On September 28, 2017, the Defense Security Service (DSS), part of the U.S. Department of Defense, issued a directive to all government contractors with information systems under its control to remove Kaspersky Lab software from all DSS-authorized information systems. DSS oversees the National Industrial Security Program (NISP).
Kaspersky Lab is a Russian-owned provider of anti-virus software and other information security products.
The DSS directive to contractors follows a binding operational directive from the U.S. Department of Homeland Security (DHS) on September 13. The DHS directive applies to all government agencies and points to concerns about how Kaspersky Lab’s anti-virus software and related products may be compromised. The directive also indicates that DHS is concerned about ties between Kaspersky Lab and the Russian government, which can compel Kaspersky Lab to assist it in gathering information from or about these companies and individuals using Kaspersky Lab’s products.
Rob Joyce, the White House cyber security czar, has warned the public about the company.