Possible Kaspersky source code leak

[L0ckJaw]

I wish ESET wasn't as expensive!

Why not try F-Secure ?

 

[ExecutiveOrder]

A new tweet from one of their hacking group member (leader?) regarding the hostility his group received on the platform.
And a good portion of people commenting there is very supportive, some also believe it's a meaningful hacking effort.

 

[Slerion]

Just a so called "Script kiddy" action i guess

 

[Gandalf_The_Grey]

Kaspersky forced to deny source code leak

In a statement circulated on Twitter, a Kaspersky spokesperson said the organisation takes security “very seriously”.

“Kaspersky experts have checked recently published information, which allegedly contained the source code of Kaspersky products,” the spokesperson said. “The result of the analysis confirms that claims are unfounded – the leak doesn’t contain the source code of the company’s products. Instead, the dump analysed contains publicly available data from Kaspersky servers.

“The source code of Kaspersky’s products, along with security and AV database updates, software bill of materials, are all available for review in Transparency Centers opened around the world as as part of the Kaspersky Global Transparency Initiative.”

Kaspersky forced to deny source code leak | Computer Weekly

Kaspersky says an alleged leak of its source code was in fact material anyone could have gleaned from its public servers.

www.computerweekly.com

 

[SpiderWeb]

Will Russian companies like Kaspersky still be allowed to renew their certificates? I know ICANN said they won't block them but what is keeping, but DigiCert which for example the Kaspersky homepage depends on has suspended issuing and renewing certs.

 

[Slerion]

Will Russian companies like Kaspersky still be allowed to renew their certificates? I know ICANN said they won't block them but what is keeping, but DigiCert which for example the Kaspersky homepage depends on has suspended issuing and renewing certs.

thats actually a good question might be that this indeed will bring some issues for kaspersky.

 

[ExecutiveOrder]

Will Russian companies like Kaspersky still be allowed to renew their certificates? I know ICANN said they won't block them but what is keeping, but DigiCert which for example the Kaspersky homepage depends on has suspended issuing and renewing certs.

Perhaps yes, perhaps not, depending on how the world (certificate issuer) reacts to it. While they can just push a sanction, there will be adverse consequences if the sanctions also affect Kaspersky's global partnership against cybercrime that was once mentioned by 'anonymous' (about how it doesn't get hit by sanctions yet).
It's indeed a Russian company (a multinational company to be exact), Russian CEO & founder, and Russian HQ.
Operated by a holding company based in the UK, the Russian owner(s) don't have a controlling interest (majority of the stock).

Most of the world's sanctions against Russian people and businesses that are 'irrelevant' will last until the end of the conflict.
The website certificate (kaspersky.com) is valid until early-2023, issued to Kaspersky Lab AO (Ltd.)
The digital signature of their latest program and components (also from DigiCert) are issued to Kaspersky Lab JSC (Joint Stock Company) and AO, valid until mid-2023.
Pretty sure (and I really hope) the war will end shortly in favor of Ukraine and the sanctions will no longer affect the clean part of the world.