US, UK spy agencies reverse-engineered Kaspersky software: report
NSA and GCHQ broke into Kaspersky Lab and other anti-virus to spy on citizens, corporations.
US National Security Agency (NSA) and UK Government Communications Headquarters (GCHQ) broke into Kaspersky Lab as well as other security software, seeking weakness to exploit to gain access to people’s communication.
This is according to new leaked documents from Edward Snowden, NSA whistleblower, and reported by The Intercept.
The spy agencies then reverse-engineered Kaspersky anti-virus software in order to understand its inner workings and ensure that it didn’t keep them from looking through private computers, The Intercept reported. Governments were than able to obtain sensitive customer information by monitoring communications between the software and Kaspersky servers, according to the report. The agencies also appear to have examined emails inbound to security software companies flagging new viruses and vulnerabilities, the report adds.
Compromising security software is of grave concern because such software is relied upon to defend against an array of online threats, including threats from governments themselves, and is typically more trusted by the operating system than other applications. Typically, security software run with elevated privileges than other applications and having access to this software allows infiltration at a far deeper level inside computers.
Kaspersky Lab seem to have been singled out due to its aggressive efforts in exposing sophisticated state-sponsored malware.
Earlier this month, Kaspersky Lab reported an APT attack on its own internal systems in what the company believed was a state-sponsored attack.