Trump in January.
  That assessment found that Vladimir Putin and the Russian government had intervened extensively in the presidential election and âoeaspired to help president-elect Trumpâ(TM)s election chances when possible by discrediting secretary Clinton and publicly contrasting her unfavorably to himâ.
10. Re: Calling Captain Renault by Anonymous Coward · 2017-10-06 04:00 · Score: 0
  
  What's the word to describe cascadingstylesheet if he does think that Russian influence was a contributing factor but pretends it wasn't?
11. Re:Calling Captain Renault by Anonymous Coward · 2017-10-06 05:54 · Score: 0
  
  I like the fact that everybody in the debate is able to clearly distinguish between "tried to influence" and "was a significant factor" in dependence of their party affiliation.
12. Re:Calling Captain Renault by Anonymous Coward · 2017-10-06 06:17 · Score: 0
  
  Nope. I know why I voted for Trump and it wasn't some Russian ad on Facebook.
  I'll also note the hypocrisy in the fact that you don't care about colluding with British spies, even paying them $100k, to come up with that bogus dossier of 4chan rumors. Or the fact that you set up a wedge candidate (McMullin) to try to take Utah who was in on all this, which is the main reason he got so much press for being "viable" even though that was as bogus as your 1% chance to win polls.
13. Re:Calling Captain Renault by Anonymous Coward · 2017-10-06 06:24 · Score: 0
  
  I wonder if, when Mueller's report comes out showing collusion, the shrinking minority of Republicans who still support Trump will eat their words? Or if they'll act like Fox News analysts caught in a lie, and just move onto the next hot topic with their credibility among other conservatives mysteriously intact?
  But you're right to a tiny degree, Trump didn't become president due to Russian influence alone. Voter suppression, moving from dog whistles to overt racism and sexism that appeal to a segment of the country, and the Democrats refusing to acknowledge how weak a candidate they chose... All of these things played a role.
  I'm curious to see if Republicans will switch from ignoring the evidence of foreign influence to excusing it. It'll be fascinating to watch that play out, even as we figure out what to do with the court appointments and other fruit of the poison tree of an illegitimate president.
  Second hidden processor in your PC
  Built into every modern Intel-based PC
  Never sleeps (connected to mains? ME is active.)
  https://github.com/corna/me_cleaner
14. Re:Calling Captain Renault by Anonymous Coward · 2017-10-06 07:17 · Score: 0
  
  "Russia is a major world player Russia is a major world player"
  No they are not and haven't been for quite a while. To be a major world power you need more than a few thousand aging nuclear weapons. Weapons that have been rendered useless by the MAD policies between them and the US. It is economic power that defines a major world player today and they are not even in the top 20. Hell the state of California has a higher GDP than Russia.
  There is no relief in site for lifting the economic sanctions Russia earned by invading and occupying a country that shared their border. It wasn't military power that allowed this to happen it was the same type of propaganda and lies they have been peddling since the Stalin era. Putin is genetically incapable of telling the truth on anything. For all of Russia's current bluster what has Russia accomplished with all their lies and propaganda? They still have economic sanctions causing problems for an economy that was already not the most stable. They are bogged down in a low intensity border war and bleeding cash trying to project their military power in Syria. There has been no indication that any of this is about to change. If anything it is probably going to get worse. If they really wanted Trump to be President than I would say that decision ranks right up there with the Japanese deciding to attack Pearl Harbor. Now they have to deal with a president that cannot do anything even remotely close to striking any agreements with Russia. Congress has even passed a law requiring the President to get their approval before reducing any sanctions against Russia.
  The US has the power to inflict even further economic damage Russia's way by making sure the price of oil stays low enough to cut Russia's number one source of hard currency.
  Russian citizens have been trained over the past 75 years to never question anything the government says. And since questioning the state can be fatal to your health the only thing left is to buy in to everything the government says and bask in the glory of the motherland. Yesterday Russia launched a country wide crackdown on anyone who could be considered in opposition to the current government. Political activists, newspaper publishers, business leaders, teachers, and anyone else who used the internet to complain about the government or are thought to be organizing political opposition groups. The word pogrom springs to mind but in this case they didn't kill everyone they targeted. Most were arrested and others had to play hosts to the goon squads who broke down front doors and made themselves at home while ransacking the premises, confiscating computers and other misc items, and questioning the occupants for up to 8 hours.
  And Kaspersky does anything the Russian government tells them to. They have no choice but to bow before the state if they want to keep breathing.
15. Re:Calling Captain Renault by Anonymous Coward · 2017-10-06 07:30 · Score: 0
  There are a number of high-profile investigations going on that are starting to provide results and evidence of how a foreign actor (Russia) tried to influence the election in favor of Trump.
  Because no investigation into how other countries tried to influence our elections are necessary.
  
