Joseph Marks | Nextgov | October 25, 2017 | 0 Comments

Kaspersky Says It Intercepted NSA Hacking Tools but Didn't Hand Them Over to Russia

Eugene Kaspersky, Russian antivirus programs developer and chief executive of Russia's Kaspersky Lab Pavel Golovkin/AP

Kaspersky Lab removed what looked like National Security Agency hacking tools from a personal computer in 2014, the Russian anti-virus software firm acknowledged Wednesday, as part of an effort to clear its name from allegations of collusion with the Russian government.

The Kaspersky statement bolsters news reports that those tools were removed from an NSA contractor’s home computer that was running Kaspersky and ended up in the hands of Russian intelligence.

Kaspersky did not identify the customer whose computer contained the NSA malware, however.

» Get the best federal technology news and ideas delivered right to your inbox. Sign up here.

The company also stressed that it had not shared the NSA malware with the Russian government or any other third parties. CEO Eugene Kaspersky ordered the malware sample destroyed soon after looking at it, the company said.

The computer user also disabled Kaspersky before installing the NSA hacking tool—an action that the software would have detected and blocked—leaving a window where another actor, such as Russian intelligence, could have hacked into the computer and stolen the malware, Kaspersky said.

That timeline comes from preliminary results of a Kaspersky investigation into media reports about the NSA malware theft. The company, which vehemently denies any collusion with Russian government hackers, has also offered to open up its source code to U.S. investigators and to third-party security researchers in an effort to clear its name.

The Kaspersky report also comes after months of escalating concerns about the anti-virus firm’s ties to Russian intelligence agencies that led the General Services Administration to remove Kaspersky from major contract vehicles in July and the Homeland Security Department to ban Kaspersky from all civilian government computers in September.

The Defense Department is also scrubbing Kaspersky from all of its systems.

The Kaspersky release came the same day as a deluge of other Kaspersky news: