Germany Warns About Russian Anti-Virus Software

Germany's Federal Office for Information Security (BSI) cyber security authority has warned against using anti-virus software from Russian headquartered company Kaspersky. 

The BSI issued the statement concerning the conflict in Ukraine and said that the Russian information-technology businesses could be spied on, or forced to launch cyber attacks. 

The BSI has made no allegation of current problems with Kaspersky's products, but said the conflict in Ukraine and Russian threats against the European Union, NATO and Germany brought with them the risk of cyber attacks.

Kaspersky told BBC News that this notification had been "made on political grounds" and that it had no ties to the Russian government. "A Russian IT manufacturer can carry out offensive operations itself, be forced against its will to attack target systems, or be spied on as a victim of a cyber operation without its knowledge or as a tool for attacks against its own customers," the warning said.

The BSI advises that Kaspersky anti-virus products should be replaced with alternatives, but carefully, to avoid weakening defences.

Previously in 2017, US President Trump signed legislation banning Kaspersky software's use within the American Government Also in 2017, UK's National Cyber Security Centre said it would contact all government departments with concerns over the use of Kaspersky systems products relating the issues to national security.

Following the BSI warning, Eintracht Frankfurt football club spokesman Axel Hellmann told Bloomberg: "We have notified Kaspersky management that we are terminating our sponsorship agreement effective immediately... We very much regret the development." The high profile brand sponsorship deal that Kaspersky has with the Ferrari F1 motor racing team has not been affected, to date.

Kaspersky said it would seek clarification from the BSI on its decision, which was "not based on a technical assessment of Kaspersky products" and how to address its concerns.

As a private global cyber security Kaspersky said it does not have any ties to the Russian or any other governments and that its data-processing infrastructure has been moved to Switzerland in 2018. "The security and integrity of our data services and engineering practices have been confirmed by independent third-party assessments.. We believe that peaceful dialogue is the only possible instrument for resolving conflicts," it said.

Similar remarks on Twitter by founder Eugene Kaspersky two weeks ago attracted strong criticism from various other senior industry figures. 

Background Published By BSI

“For over a decade now, information technology has been changing our lives at a rapid rate: the Internet and mobile telecommunication have become the foundation for new forms of communication, commerce, and entertainment.

“Not only private industry has successfully made use of the new technical capabilities: public administrations now use modern IT to optimise their processes and to be able to offer citizens improved services. The term “e-Government” covers numerous online activities and may make many trips to public offices unnecessary in the future.”

“However, one basic human need must not be ignored: the need for security. It takes the knowledge and action of every person involved to maintain security in society. This applies especially to IT security since the threats to security often go unnoticed at first glance and are often underestimated.

“As a national cyber security authority, the goal of the Federal Office for Information Security (BSI) is to promote IT security in Germany. The BSI is first and foremost the central IT security service provider for the federal government in Germany."

“However, we also offer our services to IT manufacturers as well as private and commercial users and providers of information technology because effective security is only possible when everyone involved contributes. “For this reason, we want to work in even closer co-operation with all those working in the IT and Internet industry in the field of IT security.”

BSI:      Twitter / Eugene Kaspersky:     Bloomberg:     BBC

You Might Also Read: 

Germany Accuses Russia Of Electoral Interference:

 

« The Global Cyber Security Market Set To Grow By $190 Billion
In Many Cases Active Directory Is The Last Line Of Defence »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

European Council on Foreign Relations (ECFR)

European Council on Foreign Relations (ECFR)

ECFR is a pan-European think-tank conducting research and promote informed debate on European foreign policy. Cyber security is becoming an intrinsic element of foreign policy debate.

Fortify Experts

Fortify Experts

Fortify Experts is a search and recruitment firm specializing in Cyber Security.

ISF Annual World Congress

ISF Annual World Congress

ISF Annual World Congress, our flagship global event, offers attendees an opportunity to discuss and find solutions to current security challenges.

General Dynamics Information Technology

General Dynamics Information Technology

General Dynamics IT delivers cyber security services to defend critical information and infrastructure.

qSkills

qSkills

QSkills is an independent training provider specialized high-quality IT and IT management training courses including IT security.

4iQ

4iQ

4iQ fuses surface, social, deep and dark web sources to research and assess risks to people, infrastructure, intellectual property and reputation.

ECS

ECS

ECS is a leading information technology provider delivering cloud, cybersecurity, software development, IT modernization, and advanced science and engineering services.

DataArt

DataArt

DataArt is a global technology consultancy that designs, develops and supports unique software solutions. Areas of activity include software security testing.

CyberASAP

CyberASAP

CyberASAP provides expertise, knowledge and support to convert academic ideas into commercial products in the cyber security space.

Swarmnetics

Swarmnetics

Swarmnetics helps customers discover hard-to-find software vulnerabilities by hacking your system before the bad guys do.

DarkOwl

DarkOwl

DarkOwl provides the world’s largest index of darknet content and the tools to efficiently find leaked or otherwise compromised sensitive data.

Infosec Global

Infosec Global

Infosec Global provides technology innovation, thought leadership and expertise in cryptographic life-cycle management.

Private Machines

Private Machines

Private Machines develops unique patent-pending technology protects cloud and data center workloads.

Trustify

Trustify

Trustify is a Managed Security Service Provider offering a suite of world-class Cyber Risk Management services.

11:11 Systems

11:11 Systems

11:11 Systems synchronizes every aspect of network services for your business. Build your network with the industry’s most trusted expert skills.

Shorebreak Security

Shorebreak Security

Shorebreak Securioty specialize in conducting highly accurate, safe, and reliable Information Security tests to determine the risks posed to your business.