The advisory did not accuse Kaspersky Lab of any specific security violations, but it warned that certain organizations and authorities could be particularly vulnerable. The German security agency is now recommending companies to replace the Kaspersky antivirus solution with alternative products non-Russian software vendors.
German Cybersecurity Agency Warns of Security Flaw in Kaspersky Antivirus
The statement from Kaspersky follows a warning from Germany's cybersecurity authority, the Bundesamt für Sicherheit in der Informationstechnik aka BSI, which recommended "replacing applications from Kaspersky's portfolio of antivirus software with alternative products" due to risks that they could be exploited by Russia for a cyber attack.
This is a story of how a "feature" that exists in all of Kaspersky Lab's antivirus software for Windows since 2016, which was discovered by a German journalist earlier this year, led to a major security issue that let cybercriminals track millions of Kaspersky customers without their knowledge.
Kaspersky is a Moscow-based cybersecurity and antivirus provider founded in 1997, that has a long history of success, but also controversy over the company's possible relationship with the Russian government.
The German Federal Office for Information Security warns about the use of antivirus software from the Russian manufacturer Kaspersky. No surprising, since security is a matter of trust. Security software even more so.
The CERT-UA reported on an APT28 phishing campaign, in which the threat actors sent email messages impersonating the cybersecurity agency. The messages contained RAR archives with SFX files, distributing the malicious program CredoMap_v2. The program used HTTP POST requests to send stolen user credentials to a web resource, hosted on the Pipedream platform.
The German Federal Office for Information Security agency (BSI) issued an alert urging its citizens to replace Kaspersky antivirus software with another defense solution, due to alleged ties to the Kremlin. The agency suggested Kaspersky could be used as a tool in the cyber conflict between Russia and Ukraine.
Forbes. (2019). Warning: A Security Flaw In Kaspersky AntiVirus Lets Hackers Spy Users Online, Millions At Risk. forbes.com/sites/jeanbaptiste/2019/08/16/warning-a-security-flaw-in-kaspersky-antivirus-lets-hackers-spy-users-online-millions-at-risk/?sh=1cef72e9ba34
Kaspersky Labs is a global provider of anti-virus security solutions for businesses and home users. The platform is used by over 400 million users worldwide, and over 240,000 companies: making it the fourth largest antivirus software in the world, and the largest cybersecurity vendor in Europe.
ESET is a global provider of leading cybersecurity technologies, including antivirus, security awareness training, email security and authentication solutions. ESET is used in more than 200 countries and has been an antivirus market leader for 30-years. The company was founded in 1992, and is headquartered in Bratislava, Slovak Republic.
The UK's cybersecurity agency has issued a warning to government departments on the potential risks of using Russian antivirus or security software because of fears the Kremlin could use it to conduct espionage.
There have been concerns about the Russian-based security provider Kaspersky for years. Since the end of 2017, there has been an order in the US banning the use of Kaspersky products in US authorities. And in the Netherlands, too, there has been a government order since 2018 to ban Kaspersky products on government systems. After Russia's invasion of Ukraine, this question of whether antivirus products from the Russian company Kaspersky can be used without hesitation in companies and authorities has also become red-hot in Germany. In my blog post Can Kaspersky still be used as security solution? I pointed out this issue. Finally, the German Federal Office for Information Security (BSI) has recommended replacing anti-virus software from the Kaspersky company with alternative products. I have addressed details in the blog post German Cyber Guard BSI warns now against the use of Kaspersky antivirus products. It is a preventive measure to limit the risk of Kaspersky being forced by the Russian government to build backdoors into their protection software.
Similar articles:Can Kaspersky still be used as security solution?German Cyber Guard BSI warns now against the use of Kaspersky antivirus productsKaspersky remover may triggers VSS error 0x81000203
Summary: The Apache Struts security flaw was identified by "a cybersecurity armof the US Department of Homeland Security". Equifax has said that theywere aware of this in March and tried to patch their vulnerable systems.They apparently overlooked their "online dispute portal", and monthslater they discovered that 143 million consumers had had their personalinformation accessed by operators unknown. 2ff7e9595c
ความคิดเห็น