Biden bans massive antivirus software company due to Russian hacker concerns
Kaspersky Lab makes some of the best cybersecurity software around. Is it also a front for the Russian government?
Whether you know it or not, odds are good that you have at some point in your life worked with Kaspersky Lab software. Founded in the late 1990s, the Moscow tech company has spent decades cementing its reputation as a global powerhouse in antiviral and cybersecurity products. It claims on its website to serve some 400 million users and 250,000 corporate clients, all in the name of "building a safer world" in which "technology improves all of our lives."
Despite its position in the uppermost echelons of elite cybersecurity businesses, Kaspersky has long been dogged by allegations of Russian government influence, leading in part to a 2017 U.S. government ban on using the company's software on federal computers. Those tensions reached a crescendo last week, however, when Commerce Secretary Gina Raimondo announced plans to "prohibit Kaspersky Lab and all of its affiliates, subsidiaries and parent company from providing cyber security and antivirus software anywhere in the United States" in a call with reporters. While Kaspersky's alleged susceptibility to Russian influence has "certainly been on the government's radar for a number of years," the "malign activity from Russia in particular over the past couple of years" led the government to "more broadly address this threat," said Commerce Department's Office of Information and Communications Technology and Services head Liz Cannon to NPR last week.
'Undue and unacceptable risks'
Kaspersky "poses undue and unacceptable risks to U.S. national security and to the security and safety of U.S. persons," The Commerce Department said in an investigation into the company. Broadly, there are "three particular risks" to Americans, Cannon said. Not only does its software give Kaspersky "essentially administrator access to the devices on which it operates," but it can "inject malware, or it can choose to withhold critical updates" as well. These, plus the fact that Kaspersky is "subject to the direction and control of the Russian government" were what elevated the issue to the "level of a real national security threat." Prior to the 2017 federal systems ban, Kaspersky had faced an "internal power struggle that placed allies of Russia's secret services against 'tech-savvy' staff and Western investors,'" Semafor said.
The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
The ban on Kaspersky software within the United States is thanks to "relatively new Commerce Department authorities built on executive orders signed by Presidents Joe Biden and Donald Trump," CNN said. Shortly after the Commerce Department announced the impending ban, the Treasury Department sanctioned a dozen people in senior leadership roles within the company, but not Kaspersky itself, nor "its parent or subsidiary companies, or its CEO."
The one-two punch of product bans and personnel sanctions comes as the Biden administration is "trying to stamp out any risks of Russian cyberattacks stemming from Kaspersky software and keep squeezing Moscow as its war effort in Ukraine has regained momentum and the United States has run low on sanctions it can impose on Russia," Reuters said. Kaspersky has denied the allegations of Russian influence and cyber-threats, and alleged in a statement that the government's ban is instead "based on the present geopolitical climate and theoretical concerns, rather than on a comprehensive evaluation of the integrity of Kaspersky's products and services." Kaspersky has also threatened to sue the government over the ban, a case that would "set up a high-stakes legal test of Commerce's national security authorities," Wired said.
'Cybersecurity and associated risks'
The Kaspersky ban is not set to take immediate effect. Instead, the company will be allowed to proceed with "certain operations in the United States" until the final deadline of Sept. 29, the Biden administration said. In the meantime, it can continue "providing antivirus signature updates and codebase updates" for users and clients as they "find suitable alternatives" to Kaspersky's services.
Crucially, users who continue to rely on Kaspersky products after the ban is fully in place "will not face legal penalties," the government explained. However, anyone who continues using the company's software "assumes all the cybersecurity and associated risks of doing so."
While the government's final determination to institute the ban does not list any specific instances of Russian governmental exploitation of Kaspersky products, "we certainly believe that it is more than just a theoretical threat" said one Commerce Department official to CNN.
-
7 bars with comforting cocktails and great hospitalitythe week recommends Winter is a fine time for going out and drinking up
-
7 recipes that meet you wherever you are during winterthe week recommends Low-key January and decadent holiday eating are all accounted for
-
Nine best TV shows of the yearThe Week Recommends From Adolescence to Amandaland
-
The MAGA civil war takes center stage at the Turning Point USA conferenceIN THE SPOTLIGHT ‘Americafest 2025’ was a who’s who of right-wing heavyweights eager to settle scores and lay claim to the future of MAGA
-
Who is paying for Europe’s €90bn Ukraine loan?Today’s Big Question Kyiv secures crucial funding but the EU ‘blinked’ at the chance to strike a bold blow against Russia
-
Trump aims to take down ‘global mothership’ of climate scienceIN THE SPOTLIGHT By moving to dismantle Colorado’s National Center for Atmospheric Research, the White House says it is targeting ‘climate alarmism’
-
DOJ targets ‘disparate impact’ avenues of discrimination protectionIN THE SPOTLIGHT By focusing solely on ‘intentional discrimination,’ the Justice Department risks allowing more subtle forms of bias to proliferate
-
Homeland Security Secretary Kristi Noem might not be long for TrumplandIN THE SPOTLIGHT She has been one of the most visible and vocal architects of Trump’s anti-immigration efforts, even as her own star risks fading
-
Will there be peace before Christmas in Ukraine?Today's Big Question Discussions over the weekend could see a unified set of proposals from EU, UK and US to present to Moscow
-
Constitutional rights are at the center of FBI agents’ lawsuitIn the Spotlight The agents were photographed kneeling during a racial justice protest
-
The Trump administration says it deports dangerous criminals. ICE data tells a different story.IN THE SPOTLIGHT Arrest data points to an inconvenient truth for the White House’s ongoing deportation agenda
