Germany Warns About Russian Anti-Virus Software

Germany's Federal Office for Information Security (BSI) cyber security authority has warned against using anti-virus software from Russian headquartered company Kaspersky. 

The BSI issued the statement concerning the conflict in Ukraine and said that the Russian information-technology businesses could be spied on, or forced to launch cyber attacks. 

The BSI has made no allegation of current problems with Kaspersky's products, but said the conflict in Ukraine and Russian threats against the European Union, NATO and Germany brought with them the risk of cyber attacks.

Kaspersky told BBC News that this notification had been "made on political grounds" and that it had no ties to the Russian government. "A Russian IT manufacturer can carry out offensive operations itself, be forced against its will to attack target systems, or be spied on as a victim of a cyber operation without its knowledge or as a tool for attacks against its own customers," the warning said.

The BSI advises that Kaspersky anti-virus products should be replaced with alternatives, but carefully, to avoid weakening defences.

Previously in 2017, US President Trump signed legislation banning Kaspersky software's use within the American Government Also in 2017, UK's National Cyber Security Centre said it would contact all government departments with concerns over the use of Kaspersky systems products relating the issues to national security.

Following the BSI warning, Eintracht Frankfurt football club spokesman Axel Hellmann told Bloomberg: "We have notified Kaspersky management that we are terminating our sponsorship agreement effective immediately... We very much regret the development." The high profile brand sponsorship deal that Kaspersky has with the Ferrari F1 motor racing team has not been affected, to date.

Kaspersky said it would seek clarification from the BSI on its decision, which was "not based on a technical assessment of Kaspersky products" and how to address its concerns.

As a private global cyber security Kaspersky said it does not have any ties to the Russian or any other governments and that its data-processing infrastructure has been moved to Switzerland in 2018. "The security and integrity of our data services and engineering practices have been confirmed by independent third-party assessments.. We believe that peaceful dialogue is the only possible instrument for resolving conflicts," it said.

Similar remarks on Twitter by founder Eugene Kaspersky two weeks ago attracted strong criticism from various other senior industry figures. 

Background Published By BSI

“For over a decade now, information technology has been changing our lives at a rapid rate: the Internet and mobile telecommunication have become the foundation for new forms of communication, commerce, and entertainment.

“Not only private industry has successfully made use of the new technical capabilities: public administrations now use modern IT to optimise their processes and to be able to offer citizens improved services. The term “e-Government” covers numerous online activities and may make many trips to public offices unnecessary in the future.”

“However, one basic human need must not be ignored: the need for security. It takes the knowledge and action of every person involved to maintain security in society. This applies especially to IT security since the threats to security often go unnoticed at first glance and are often underestimated.

“As a national cyber security authority, the goal of the Federal Office for Information Security (BSI) is to promote IT security in Germany. The BSI is first and foremost the central IT security service provider for the federal government in Germany."

“However, we also offer our services to IT manufacturers as well as private and commercial users and providers of information technology because effective security is only possible when everyone involved contributes. “For this reason, we want to work in even closer co-operation with all those working in the IT and Internet industry in the field of IT security.”

BSI:      Twitter / Eugene Kaspersky:     Bloomberg:     BBC

You Might Also Read: 

Germany Accuses Russia Of Electoral Interference:

 

« The Global Cyber Security Market Set To Grow By $190 Billion
In Many Cases Active Directory Is The Last Line Of Defence »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Ambersail

Ambersail

Ambersail provide Penetration Testing and Cyber Security Compliance services.

Gurucul

Gurucul

Gurucul predictive security analytics protects against insider threats, account compromise and data exfiltration on-premises and in the cloud.

EdgeWave

EdgeWave

EdgeWave provides simple but highly effective data security and advanced threat protection in solutions that are affordable, scalable and easy to use.

PrimeKey

PrimeKey

PrimeKey provides organisations with the ability to implement security solutions such as e-ID, e-Passports, authentication, digital signatures, unified digital identities and validation.

Ritz

Ritz

Ritz is the largest holistic pure-play cyber security solutions provider in Myanmar.

Startup Wise Guys

Startup Wise Guys

Startup Wise Guys is a mentorship-driven accelerator program for early stage B2B SaaS, Fintech, Cybersecurity & Defense AI startups.

Portshift

Portshift

Portshift leverages the power of Kubernetes and Service-Mesh to deliver a single source of truth for containers and cloud-native applications security.

CENSUS

CENSUS

CENSUS is a Cybersecurity services provider offering services to multiple industries worldwide such as Security Testing, Code Auditing, Secure SDLC, Vulnerability Research and Consulting Services.

Quside

Quside

Quside, a spin-off from The Institute of Photonic Sciences in Barcelona, designs and manufactures innovative quantum technologies for a wide range of applications including cyber security.

EasyDMARC

EasyDMARC

EasyDMARC deliver the most comprehensive product for anyone who strives to build the most secure possible defence system for their email ecosystem.

Cognisys Group

Cognisys Group

Cognisys provides cyber security penetration testing and compliance services from its offices in Leeds and Manchester.

Curatrix Technologies

Curatrix Technologies

Curatrix Technologies is a Managed IT Service provider based in Hampshire, UK, providing high quality and reliable Managed IT Services since 2015.

Silent Circle

Silent Circle

Silent Circle is the leader in end-to-end enterprise solutions for secure mobile communications.

Queen Consulting & Technologies

Queen Consulting & Technologies

Queen Consulting & Technologies specialize in providing IT support, management, and Security to Gov’t Contractors, CPAs, and Nonprofits.

CyberKinetics

CyberKinetics

CyberKinetics specializes in cloud-based services and solutions for federal agencies and commercial clients with compliance mandates.

CyberGuardPro

CyberGuardPro

CyberGuardPro is a premier cybersecurity firm that prioritizes safeguarding businesses and individuals from the evolving landscape of digital threats.