Today’s LiveWire Spotlight addresses DHS Directive BOD-017-01, which was issued on September 13 to warn all Federal agencies of a significant cyber threat from Kaspersky-branded cyber security software. The software contains a back door that allows the Russian government broad access to even the most sensitive data on the host system.
A Level 2 NERC Alert on the Kaspersky threat has been issued to all electricity asset owners and operators registered with the ERO. Recipients have until January 5, 2018 to respond with their assessment of the threat and the steps they are taking to mitigate it.