Menu
On Kaspersky, New Zealand intelligence community treads lightly

On Kaspersky, New Zealand intelligence community treads lightly

GCSB says agencies could take 'current international commentary' into account when making security software decisions.

Eugene Kaspersky, co-founder and CEO, Kaspersky Lab, in Auckland in May.

Eugene Kaspersky, co-founder and CEO, Kaspersky Lab, in Auckland in May.

While the US and UK intelligence communities are warning against the use of Kaspersky Lab security software, the New Zealand intelligence community is not following suit, at least not specifically.

Queried about its guidance, the Government Communications Security Bureau (GCSB) said it provides information security guidance in the form of the New Zealand Information Security Manual (NZISM) setting out "baseline controls and good practice for use by New Zealand Government agencies".

The baseline controls are minimum standards that are mandatory for government agencies, said Andrew Hampton, director general of the GCSB.

“The GCSB provides advice and other assistance to New Zealand government departments on matters relating to the security of classified information that is processed, stored or communicated by electronic or  similar means," Hampton said.

"The GCSB (through the NZISM or other means) does not prescribe systems, software or hardware, to be used by government agencies. It provides security guidance and risk management frameworks to be applied to mitigate information security risk."

The NZISM does not appear to mention specific vendors and is complex. Asked if there was anything in its text that would guide agencies away from using Kaspersky, GCSB said agencies should consider the full range of risk factors when making security decisions.

"This could include taking into account current international commentary," it said.

US civilian government agencies were ordered to remove Kaspersky Lab from their networks over concerns the anti-virus software could be used by Russian intelligence to spy on the US. The order came after high-profile hacks ahead of the US election last year.

Kaspersky Lab has denied ties to any government and said it would not assist a government conduct cyber espionage. 

A second member of the Five Eyes spying alliance, the UK, recently followed the US lead. In a letter to civil service leaders on Friday, Ciaran Martin, head of the GCHQ's National Cyber Security Centre, said Russia was acting against the UK’s national interest in cyberspace.

Russia was targeting UK central government and critical national infrastructure, he said, adding that a Russia-based provider should "never be used” for systems related to national security and information classified "secret" and above.

The remaining three Five Eyes, New Zealand, Australia and Canada, appear not to have followed suit - at least not specifically.

Anti-virus software that scans systems for rogue and malicious software have deep access to files on computer systems.

The dangers of such access were highlighted when a US National Security Agency staffer had files stolen from his personal PC. Government officials told the media they believed Kaspersky software was used by hackers directed from the Kremlin to steal the files.

Kaspersky Lab founder Eugene Kaspersky has railed against the accusations, saying the company was at the centre of a "designed and orchestrated attack".

He said Russian security agencies have never asked Kaspersky Lab to spy and if they did he would move the company out of Russia.

“We never helped the espionage agencies, the Russians or any other nation," he said at a London press confrence in late November.



Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags hackingcybercrimeespionagekasperskykaspersky labnsaGCHQgcsb

Featured

Slideshows

The making of an MSSP: a blueprint for growth in NZ

The making of an MSSP: a blueprint for growth in NZ

Partners are actively building out security practices and services to match, yet remain challenged by a lack of guidance in the market. This exclusive Reseller News Roundtable - in association with Sophos - assessed the making of an MSSP, outlining the blueprint for growth and how partners can differentiate in New Zealand.

The making of an MSSP: a blueprint for growth in NZ
Reseller News Platinum Club celebrates leading partners in 2018

Reseller News Platinum Club celebrates leading partners in 2018

The leading players of the New Zealand channel came together to celebrate a year of achievement at the inaugural Reseller News Platinum Club lunch in Auckland. Following the Reseller News Innovation Awards, Platinum Club provides a platform to showcase the top performing partners and start-ups of the past 12 months, with more than ​​50 organisations in the spotlight.​​​

Reseller News Platinum Club celebrates leading partners in 2018
Meet the top performing HP partners in NZ

Meet the top performing HP partners in NZ

HP has honoured its leading partners in New Zealand during 2018, following 12 months of growth through the local channel. Unveiled during the fourth running of the ceremony in Auckland, the awards recognise and celebrate excellence, growth, consistency and engagement of standout Kiwi partners.

Meet the top performing HP partners in NZ
Show Comments