The U.S. Department of Commerce's Bureau of Industry and Security (BIS) has issued a Final Determination prohibiting Kaspersky Lab, Inc., and its affiliates from providing anti-virus software and cybersecurity services in the United States. This unprecedented action is aimed at addressing potential national security risks posed by Kaspersky's operations.
In its announcement, BIS highlighted that Kaspersky, a Moscow-based cybersecurity firm, poses an unacceptable national security risk due to its potential ties with the Russian government. This determination comes after a thorough investigation by the Office of Information and Communications Technology and Services (OICTS), marking the first use of ICTS authorities to prohibit specific ICTS transactions. The banned entities include Kaspersky Lab and its affiliates, such as AO Kaspersky Lab and OOO Kaspersky Group in Russia, and Kaspersky Labs Limited in the UK, for their alleged cooperation with Russian military and intelligence authorities.
The U.S. government's decision stems from concerns over Kaspersky's jurisdiction under Russian law, which could compel the company to provide sensitive U.S. customer data to the Russian government. Furthermore, Kaspersky's software could potentially be used to install malicious programs or deny critical updates, exposing U.S. systems to cyber threats.
Kaspersky Lab, known for its cybersecurity solutions offering protection against malware, hackers, and cyber espionage, will no longer be able to sell or update its software in the U.S. beyond September 29, 2024. This move affects the millions of Kaspersky users in the U.S., who are now urged to transition to alternative cybersecurity solutions to avoid potential security risks. After the set deadline, those products may still operate where they are installed, however, there will be no updates on their virus definitions, and hence their effectiveness will gradually fade.
Kaspersky denies allegations
Kaspersky has responded via a statement, asserting that the Commerce Department's decision is based on geopolitical tensions rather than a fair assessment of their product integrity. The company emphasized its independence and transparency, claiming significant contributions to cybersecurity, including protecting against threats targeting U.S. interests. That being said, Kaspersky intends to explore all legal avenues to challenge the ban and maintain its operations and client relationships in the U.S.
Historically, Kaspersky has faced scrutiny from the U.S. government. In 2017, the Department of Homeland Security directed federal agencies to remove Kaspersky products, and the 2018 National Defense Authorization Act prohibited their use by the federal government. The Federal Communications Commission also listed Kaspersky's products as a threat to national security in March 2022.
Leave a Reply