US bans Kaspersky's antivirus and online security solutions over Russian origin

The US Commerce Department will impose a ban on all new sales of Moscow-based Kaspersky Lab’s cybersecurity and antivirus software starting next month. This decisive action marks the strongest stance yet against a foreign-owned security vendor, amidst concerns that such companies could be forced to collaborate with adversarial governments.

Commerce Secretary Gina Raimondo highlighted the unprecedented nature of this ban, noting that it is the first time the department has prohibited the sale of a cybersecurity product in the US.

The ban, effective from July 20, prevents Kaspersky Lab from selling its antivirus and cybersecurity software to American customers.

While current US users of Kaspersky Lab products can continue using the software, they will cease to receive updates after September 29. The Cybersecurity and Infrastructure Security Agency (CISA) will be assisting critical infrastructure organizations to transition to alternative security solutions ahead of the deadline.

In addition to the sales ban, the Commerce Department has added three Kaspersky-affiliated entities, namely AO Kaspersky Lab, OOO Kaspersky Group, and Kaspersky Labs Limited, to its sanctions list.

Kaspersky Lab, a leading global provider of antivirus software with 270,000 corporate clients worldwide, has long been under scrutiny by US officials. There are fears that the company could be compelled to share customer information with the Russian government and potentially aid in cyber espionage activities.

This latest move follows a 2017 decision by the US government to ban Kaspersky Lab products from federal government systems. In response, Kaspersky Lab has actively contested these restrictions, including suing the federal government and relocating some data storage from Russia to Switzerland.

Kaspersky has a significant presence in the US, including clients within critical infrastructure sectors and state and local governments.

The Commerce Department’s authority to issue this ban stems from a 2019 executive order by former President Trump, with regulations officially implemented in November 2021.

Secretary Raimondo justified the ban by citing the ongoing cyber threats posed by the Russian government and its potential influence over Kaspersky’s operations. She emphasised that this measure is necessary to protect American citizens and their personal data.

In response, Kaspersky Lab announced plans to explore all legal avenues to maintain its current operations and relationships. The company reiterated that it does not engage in activities that threaten US national security and has consistently demonstrated its independence from any government.

Kaspersky argued that the Commerce Department’s decision was influenced by current geopolitical tensions and theoretical concerns rather than a thorough assessment of the company’s products and services.