The CyberWire - Your cyber security news connection. - Israel said to have tipped the US off concerning Kaspersky risks. Accenture databases exposed. Deloitte breach may be worse than initially thought. on Security-Russia-Kaspersky
The us government decided to ban could spur ski security software from its networks on september 13th 2017 when the department of homeland security issued binding operational directive seventeen dash oon the directive came after months of quiet warnings by intelligence and federal law enforcement organisations of the risks could spur ski software presented kaspersky lab itself denied that its products were being used to collect intelligence on behalf of russian or any other national intelligence services and called for the us government to in effect put up or shut up about the widely used security software all questions about the undeniable tension between russia and the us aside this would appear to be at least part of the evidence kaspersky challenge the us to present kasparov skis precise relationship to the alleged exploit remains unclear if they're software was indeed exploited one can take one of the following positions on the incident either one of these possibilities or even some mix of all of them are likely to be true either kaspersky cooperated with russian intelligence services and delivered its products up for espionage purposes or the russian services hacked kaspersky without its knowledge or the russian services succeeded in infiltrating agents into the company without the company's executives knowledge a number of observers think it unlikely that any russian company would be able to refuse a request from their country security services another major consultancy has suffered data exposure up guard reports that on september 17th their researchers found sensitive data belonging to accenture exposed in four unsecured amazon web services three buckets it's unclear whether the data now secured were obtained by bad actors accenture says the only unauthorized scan they've detected came from up guard accenture also says the material exposed including keys and credentials was related to a decommissioned system.