  Mayor of Paris calling Trump "stupid man" in response to statements he made during the primary debate? Check.
  Ex-president of Mexico calling Trump's plan to build a wall stupid? Check.
  Russia donating money to Clinton Foundation and paying Bill Clinton for speeches? Check.
  These are all foreign governments trying to tilt the election towards Clinton. They all amount to foreign interference in the US elections. And they are all at a higher level and at higher dollar values than anything that is even being alleged about Trump (never mind that no accusations against Trump have been proven).
16. Re:Calling Captain Renault by ohnocitizen · 2017-10-06 07:51 · Score: 1
  
  Of course you'd reply as AC. You're still at the denial stage of grief. https://www.reuters.com/articl...
  
  The British intelligence are our ALLIES, and have been for decades. Can't you tell the difference anymore, or more likely, will you just say anything that seems to support your point in the moment?
17. Re:Calling Captain Renault by Hognoxious · 2017-10-06 09:09 · Score: 1
  
  I'm shocked to see them denying it. Russians are honourable people. If they'd done it, they'd admit it.
  
  --
  Confucius say, "Find worm in apple - bad. Find half a worm - worse."
18. Re:Calling Captain Renault by Anonymous Coward · 2017-10-06 14:44 · Score: 0
  
  What do you think about the Soviet files detailing how Senator Ted Kennedy actually did try to collude with the Soviet Union for the 1984 election?
  https://www.forbes.com/2009/08/27/ted-kennedy-soviet-union-ronald-reagan-opinions-columnists-peter-robinson.html
19. Re:Calling Captain Renault by Anonymous Coward · 2017-10-07 07:29 · Score: 0
  
  The US has no true ALLIES it has interests. Just like every other country. For all the hysterics about the NSA or CIA running international intelligence and counter intelligence operations no body ever mentions the US is the most spied upon country on the planet. Even these so called ALLIES do it.
  And spying on the US is quite easy compared to other places in the world. Contrary to popular belief the US is still an open society where thousands of foreigners are entering and departing the country every day for normal business, education, and tourism activities. The US is the most inclusive country in the world. There is a "China Town" in almost every major city in the country. You will find churches representing all Christian denominations, Synagogues, and Mosques. The countries that the US considers enemies are for the most part closed societies ruled by despots with large internal security services and no civil liberties. As a consequence it is hard to insert intelligence assets in these countries. Most allies are only US allies when they feel threatened or need a handout of cash or military assistance. These allies contribute token amounts of resources to NATO operations and when they do commit resources they expect the US to be at the pointy end of the stick while they hang out in the back holding US coat tails. Once the danger is eliminated they usually bring up the rear while complaining about the methods used to clear the opposition. If there was another war in Europe the US would most likely be the top contributor to the defense of Europe. I don't see any allies, except maybe England, who would return the favor if the US needed help. And England would do it because they saw their empire crumble in WW2 and it was the US that went to great lengths to support them even before the US entered the war. During a time when the US only had the 16th largest military in the world. When people argue us actions or inactions during WW2 they tend to form their arguments using today's US military strength. They remember a US President who ignored Congress and the US public to support England's war efforts. They saw a US President who broke or ignored laws to provide England with enough assistance to keep the Germans from landing on English soil. US factories were producing Spitfires, ammunition, and other war materials that were delivered to England on ships provided by the US. Congress passed a laws preventing the US government from using wiretaps on suspected German spies in the US. He broke this law the same day as it was passed using a Presidential directive that really had no legal validity. He broke the law preventing the US from providing warships or other military supplies with the lend-lease program. At the time the law stated the US could not sell warships but it said nothing about lending mothballed naval assets to a friendly country. He unilaterally extended US territorial Atlantic waters to protect supply convoys traveling from the US to England. Had the US lost the war he would have been prosecuted and run out of office instead of becoming the best President the US has ever had. A President who understood that protecting the US was more important than letting the public's fear of the war or the politicians who took advantage of public opinion to dictate US security policy during the middle of a freaking world war! England didn't like all the US solders invading their country but they understood the necessity. The US didn't win WW2 single handily but the US was responsible for England remaining a sovereign state.
  England still remembers that you need strong allies in both peace and wartime and the US is their insurance policy. That policy can be expensive to maintain but when the shit hits the fan they will definitely get their monies worth.
20. Re: Calling Captain Renault by Anonymous Coward · 2017-10-08 08:15 · Score: 0
  
