Germany warns against using Kaspersky software, citing ‘considerable’ cyber risk after Russia’s invasion

The German Federal Office for Information Security (BSI) warned organizations against using the software because of the war in Ukraine.

The security agency is urging German organizations to replace products made by the Moscow-headquartered firm with alternative software from non-Russian vendors, warning that Russia's military and intelligence activities in Ukraine, along with its threats against the country, are not safe.

A Russian manufacturer can carry out offensive operations itself, be forced to attack target systems against its will, or be a victim of a cyber operation.

In the event of a successful attack, consumers are likely to be the last targeted, but they could be the victim of spillover damage.

This warning, which the BSI notes is only intended to raise awareness of possible dangers, has already led to German organizations cutting ties with Kaspersky.

Italy's Computer Security Incident Response Team (CSIRT) has urged organizations to risk-assess what technologies are provided by Russian companies or companies with links to Russia.

The decision by the BSI is not based on a technical assessment of its products, according to the company.

We will continue to assure our partners and customers in the quality and integrity of our products, and we will be working with the BSI for clarification on its decision and for the means to address its and other regulators' concerns.

Peaceful dialogue is the only way to resolve conflicts. The company said that war isn't good for anyone.

The statement follows similar comments by the company's chief executive Eugene Kaspersky, who earlier this month said that he welcomed negotiations that would lead to compromise. A recently imposed law in Russia forbids journalists from calling the military operation in Ukraine war or invasion.

The firm's ties to Russia have been a source of controversy for a long time. The European Parliament passed a resolution accusing the security firm of having a link to Russian intelligence.

Ukrainian hackers say HackerOne is blocking their bug bounty payouts