The Department of Homeland Security has ordered government agencies to remove any products from Moscow-based Kaspersky Lab because of security concerns.
Kaspersky’s anti-virus software is commonly used in equipment bought by U.S. government agencies and has also become popular among American consumers. But the company has been battling allegations that it has links to Russian spy agencies.
Homeland Security said in a statement Wednesday that it’s “concerned about the ties between certain Kaspersky officials and Russian intelligence and other government agencies.”
It also cited “requirements under Russian law that allow Russian intelligence agencies to request or compel assistance from Kaspersky and to intercept communications transiting Russian networks.”
The company said the Russian law the U.S. government refers to applies to telecom companies and internet service providers, not firms like Kaspersky.
U.S. government agencies have 90 days to prepare to start removing Kaspersky software from their systems, according to the Homeland Security directive.
The department said Kaspersky products “provide broad access to files and elevated privileges on the computers on which the software is installed, which can be exploited by malicious cyber actors to compromise those information systems.”
Kaspersky suggested the decision had more to do with tensions between Washington and Moscow than its business, which sells products to governments around the world.
“It’s disconcerting that a private company can be considered guilty until proven innocent, due to geopolitical issues,” it said.
The heads of six major U.S. intelligence agencies all testified that they would not be comfortable using Kaspersky software on their computers.
The Homeland Security announcement Wednesday is the latest blow for the Russian firm in the U.S.
In July, the General Services Administration, a federal agency that buys and manages goods and services for the government, removed Kaspersky from a list of approved vendors.