  They're saving their own egos by not admitting decades of gerrymandering and gross bigotries of low-information voters had no effect?
  OK.
21. Re: Calling Captain Renault by Anonymous Coward · 2017-10-08 08:18 · Score: 0
  
  Yes. How dare that bitch Hillary try to give Americans healthcare? Good thing Roger Ailes dedicated 25 years of his "news" channel to defaming her. He's a true patriot hero.
My suspicion by Anonymous Coward · 2017-10-06 02:08 · Score: 1

The Kapersky Labs campus has a mysterious building that is off limits to all employees except a select few with very close government ties and high security clearances. All products must be approved by the black building for release to the public. Nobody knows what exactly goes on in that building, just that it is where the products must be reviewed before their release and that there are a lot of black SUV's that come and go.
1. Re: My suspicion by Anonymous Coward · 2017-10-06 02:12 · Score: 0
  
  Remember this is Russia. In the US if you refuse to sabotage your product the worst they can do is maybe find out you cheated on your taxes and/or publicly shame you somehow.
  In Russia you fall down elevator shaft, after shooting self in back of head 4 times.
2. Re: My suspicion by NettiWelho · 2017-10-06 02:20 · Score: 5, Insightful
  
  In the US if you refuse to sabotage your product the worst they can do is maybe find out you cheated on your taxes and/or publicly shame you somehow.
  Nope, your business gets destroyed by the government if you refuse. See: Lavabit
  
  In Russia you fall down elevator shaft, after shooting self in back of head 4 times.
  Where as in US you can get shot by government in clear daylight with everything caught on video and murderers escape all punishment.. Apples and oranges.
3. Re: My suspicion by Anonymous Coward · 2017-10-06 02:24 · Score: 0
  
  Don't forget about the accidental polonium ingestion.
4. Re: My suspicion by gtall · 2017-10-06 02:52 · Score: 1
  
  C'mon, in the U.S. we let the public shoot anyone in the public. Hell, there's even a bill in Congress to allow silencers on guns. And you are worried about the government?
5. Re: My suspicion by Anonymous Coward · 2017-10-06 03:03 · Score: 1
  
  Technically, he destroyed the business rather than comply with the government.
  Lavabit is back, by the way.
6. Re: My suspicion by Anonymous Coward · 2017-10-06 03:17 · Score: 0
  
  Why all the SUVs got to be black? Where are the white SUVs? Such discrimination should not be tolerated.
7. Re:My suspicion by Anonymous Coward · 2017-10-06 03:56 · Score: 0
  
  Source?
8. Re: My suspicion by Anonymous Coward · 2017-10-06 04:06 · Score: 0
  
  I was at my city's high school's stadium last Saturday. There was a JV game and the faculty lot was full of SUV's and Minivans. Of the 100 or so cars in the lot, there was one that was a dark royal blue - and a couple of dark brown/red which appeared almost black (cloudy overcast day) and the rest were black, white, or gray. Why not a Yellow SUV? Fire Engine Red? Lime Green? WTF is up with the US consumer? Ya gotta wonder if the US govt is behind it. Don't you?
9. Re:My suspicion by Anonymous Coward · 2017-10-06 04:29 · Score: 0
  
  Correct. Only spooky figures wearing black suits, sunglasses and hats enter the building prior to sunrise and exit after midnight. All windows have curtains drawn and an amber pulsing halo can be sometimes.
10. Re: My suspicion by bestweasel · 2017-10-06 05:17 · Score: 1
  
