Report: Kaspersky Lab helped nab alleged classified data thief

Joe Uchill

Eugene Kaspersky. Photo: Adrian Bretscher/Getty Images for Kaspersky Lab

Russian cybersecurity firm Kaspersky Lab was instrumental in helping capture Hal Martin, a former intelligence subcontractor currently on trial for hoarding classified data at his home, reports Kim Zetter at Politico.

Why it matters: It's a sympathetic twist for beleaguered Kaspersky Lab. U.S. lawmakers regularly accuse the antivirus firm of assisting Russian spies stealing classified intelligence data, and the Department of Homeland Security and Congress separately banned Kaspersky products from federal systems for security concerns.

Details: According to Politico, just half an hour before hackers known as the Shadow Brokers offered to auction off NSA hacking tools, a Twitter account tied to Martin sent cryptic messages to two Kaspersky Lab researchers. The messages led the Kaspersky employees to contact the NSA.

  • Two direct messages from that Twitter account were referenced (sans recipients) in court documents last week — an offer to talk to "Yevgeny," taken to mean Kaspersky Lab founder Eugene Kaspersky; and a note that the "shelf life" of what they had to talk about was only "three weeks," which, given the Shadow Brokers' penchant for leaking documents, may have implied a connection to that case.
  • Martin is not currently believed to have been involved in the Shadow Brokers incident. But during the investigation into the Shadow Brokers, investigators found a massive trove of classified data on Martin's home computer — the largest collection of improperly removed NSA data in history.

Kaspersky Antivirus, according to media reports, may have separately been wittingly or unwittingly involved in incidents of Russian spies stealing classified data. The virus scan tool was allegedly used to search for classified information in addition to viruses — which Kaspersky denies.

  • If true, that could mean an active decision by Kaspersky to steal U.S. secrets. It could also mean that spies compromised Kaspersky infrastructure without the company's knowledge.
Jan 9, 2019 - Technology

What's next

Marisa FernandezJacob Knutson

U.S. evacuates personnel as coronavirus death toll climbs

A health worker checks the temperatures of Chinese travelers arriving in Beijing from Wuhan. Photo: Kevin Frayer/Getty Images

56 people have died from an outbreak of a coronavirus strain that originated in Wuhan, China, according to the Chinese National Health Commission.

The latest: The U.S. Embassy in Beijing announced plans to evacuate its Wuhan consulate personnel and some private citizens on a limited-capacity charter flight from the city to San Francisco on Tuesday, per AP, which reports that those "at greater risk from coronavirus" would be prioritized over others.

Go deeperArrowJan 20, 2020 - World
Jacob Knutson

Biden maintains nationwide polling lead as Warren support falls

The 2020 Democratic presidential hopefuls. Photo: Kerem Yucel/AFP via Getty Images

The latest ABC News/Washington Post national poll produced by Langer Research Associates has Joe Biden maintaining his lead with Bernie Sanders claiming second.

Why it matters: Nine days before the Iowa caucuses, Elizabeth Warren’s support among polled Democrats has declined from 21% to 11% since an ABC News/WashPost poll in October.

Go deeperArrow1 hour ago - Politics
Marisa Fernandez

Andrew Yang qualifies for February debates

Elizabeth Warren, Joe Biden and Bernie Sanders. Photo: Scott Olson/Getty Images

The next Democratic debate scheduled for Feb. 7 will fall after the Iowa caucuses, four days before the New Hampshire primary, ABC News reports.

The latest: Andrew Yang on Jan. 26 became the seventh Democrat to qualify for the February debate after polling above 5% in UNH/CNN's New Hampshire survey, his fourth qualifying poll.

Go deeperArrowJan 17, 2020 - Politics