US Bans Kaspersky Software

Original Article ↗ Hacker News Discussion ↗

Scope of the Ban: Security vs. Free Speech

  • Some see the Kaspersky ban as akin to restricting code as speech, drawing parallels to historical crypto export controls (e.g., PGP), but others argue this is a stretch since Kaspersky is closed-source commercial software, not a publication.
  • Another view: this is not about speech but about cutting off a company seen as tied to a hostile state during wartime; selling AV into US infrastructure is framed as a national-security, not First Amendment, issue.

Trust, State Influence, and War Context

  • Many argue a Russian-based AV vendor cannot be independent of the FSB, especially during Russia’s invasion of Ukraine, and that any AV is effectively a rootkit capable of exfiltrating data or silently whitelisting state malware.
  • Counterpoint: the same logic could apply to US tech firms with ties to US intelligence; critics see a double standard where “our” intelligence is tolerated but “theirs” is grounds for bans.
  • Some say Russia’s political system and war conduct (annexations, city destruction) make it qualitatively different from the US; others insist both powers behave badly and global diplomacy has broadly failed.

Kaspersky’s Technical Quality and Response

  • Several comments note Kaspersky consistently scores very high in independent AV tests and was early in detecting sophisticated threats like NSA-linked “Equation Group” malware and possibly Stuxnet-like campaigns.
  • Some suspect US hostility grew after Kaspersky exposed such tools; others call that a “childish” view and say the ban is about structural risk, not hurt feelings.
  • Kaspersky’s relocation of data processing for some countries to Switzerland and offer of transparency centers is presented as evidence of good faith by supporters, but dismissed by skeptics as PR theater with weak auditing.

NSA Malware, Leaks, and Collateral Damage

  • One camp claims ordinary users will almost never be targeted by NSA malware and that AV offers little protection if a state actor wants you specifically.
  • Others counter that NSA tools and exploits do leak (e.g., EternalBlue → WannaCry; Stuxnet’s spread), causing large-scale collateral damage where strong AV and independent research matter.
  • There’s debate over how controlled Stuxnet really was and how many non-target systems were damaged, with details acknowledged as partly unclear.

Broader Views on AV and Policy

  • Some suggest banning all commercial AV due to misaligned incentives and deep system access.
  • Others welcome the Kaspersky ban as overdue and urge Europe to follow, seeing it as part of a broader trend (alongside TikTok actions) of weaponizing control over widely deployed software.