  Henry Ford's famous speech still resonates.
  "I have a dream that my four little vehicles will one day live in a nation where they will not be judged by the color of their skin, but by what's under the hood."
11. Re:My suspicion by Anonymous Coward · 2017-10-06 05:29 · Score: 0
  
  Are you on drugs? If there was such a thing, then it wouldn't be placed and spoken of so random people on the Internet, like yourself, gets the wind of it. Whatever you've read, it's nonsense. Use your head.
12. Re: My suspicion by Anonymous Coward · 2017-10-06 07:34 · Score: 0
  
  Or as George Washington once said, "there is a lot of made up quotes on the Internet".
13. Re: My suspicion by Anonymous Coward · 2017-10-06 10:49 · Score: 1
  
  Silencers are already available in much of the US after payment of a tax; the bill would simplify that and allow those who wish to save their hearing while shooting to save some money. With the exception of a few short-range, low-velocity loads silencers do not make guns come anywhere close to 'silent'. In almost all cases it is still dangerous to fire a gun with a silencer without hearing protection (even one shot) because it is still that loud.
  If your education on silencers is Hollywood, I'm sorry to inform you that you've been lied to.
It's an interesting subject by burtosis · 2017-10-06 02:16 · Score: 1

I'm honestly torn between a corporations invasion of personal privacy on one hand, and the anger from the NSA that it identifies thier hacking tools as malware and helps remove thier backdoors. You can't really win as anti virus software is never good and you can be certain no one really has your best interests in mind.
Yet Another Russian Hack of the NSA by Anonymous Coward · 2017-10-06 02:20 · Score: 0

Yet Another Russian Hack of the NSA -- This Time with Kaspersky's Help
"This is either an example the Russians subverting a perfectly reasonable security feature in Kaspersky's products, or Kaspersky adding a plausible feature at the request of Russian Intelligence. In the latter case, it's a nicely deniable Russian information operation. In either case, it's an impressive Russian information operation."
"What's getting a lot less press is yet another NSA contractor stealing top-secret cyberattack software. What is it with the NSA's inability to keep anything secret anymore?"
He actually said that? by hyades1 · 2017-10-06 02:21 · Score: 4, Insightful

"Instead, [Kaspersky] implied that the root of the problem was that Kaspersky Lab had correctly identified the hacking tools the contractor was working on as malware..."
Given the circumstances, this may be the best unintentionally ironic example ever of the well-worn meme, "It's not a bug, it's a feature."

--
I've calculated my velocity with such exquisite precision that I have no idea where I am.
NSA trying to leak ? by Anonymous Coward · 2017-10-06 02:40 · Score: 0

Letting anyone, let alone a contractor, let alone a foreign national, take files, and especially code, to their HOME PC?
This was on purpose, right ?
captcha: dumber
1. Re: NSA trying to leak ? by Brockmire · 2017-10-06 08:48 · Score: 1
  
  Contractors typically work from home, especially if they don't live in the US.
The story smells by guruevi · 2017-10-06 02:43 · Score: 3, Insightful

a) A contractor was allowed to take his work home on an unencrypted, unsecured laptop
b) The contractor was a foreign national (hint: you can't get top secret clearance unless you're a US citizen)
c) The contractor created viruses and malware directly in his "core" work environment, where I suppose he also keeps his e-mail and other stuff, not in a VM
d) The NSA then also installed Kaspersky even though the NSA has quite publicly said Kaspersky is all sorts of bad (unsubstantiated)
So the crux of the story:
1) NSA is lying
2) NSA is incompetent
3) Both

--
Custom electronics and digital signage for your business: www.evcircuits.com
1. Re:The story smells by will_die · 2017-10-06 02:47 · Score: 2
  
  The software was on his personal computer.
  So a, does not apply; b, don't know; c, not the case, he stole copies of the software and installed on personal computer; d, personal computer so he installed kasperksy.
  So none of the cruxes apply.
2. Re:The story smells by chill · 2017-10-06 03:34 · Score: 2
  
  Wow. You're either:
  A) illiterate
  B) lying sack of shit
  C) didn't read the story
  D) All of the above
  Because...
  a) The contractor was NOT allowed to take the work home. The story states it was both a violation of NSA rules and a possible criminal action and is being investigated.
  b) The story doesn't say anything about the nationality of the contractor.
  c) The story doesn't say anything of the sort.
  d) No, the story says EXACTLY THE OPPOSITE.
  
