Jan 9, 2019

Report: Kaspersky Lab helped nab alleged classified data thief

Eugene Kaspersky. Photo: Adrian Bretscher/Getty Images for Kaspersky Lab

Russian cybersecurity firm Kaspersky Lab was instrumental in helping capture Hal Martin, a former intelligence subcontractor currently on trial for hoarding classified data at his home, reports Kim Zetter at Politico.

Why it matters: It's a sympathetic twist for beleaguered Kaspersky Lab. U.S. lawmakers regularly accuse the antivirus firm of assisting Russian spies stealing classified intelligence data, and the Department of Homeland Security and Congress separately banned Kaspersky products from federal systems for security concerns.

Details: According to Politico, just half an hour before hackers known as the Shadow Brokers offered to auction off NSA hacking tools, a Twitter account tied to Martin sent cryptic messages to two Kaspersky Lab researchers. The messages led the Kaspersky employees to contact the NSA.

  • Two direct messages from that Twitter account were referenced (sans recipients) in court documents last week — an offer to talk to "Yevgeny," taken to mean Kaspersky Lab founder Eugene Kaspersky; and a note that the "shelf life" of what they had to talk about was only "three weeks," which, given the Shadow Brokers' penchant for leaking documents, may have implied a connection to that case.
  • Martin is not currently believed to have been involved in the Shadow Brokers incident. But during the investigation into the Shadow Brokers, investigators found a massive trove of classified data on Martin's home computer — the largest collection of improperly removed NSA data in history.

Kaspersky Antivirus, according to media reports, may have separately been wittingly or unwittingly involved in incidents of Russian spies stealing classified data. The virus scan tool was allegedly used to search for classified information in addition to viruses — which Kaspersky denies.

  • If true, that could mean an active decision by Kaspersky to steal U.S. secrets. It could also mean that spies compromised Kaspersky infrastructure without the company's knowledge.

Go deeper

Serological coronavirus testing could be key to economic reopening

Illustration: Sarah Grillo/Axios

America's economy won't reopen anytime soon, despite frantic CEO whispers, but a glimmer of hope may be emerging in the form of serological testing.

Why it matters: Serologic tests aren't to determine whether or not you're infected with coronavirus. They are to determine if you have potential immunity that could allow you to safely return to work.

Government tech struggles to dole out coronavirus stimulus cash

Illustration: Eniola Odetunde/Axios

Tech challenges are hampering federal and state government efforts to get funds from the $2 trillion coronavirus relief law into the hands of newly unemployed workers and struggling small businesses who need it.

Why it matters: Many businesses and individuals need the money now for essentials, including meeting payroll and paying rent.

U.S. coronavirus updates: Death toll passes 9,600

Data: The Center for Systems Science and Engineering at Johns Hopkins; Map: Andrew Witherspoon/Axios

Recorded deaths from the novel coronavirus surpassed 9,600 in the U.S. on Monday, per Johns Hopkins data. More than 1,000 people in the U.S. have died of coronavirus-related conditions each day since April 1.

Why it matters: U.S. Surgeon General Jerome Adams said on Sunday the coming week will be "the hardest and saddest week of most Americans' lives" — calling it our "our Pearl Harbor, our 9/11 moment."

Go deeperArrowUpdated 1 hour ago - Health