Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
The Department of Home Affairs cites “unacceptable security risk” behind the ban on Russian security software.
The Australian federal government has announced a ban on all services and software provided by Russian cyber security company Kaspersky Lab.
Citing possible security risks, government agencies must remove any installed Kaspersky products and refrain from installing any in the future.
“After considering threat and risk analysis, I have determined that the use of Kaspersky Lab, Inc products and web services by Australian government entities poses an unacceptable security risk to Australian government, networks and data, arising from threats of foreign interference, espionage and sabotage,” Stephanie Foster, secretary of the Department of Home Affairs, said in a 17 February statement.
“I have also considered the important need for a strong policy signal to critical infrastructure and other Australian governments regarding the unacceptable security risk associated with the use of Kaspersky Lab, Inc products and web services.”
Foster also noted that government agencies “must manage the risks arising from Kaspersky Lab’s extensive collection of user data and exposure of that data to extrajudicial directions from a foreign government that conflict with Australian law”.
Agencies will have until 1 April 2025 to comply with the directive and file a report with the Department of Home Affairs’ Commonwealth Security Policy Branch.
However, agencies can make a case for the use of Kaspersky products where there is “a legitimate business reason, limited to national security and regulatory functions”.
A spokesperson for Kaspersky has said the company is disappointed in the Australian government’s decision.
“Kaspersky is disappointed with the decision of the Department of Home Affairs of Australia to stop and prevent the use of Kaspersky products and web services on Australian government systems and devices,” Kaspersky said in a widely reported statement.
“Kaspersky believes that the decision stems from the current geopolitical climate and was not supported by any technical assessment of the company’s products, which the company has been continuously advocating for. The fact that the directive was issued without any warning or opportunity for engagement to address the Australian government’s concerns highlights its political nature.”
According to Kaspersky, the government’s allegations were made without evidence or due process. However, the company has said it will continue supporting Australian software users.
“Being an advocate of an evidence-based approach to IT products’ security assessments, Kaspersky is determined to continue addressing any fact-based concerns about the security of its products in an open and transparent manner,” Kaspersky said.
“With the current restriction covering only Australian government systems and devices, Kaspersky will continue delivering reliable cyber protection to its users and customers in the country and across the globe.”
Australia is the latest Five Eyes nation to ban Kaspersky products after the UK, US, and Canada.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