  NSA employees and contractors never had been authorized to use Kaspersky software at work. While there was no prohibition against these employees or contractors using it at home, they were advised not to before the 2015 incident, said people with knowledge of the guidance the agency gave.
  
  The name of the NSA contractor in the Kaspersky-related incident and the company he worked for arenâ(TM)t publicly known. People familiar with the matter said he is thought to have purposely taken home numerous documents and other materials from NSA headquarters, possibly to continue working beyond his normal office hours.
  The man isnâ(TM)t believed to have wittingly aided a foreign government, but knew that removing classified information without authorization is a violation of NSA policies and potentially a criminal act, said people with knowledge of the breach. It is unclear whether he has been dismissed from his job or faces charges. The incident remains under federal investigation, said people familiar with the matter.
  
  --
  Learning HOW to think is more important than learning WHAT to think.
3. Re:The story smells by guruevi · 2017-10-06 03:50 · Score: 2
  
  I read the following:
  The paper reported on Thursday that the NSA contractor, a Vietnamese national who was working to create replacements for the hacking tools leaked by Edward Snowden, was hacked on his personal computer after he took his work home.
  
  --
  Custom electronics and digital signage for your business: www.evcircuits.com
4. Re:The story smells by guruevi · 2017-10-06 03:52 · Score: 1
  
  a still applies because after Snowden they still allow people to take stuff on personal devices
  b is in the summary
  c is in the summary, again, a contractor that creates hacking tools conveniently doesn't know that carrying around malware in your hypervisor environment is bad?
  
  --
  Custom electronics and digital signage for your business: www.evcircuits.com
5. Re:The story smells by Anonymous Coward · 2017-10-06 05:07 · Score: 0
  
  a) This was absolutely not allowed. Also, the method used to transfer the data was not disclosed and nothing about his work computer was mentioned. The contractor was subsequently removed from his position and could face charges. Anyone who works with sensitive information knows that you don't do this and that doing so is an indicator of espionage or the opportunity for espionage.
  b) The contractor was a US citizen born in Vietnam.
  c) His workflow and programming environment were not mentioned.
  d) Unless you're insinuating that the NSA installed software on his personal machine, this makes no sense.
  Everything you said was wrong or speculative.
6. Re:The story smells by Anonymous Coward · 2017-10-06 05:12 · Score: 0
  
  a still applies because after Snowden they still allow people to take stuff on personal devices
  Where are you getting that from? They didn't allow that before Snowden and they sure as hell don't now. They don't allow storing work files on personal devices, they don't allow personal devices on the work network, and, in cases like this, they don't even allow personal devices in the same room the work is being done in.
7. Re:The story smells by guruevi · 2017-10-07 08:46 · Score: 1
  
  How moronic can you be, first you claim that it was his personal laptop, now you claim that they don't even allow personal devices in the same room. The story doesn't match up with reality.
  
  --
  Custom electronics and digital signage for your business: www.evcircuits.com
8. Re:The story smells by guruevi · 2017-10-07 08:54 · Score: 1
  
  No, all of it is in the summary.
  a) Look at your own answer: If he's not allowed to do it, how did it end up on his computer? Snowden supposedly did this a few years ago, they either haven't changed the rules or they still don't enforce them. If he knows it wasn't allowed, then why would he alert his supervisors when the antivirus went full-tilt and how would the NSA know that the malware exited the computer at all? The story doesn't add up - either it's an NSA-controlled computer and they monitor it's ins-and-outs or it's a personal computer and the contractor screwed up but you can't have full knowledge of what happened without having full control over the machine.
  b) Either way, you cannot get TS security clearance if there is even a remote possibility that you have an attachment to a country outside the US. In theory you can but I've worked with DOE-Q clearances, no investigation would clear anyone that has even resided outside the US for a few years, let alone have a heritage.
  c) It made clear that Kaspersky antivirus was installed and that the malware traveled over the Internet - what sane security researcher/programmer would install an antivirus with access to the Internet when you develop "cyberweapons"? Any mistake and you take down half the Internet in a matter of hours.
  d) Well that's what the story is insinuating. If they didn't know about the computer, then it makes no sense that they knew what happened. If they knew what happened, it makes no sense to still consider it a 'personal computer'.
  
