Kaspersky challenges DHS software ban in court

Kaspersky's Moscow hq Image ID: 666469297 Editorial credit: StockphotoVideo / 

Kaspersky's Moscow headquarters. (Image credit: StockphotoVideo/

Kaspersky Lab announced Dec. 18 that it will challenge a September 2017 directive by the Department of Homeland Security banning the use of their software in the federal government.

In a release announcing the move, the company said that DHS has failed to provide them with adequate due process and relied on "subjective, non-technical public sources" like anonymously-sourced media reports to justify their ban.

"DHS has harmed Kaspersky Lab's reputation and its commercial operations without any evidence of wrongdoing by the company. Therefore, it is in Kaspersky Lab's interest to defend itself in this matter."

The company confirmed to FCW in an email that is has filed the appeal in the U.S. District of Columbia and that DHS will have 60 days to respond. Kaspersky is being represented by Baker and McKenzie, LLP.

The federal government has been openly calling Kaspersky Lab an information security risk for most of the past year, but hasn't publicly disclosed its evidence. In October 2017, the Wall Street Journal reported that in 2015 Russian hackers used access to Kaspersky's antivirus software to lift classified tools and files from the home computer of an NSA intelligence officer.

On Dec. 1, Nghia Hoang Pho pled guilty in federal court to illegally taking home classified material to his home. The charges do not reference Kaspersky Lab, but anonymous U.S. intelligence sources told Reuters that Pho was the employee referenced in the Wall Street Journal report. Kaspersky has denied the charges and claimed that Pho turned off his antivirus program to download a pirated version of Microsoft Word that was infected with a Trojan virus.

There are indications that DHS was expecting this move. In a November 2017 hearing in the House of Representatives, Jeanette Manfra, assistant secretary for cybersecurity and communications at DHS said there was a chance Kaspersky Lab was considering legal action. The process surrounding their binding operational directive was developed with that possibility in mind, she explained.

"Because we need to provide the company with a meaningful opportunity to be heard, and there may be federal court review of our actions and decisions, there may be certain issues that it would not be appropriate for me to comment on until the conclusion of this process," said Manfra.

About the Author

Derek B. Johnson is a senior staff writer at FCW, covering governmentwide IT policy, cybersecurity and a range of other federal technology issues.

Prior to joining FCW, Johnson was a freelance technology journalist. His work has appeared in The Washington Post, GoodCall News, Foreign Policy Journal, Washington Technology, Elevation DC, Connection Newspapers and The Maryland Gazette.

Johnson has a Bachelor's degree in journalism from Hofstra University and a Master's degree in public policy from George Mason University. He can be contacted at, or follow him on Twitter @derekdoestech.

Click here for previous articles by Johnson.


  • Defense
    Ryan D. McCarthy being sworn in as Army Secretary Oct. 10, 2019. (Photo credit: Sgt. Dana Clarke/U.S. Army)

    Army wants to spend nearly $1B on cloud, data by 2025

    Army Secretary Ryan McCarthy said lack of funding or a potential delay in the JEDI cloud bid "strikes to the heart of our concern."

  • Congress
    Rep. Jim Langevin (D-R.I.) at the Hack the Capitol conference Sept. 20, 2018

    Jim Langevin's view from the Hill

    As chairman of of the Intelligence and Emerging Threats and Capabilities subcommittee of the House Armed Services Committe and a member of the House Homeland Security Committee, Rhode Island Democrat Jim Langevin is one of the most influential voices on cybersecurity in Congress.

Stay Connected


Sign up for our newsletter.

I agree to this site's Privacy Policy.