Australia Joins the Global Ban: Kaspersky Security Products Off-Limits for Government Use

In a move that echoes the United States' earlier ban, Australia has now prohibited the use of Kaspersky security products by government agencies. The decision was made following an extensive threat and risk analysis conducted by the Department of Home Affairs, which deemed the continued use of Kaspersky Lab's products to pose an "unacceptable security risk" to Australian Government networks and data.

The ban comes at a time when concerns about Russia's involvement with cybersecurity companies have been growing. The US had already taken similar action in June 2024, citing "unacceptable security risks" associated with Kaspersky Lab's close ties to the Kremlin, including allegations of cooperation with Russian authorities such as the FSB.

"The case against Kaspersky Lab is overwhelming," said Senator Jeanne Shaheen at the time of the US ban. "The strong ties between Kaspersky Lab and the Kremlin are alarming and well-documented." Australia's Secretary of the Department of Home Affairs, Stephanie Foster, echoed similar sentiments, stating that the use of Kaspersky products by government entities poses a significant threat to national security.

The Australian government's decision is based on a thorough assessment of threats and risks associated with Kaspersky Lab's products. The analysis took into account the potential for foreign interference, espionage, and sabotage, as well as the need for a strong policy signal to critical infrastructure and other governments regarding the unacceptable security risk posed by Kaspersky Lab's products.

While the ban prohibits the use of Kaspersky security products by government agencies, it leaves room for specific exemptions. Any such exemptions would require secure mitigations to be in place, and the Accountable Authority may seek an exemption on legitimate business grounds related to national security and regulatory functions.

Kaspersky has maintained its innocence, insisting that its products are trustworthy and secure. However, the Australian government's decision underscores the growing concern about Russia's involvement with cybersecurity companies and the potential risks associated with their operations.