  --
  Custom electronics and digital signage for your business: www.evcircuits.com
not the whole story by guygo · 2017-10-06 02:59 · Score: 2

OK, so if - as Gene says - there was just a flag that malware existed on a given computer, and that flag made it all the way back to Kaspersky Central's servers, how did that flag then get to the people who entered the computer and copied the files? That step seems to indicate some kind of inside job and/or collusion between Kaspersky and the black hatters, n'ext-ce pas? So even if Gene and what he thinks is his company were totally sincere (something I doubt is confirmable for any KGB-trained human) in his denials, that log that contained that flag got into the hands of the bad-actors, and Kaspersky IS responsible for THAT.
1. Re: not the whole story by Anonymous Coward · 2017-10-06 04:09 · Score: 0
  
  This is the crux of the matter. Ignore all those people (there are a lot here) waving their arms and pointing at the NSA or the contractor taking secret files home as the important bit of the story. Are Kaspersky cooperating with Russian spooks or do they have a secret back door?
2. Re: not the whole story by Anonymous Coward · 2017-10-06 04:28 · Score: 0
  
  How is that the part of the story you question ? That seems completely plausible. I'm confused as to why you think it is not plausible.
3. Re: not the whole story by Anonymous Coward · 2017-10-06 09:05 · Score: 0
  
  Unclear. What is not plausible?
"Russia denies"... by Anonymous Coward · 2017-10-06 02:59 · Score: 0

Don't believe anything they say, until they officially deny it.
It's so reliable, there's an entire subreddit dedicated to the phenomenon.
https://www.reddit.com/r/RussiaDenies/
captcha: invade
Putting on my tinfoil hat by ChoGGi · 2017-10-06 03:00 · Score: 1

Damn, looks like the U.S. gov really wants to discredit Kaspersky.
1. Re:Putting on my tinfoil hat by Anonymous Coward · 2017-10-06 05:46 · Score: 0
  
  Damn, looks like the U.S. gov really wants to discredit Kaspersky.
  Been going on for some time; I think you are correct, and I can't figure out why. Kaspersky tools have been the best for some time, Russian company or not. Until someone finds explicit undeniable evidence of Kaspersky being actually evil and a front for Russian government interests, I will not believe it.
  On slashdot, there is some large percentage of individuals that have curiosity and focus of applying their ethical code and skills. I think that is what Kaspersky is like, like us, with no loyalty to anything other than getting the job at hand done, solved in the best way possible, which in the case of fighting malware and computer security, means that as a side effect of this curiosity and idealized work ethic compulsion, Kaspersky will be ethical.
  I also have always felt the government employees at NSA, beyond being very bright, are indeed ethical, and they are patriots. I believe more and more, however, that their good efforts and intents are likely being grotesquely distorted at only the highest levels, where politics becomes the head, at the political appointment level and those staffs, which obviously account for a tiny percent of NSA. NSA really has a wonderful and massive creamy center of fantastic talent intending to fulfill the proper mandate of NSA. It just may be, however, that it is encrusted with the dried shit of political monkeying, or at least less intelligent, less talented individuals less able to understand how and why an organization like Kaspersky's could exist and still be good and do good for anyone, regardless of state affiliation.
2. Re:Putting on my tinfoil hat by ChoGGi · 2017-10-06 16:05 · Score: 1
  
  Been going on for some time; I think you are correct, and I can't figure out why.
  No? I assumed it was a combination of the FBI "investigating" them for Russian gov connections, and/or for detecting NSA mal/spyware.
Assume it is true by houghi · 2017-10-06 03:00 · Score: 1

Assume that it is true and they did not where used by the Russians (with or without their consent), why would the NSA say so?
Hold on to your tinfoil hats, here we go.
The NSA has hacked the persons PC. The NSA has given the person the files to put on his PC. The NSA has put a NSA version on the persons PC that looks hacked. The NSA now blames the Russians to have hacked it. People stop using said software and start using software that the NSA has actually hacked.
So now the NSA gets access to people who previously used software that was actually safe and did not have a backdoor.
This so some senators and/or others that they want to have access to stop using it, putting the rest of the world in harms way.
With what the NSA already has pulled of in the past, it somehow does not eve look that weird of a plan and it wil actually work.
The real question is now: do you want the Chinese, the Russians or the Americans read your stuff. I go with the Russians, because the Chinese get the data over my phone (Huawei) and Americans already get data via several other means, like the transatlantic lines. I just don't want the Russians to be left outside the loop.

