For years, cyber threat professionals have warned against installing Kaspersky on any computer. Now, German cybersecurity agency BSI on 16 March 2022 urged consumers not to use anti-virus software made by Russia's Kaspersky, warning the firm could be implicated in hacking assaults amid Russia's war in Ukraine. Russia's military and intelligence activities in Ukraine, and its threats to EU and NATO allies, particularly Germany, mean there is "a considerable risk of a successful IT attack", the Federal Cyber Security Authority (BSI) said in a statement.
"A Russian IT manufacturer can itself carry out offensive operations, can be forced to attack target systems against its will, or be itself spied on as a victim of a cyber operation without its knowledge, or be misused as a tool for attacks against its own customers," the agency warned. Companies and operators of critical infrastructure are particularly vulnerable but individuals could also be hit, the BSI said, inviting anyone in doubt to contact it for advice.
The United States banned government agencies from using Kaspersky software as early as 2017. Kaspersky has always rejected accusations that it works with the Kremlin. But its business was badly hit by the US ban, which came into effect at a time when the company's software was installed on hundreds of millions of computers worldwide.
The Moscow-based company, however, noted that it had shifted its cyber-threat-related data processing infrastructure to the Swiss city of Zurich in 2018 and that its data services and engineering practices have been subjected to independent third-party assessments. Cyber threat analysts continue to be concerned about potential back doors and Trojans that could be activated sometime in the future.
In March 2022, Eugene Kaspersky, CEO of the namesake company, struck a neutral tone, hoping that negotiations between Ukraine and Russia would lead to "a compromise," to distance the organization from being branded as siding with Russia. "We believe that peaceful dialogue is the only possible instrument for resolving conflicts," Kaspersky tweeted on 1 March. "War isn't good for anyone."
Military and cyber specialists fear that Russia's invasion of Ukraine could lead to an outbreak of cyberattacks a "cyber Armageddon" which would have major consequences for civilians in both countries and also globally, through a spillover effect. A worst-case scenario has so far been avoided, as the attacks observed appear to be contained in their impact and geographical scope.
Germany has in recent years repeatedly accused Russia of cyber espionage attempts.
The most high-profile incident blamed on Russian hackers to date was a cyberattack in 2015 that paralyzed the computer network of the lower house of parliament, the Bundestag, forcing the entire institution offline for days while it was fixed.
Russia denies being behind such activities and Putin declined to comment for this media report.[1]
Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization. For questions, comments or assistance, please contact the office directly at 1-844-492-7225, or feedback@wapacklabs.com
Weekly Cyber Intelligence Briefings:
- Reporting: https://www.redskyalliance.org/
- Website: https://www.wapacklabs.com/
- LinkedIn: https://www.linkedin.com/company/64265941
Weekly Cyber Intelligence Briefings:
REDSHORTS - Weekly Cyber Intelligence Briefings
https://attendee.gotowebinar.com/register/5504229295967742989
[1] https://www.securityweek.com/germany-warns-against-russias-kaspersky-anti-virus-software
Comments