The CDC and U.S. Army Removed Apps From Russian Company That Posed as U.S. Firm
FTX suffers $663 million heist, Security risks dominate Twitter as turmoil and mismanagement subsume the platform, FBI pushed to deploy NSO spyware, Oz gov't plans to outlaw ransom payments, more
Metacurity is now on Mastodon! Please follow us there at @metacurity@infosec.exchange.
The Centers for Disease Control and Prevention (CDC) and the U.S. Army said they had been deceived into believing applications company Pushwoosh, which is actually Russian, was based in the U.S. capital and subsequently removed Pushwoosh software from public-facing apps, citing security concerns.
According to company documents publicly filed in Russia, Pushwoosh is headquartered in the Siberian town of Novosibirsk and registered as a software company that also carries out data processing. However, on social media and in U.S. regulatory filings, Pushwoosh presents itself as a U.S. company based at various times in California, Maryland, and Washington, D.C.
On its website, Pushwoosh says it does not collect sensitive information. However, Russian authorities have compelled local companies to hand over user data to domestic security agencies. Company founder Max Konev s…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.