--
Don't fight for your country, if your country does not fight for you.
How did NSA close the loop? by tomhath · 2017-10-06 04:00 · Score: 3, Interesting

The story is that Russian hackers stole documents from the contractor's laptop, which he had stolen from NSA.
What I haven't seen is how NSA learned that the Russians obtained that information, and how do they know it came from a compromised Kaspersky installation on that particular guy's laptop?
It sounds like all the spooks are hacking each other.
1. Re:How did NSA close the loop? by MobyDisk · 2017-10-06 06:25 · Score: 1
  
  Or it was a setup. The NSA created a fake virus, then planted it on a laptop that ran Kaspersky. Then they listened to the underground to see if someone reported finding a new NSA developed virus.
2. Re:How did NSA close the loop? by AHuxley · 2017-10-06 11:31 · Score: 1
  
  Re "What I haven't seen is how NSA learned that the Russians obtained that information"
  The US gov created some new file that acts like malware in the wild when lost or activated at home.
  All part of the digital contractor buddy system upgrades. Files that report if they get taken outside of any secure US mil/gov location.
  Such prepared file actions would have been detected by any good AV app as new malware in the wild.
  The AV app reports a new sample of unexpected malware code in the OS.
  The US gov notes their new contractor tracking malware got detected in the wild.
  The NSA is tracking all its contractors and their internet connections.
  AV detecting new US malware is presented as US gov files floating around the internet.
  Re " hackers stole documents from the contractor's laptop"
  If Russia had never seen the "documents" how did they know what to look for?
  AV thats not cloud based would not be uploading users random large documents from all over the world randomly.
  People would notice the up bandwidth clogged and note all their documents got AV uploaded on capped bandwidth consumer networks.
  Did the NSA activate its malware into the wild again and see AV detecting US malware actions in the wild in real time?
  Thats what any good AV product would do. AV would report new, strange malware trying to get networking or hide deeper into an OS.
  
  --
  Domestic spying is now "Benign Information Gathering"
3. Re: How did NSA close the loop? by Anonymous Coward · 2017-10-06 12:57 · Score: 0
  
  You seem to have missed the point. Pay attention, Ivan.
  1. Kaspersky AV finds NSA malware on NSA contractors PC.
  2. Kaspersky AV reports NSA malware back to base, as it should.
  3. Russian agents learn about NSA malware. How they did that is an interesting question. Russian agents get excited.
  4. Russian agents hack in to NSA contractors PC and take all his files. Did they use Kaspersky AV to do this?
4. Re:How did NSA close the loop? by MobyDisk · 2017-10-13 15:50 · Score: 1
  
  And now we know how they closed the loop: The Israelis hacked Kaspersky. https://arstechnica.com/information-technology/2017/10/russian-hackers-reportedly-used-kaspersky-av-to-search-for-nsa-secrets/
What's up with the hiring process? by Anonymous Coward · 2017-10-06 04:21 · Score: 0

This stuff keeps happening with contractors. And in this case, a foreign national? From Vietnam???
And the takeaway is... by jasonma84 · 2017-10-06 04:37 · Score: 1

A.) If you aren't a US government employee you should probably have Kaspersky installed on your machine for security reasons. B.) The government has started recruiting foreign nationals to develop cyber espionage software. Not surprising since they have many more options available for silencing recruits that decide they want to go public and since they aren't protected by the US Constitution they can pretty much do whatever they want with them; in secret of course. Yikes!
Comment removed by account_deleted · 2017-10-06 04:59 · Score: 1

Comment removed based on user account deletion
They were told to say that by WillAffleckUW · 2017-10-06 05:07 · Score: 0

Look, I hake to wake you up, sunshine, but we're in Cold War III right now.
And the Russians aren't our friends. Nor are the Saudis.

