HPE Gave Russia Deep Dive Into Security Software Used by Pentagon

Author: David Jones / Source: E-Commerce Times

ALL EC Ecommerce Exchange
Looking for ecommerce software or service providers for your online business? Search and compare vendors by specialty and location. Choose the best solutions to help your business grow and succeed.
Put ALL EC to work for you today!

Hewlett Packard Enterprise allowed experts working with Russia to review the source code of cybersecurity software that is used by the U.S. Defense Department, Reuters reported this week.

The Pentagon uses HPE’s ArcSight software to protect sensitive computer networks, according to the report. Hewlett-Packard acquired ArcSight in 2010 in a deal valued at US$1.5 billion.

The review was conducted by Russian firm Echelon on behalf of the Russia Federal Service for Technical and Export Control, a defense agency that deals with cybersecurity issues.

“HPE has never and will never take actions that compromise the security of our products or the operations of our customers,” the company said in a statement provided to the E-Commerce Times by spokesperson Kate Holderness.

HPE has “worked with select third parties to test a narrow set of products for backdoor vulnerabilities before selling into the Russian market,” the company said, noting that this is a “year’s old requirement” that has not changed recently.

“All testing was done in HPE controlled sites and entirely under the supervision of HPE’s cybersecurity specialists, to ensure that our source code and products were in no way compromised,” HPE said, adding that “no backdoor vulnerabilities were detected within ArcSight.”

Pentagon Protocol

The Defense Department has policies in place to guard against such…

Click here to read more