Russian Cybersecurity Software Found on U.S. Government Computers Roughly one-sixth of U.S. agencies found a Russian cybersecurity firm’s software on their computers By Paul Sonne

https://www.wsj.com/articles/russian-cybersecurity-software-found-on-u-s-government-computers-1510693733?mod=nwsrl_africa_news&cx_refModule=nwsrl#cx_testId=16&cx_testVariant=ctrl&cx_artPos=13

WASHINGTON—Roughly one-sixth of American agencies found a Russian cybersecurity firm’s software on their computers after the U.S. government ordered them to look for the company’s products and remove them.

Jeanette Manfra, the Department of Homeland Security’s assistant secretary for cyber-security and communications, said all but six of the government’s 102 agencies and departments have submitted reports to DHS about removing Kaspersky Labs products. Those six are too small to conduct the assessment themselves and are working with DHS on the matter.

Ms. Manfra said 15% of the 96 who responded had found the Moscow-based company’s products on their systems. The deadline for federal agencies to remove Kaspersky’s software is Dec. 12. She didn’t say how many of the agencies that identified Kaspersky products on their computers already had removed them.

DHS ordered federal agencies to take action on the software in September. At the time, the department expressed concern that the broad access to files and elevated privileges Kaspersky antivirus products enjoy on government computers could be exploited by malicious cyber actors. The department also cited alleged ties between Kaspersky corporate officials and Russian intelligence agencies, as well as Russian laws that allow authorities to compel assistance from Kaspersky and intercept communications transiting Russian networks.

“Out of all the federal agencies, a small number have identified use of Kaspersky… about 15% of agencies that have reported,” Ms. Manfra said. “We’re working with each agency individually. Some of them have chosen to go ahead and remove the products ahead of schedule.”

Kaspersky has repeatedly denied allegations that Russian intelligence has targeted American networks through its cyber-security products.

The Wall Street Journal reported in October that hackers suspected of working for the Russian government targeted a National Security Agency contractor through the contractor’s use of Kaspersky Lab antivirus software and stole details of how the U.S. penetrates foreign computer networks.

In a statement then, Kaspersky said it had “not been provided any information or evidence substantiating this alleged incident.”

Ms. Manfra said Tuesday that DHS was working through a process to identify any national security breaches facilitated by Kaspersky products.

“We do not currently have conclusive evidence that they have been breached,” she said, adding that she was continuing to review the matter.

On Tuesday, Kaspersky noted that inconclusiveness in a statement, adding: “The company’s priority continues to be providing clients with its proven cybersecurity services and solutions, as well as working with the IT security community to help protect everyone from cybercrime,” Kaspersky said.

Current and former U.S. officials, however, have told The Journal that the Russian government used Kaspersky’s popular antivirus software to secretly scan computers around the world for classified U.S. government documents and top-secret information, modifying the program to turn it into an espionage tool.

The government of Israel first alerted the U.S. that Kaspersky software was being used to find American intelligence information, after Israel’s own computer spies penetrated the networks of Kaspersky Lab beginning in 2014, the current and former officials said.

Comments are closed.