--
-- Tigger warning: This post may contain tiggers! --
hint: look at their malware discoveries by hlee · 2017-10-06 05:34 · Score: 1

I use Kaspersky at home. During my research, I looked up what malware Kaspersky Labs had discovered and wanted to see if they'd be bold enough to uncover any Russian state sponsored malware - there weren't any, while they did discover several with links back to NSA and Israel - interesting, but didn't think much more of it.
Best case scenario is that Kaspersky do not have ties to government, but they're not stupid enough to reveal Russian state sponsored malware either (if they did so publically, I can't imagine them being allowed to operate in Russia). What this means is you cannot count on Kaspersky to protect you from malware developed by Russian authorities (at least not until they're public knowledge), but then again, it is unlikely any commercial product would either.
Another theory: NSA set this up by MobyDisk · 2017-10-06 06:23 · Score: 2

Another theory: The NSA suspected a Russian agent. They suspected someone at Kaspersky. So they setup a test: Put Kaspersky on a laptop, put something valuable on the laptop that would be found by Kaspersky AntiVirus, then wait and see what happens.
The result is they successfully baited out the hacker.
Alternative theory: The NSA wanted to discredit Kaspersky, so they put something on the laptop that they new Kaspersky antivirus would find. Maybe Kaspersky automatically downloaded that file, and now the NSA can say "look, Kaspersky is a front for Russian hackers! They used it to download our secret stuff!"
1. Re:Another theory: NSA set this up by MobyDisk · 2017-10-13 15:49 · Score: 1
  
  Ha! It is looking more like my first theory was right. And now we know how the NSA knew that Kaspersky had the files in question. https://arstechnica.com/information-technology/2017/10/russian-hackers-reportedly-used-kaspersky-av-to-search-for-nsa-secrets/
I don't know about you guys... by Anonymous Coward · 2017-10-06 10:21 · Score: 0

but I'm glad we don't have any shadowy government agencies in the US that are under the umbrella of the DoD and have a penchant for illegally spying on American citizens or otherwise our antivirus products would be suspect as well!
His name was Seth Rich by Anonymous Coward · 2017-10-06 13:47 · Score: 0

> The British intelligence are our ALLIES, and have been for decades.
I didn't realize we'd declared war on Russia, and they were also allies during WWII, so you'll have to be clearer about who you think is on our enemies list and exactly why. Not that I can't guess your reasoning, but I think it's circular to put them there for the very thing you wish to prove to be bad. I thought this was all about "foreign collusion" which is apparently only a bad thing if you're not having the FBI pay British spies $100k to compile opposition research from your wedge candidate in Utah and wiretapping the other candidate. There are some hilarious memes out there with the CNN headlines alternating between saying Trump was & wasn't wiretapped thanks to that one. Not to mention the popular opinions on Comey & the FBI going back and forth faster than Forest Gump's ping pong balls, but I digress.
I also note that you apparently haven't realized that the dossier in question was never verified by any of the media outlets in any meaningful way, despite many attempts, was proven to place someone in entirely the wrong country due to confusion with someone of the same name unconnected to Trump, and it appears to have sourced its most infamous allegations from a rumor started by /pol, who fed a ridiculous fanfic to assorted media outlets.
Finally, don't you consider it just a bit strange that they're not even attempting to interview Wikileaks to ask for information about who gave it what? I don't know about you, but I think it's strange that they wouldn't even interview a key witness who offered to talk to them.
But let me guess, you won't actually respond to any of these points with any kind of facts and will instead post some absurd insult? Because that's what I see 90% of the time here on Slashdot. Hurr durr! You posted as AC! I don't even have to try to bring facts into the debate! I'll shout some talking points and throw out an insult, that's totally convincing! Maybe I should tell you guys that anonymous sources told me that ridiculous rejoinders like that erode public support? That usually gets you to believe things. Hell, you guys even believed that nonsensical story about the bank communicating with a 3rd party marketing site for Trump when it was some stray DNS queries caused by Russian spam back when it hit Slashdot.
Is this news? by Anonymous Coward · 2017-10-06 18:54 · Score: 0

In other news, the president of the united states denied having a sex dungeon under the white house. He hasn't denied one below the pentagon, so we assume it exists.
Maybe by Anonymous Coward · 2017-10-07 05:16 · Score: 0

So, if they programmed in a series of vectors that could be potentially exploited at the behest of the Russians, could they still say they weren't involved in the Russian hacking? Perhaps, because technically they weren't. They just left a couple of doors open. I imagine something similar to that is what is factual.