cyber-directive

Cyber Corner: New Directive for Kaspersky Products

NEW DIRECTIVE FROM DHS FOR FEDERAL AGENCIES REGARDING KASPERSKY PRODUCTS

The Department of Homeland Security (DHS) has issued a directive to federal agencies ordering them to identify Kaspersky products on their information systems within 30 days and begin to discontinue their use within 90 days. This directive does not apply directly to contractors and suppliers at this point, but we would like to make you aware of the concern the U.S. Government has expressed with respect to Kaspersky.

The order applies only to civilian government agencies and not the Pentagon, but U.S. intelligence leaders said earlier this year that Kaspersky was not allowed on military networks. In a statement accompanying its directive, DHS said it was “concerned about the ties between certain Kaspersky officials and Russian intelligence and other government agencies, and requirements under Russian law that allow Russian intelligence agencies to request or compel assistance from Kaspersky and to intercept communications transiting Russian networks.”

The U.S. General Services Administration (GSA) and NASA SEW also removed Kaspersky Lab from its list of approved vendors for federal systems in August. Please visit the DHS website for complete details.