The Kaspersky Breach is the Tip of a Complicated Iceberg


The Washington Post reported that the Department of Homeland Security (DHS) ban of Kaspersky Lab software stems from a hack by Israeli spies in 2015. That breach revealed the Moscow-based firm’s cybersecurity platform may have a backdoor to the Russian government. After the 2015 hack, the National Security Agency (NSA) was notified that some of their confidential material was discovered on Kaspersky Lab networks and had fallen into the hands of the Russians. Kaspersky Lab anti-virus software uses a detection tool known as silent signatures to find malware; but that programming code can operate in the same stealth fashion to search computers for confidential files. Another factor contributing to the DHS ban is that all Kaspersky Lab operations are run through Russian internet service providers; therefore, subject to Russian surveillance. Over the past two years, the FBI has notified major companies, including in the energy and financial sectors, about the risks of using Kaspersky software including sabotage and supply-chain attacks. If you’re using Kaspersky Lab anti-virus software, take note of the potential backdoor and the risk of a breach.

#ITSecurity #Kasperskyban #Silentsignatures #DHS #NSA #Softwarebackdoor

© 2020 Insite Risk Management