2024-06-21 09:37:55
www.pcworld.com
In 2017, Russia-based Kaspersky Antivirus Software was deemed an unacceptable risk to US national security, thus fully barred from use by federal agencies in 2018. Then, in 2022, Kaspersky earned a spot on the US Federal Communications Commission’s blacklist.
But while federal subsidies could no longer be spent on Kaspersky, individuals and private businesses were still free to buy licenses. This will soon change with an upcoming US ban on Kaspersky’s products.
Announced Thursday by the Bureau of Industry and Security (a branch of the Department of Commerce), the prohibition applies to antivirus and other cybersecurity software developed and distributed by Kaspersky and its affiliates. The Biden administration cited high potential for interference from the Russian government in Kaspersky’s operations as the reason for its decision—the first of its kind.
The ban will roll out in two phases: starting on July 20 at 12:00am ET, Kaspersky can no longer sell its products to new US persons or agree to integrate its software into third-party products (like white-labeled services); then, on September 29 at 12:00am ET, all reselling, existing integrations, and licensing must cease. Virus definition and app updates will end, as will operation of the Kaspersky Security Network within the US and on devices belonging to US residents and citizens.
This window gives consumers and businesses time to transition to new software—and there are no legal penalties for continuing to use Kaspersky while you hunt for a replacement.
If you’re currently a Kaspersky user, you should switch to an alternative before that September cutoff date—don’t leave your PC and other devices unprotected from new threats. If you’ve been using the free version of Kaspersky, one easy fallback is Windows Security, the built-in antivirus, malware, and network protections offered by Microsoft with both Windows 10 and 11. For more premium options, check our recommendations of the best antivirus software, where you’ll find apps comparable to the Kaspersky product you’re currently using.
For a fuller rundown of the US government’s investigation of Kaspersky, you can check out the Bureau of Industry and Security’s dedicated site. Among the other details given, it explains the reasons for why Kaspersky is now considered a high security risk.
The biggest reasons include the possibility of the Russian government compelling Kaspersky into releasing sensitive data about its US customers, using Kaspersky as a vehicle to plant malware on devices owned by US persons, and spreading malicious code through white-label software to unsuspecting end users.
There’s even a link to the documentation that meticulously lays out the government’s actions, including its communication with Kaspersky about its analysis. (That could sound like the equivalent of paint drying, but you may find the BIS teardown of Kaspersky’s proposed mitigations an interesting read.)