Kaspersky Defends Stealth Swap of Antivirus Software on US Computers (techcrunch.com) 17
Cybersecurity firm Kaspersky has defended its decision to automatically replace its antivirus software on U.S. customers' computers with UltraAV, a product from American company Pango, without explicit user consent. The forced switch, affecting nearly one million users, occurred as a result of a U.S. government ban on Kaspersky software.
Kaspersky spokesperson Francesco Tius told TechCrunch that the company informed eligible U.S. customers via email about the migration, which began in early September. Windows users experienced an automatic transition to ensure continuous protection, while Mac and mobile users were instructed to manually install UltraAV. Some customers expressed alarm at the unannounced software swap. Kaspersky blamed missed notifications on unregistered email addresses, directing users to in-app messages and an online FAQ. The abrupt change raises concerns about user autonomy and privacy in software updates, particularly as UltraAV lacks an established security track record.
Kaspersky spokesperson Francesco Tius told TechCrunch that the company informed eligible U.S. customers via email about the migration, which began in early September. Windows users experienced an automatic transition to ensure continuous protection, while Mac and mobile users were instructed to manually install UltraAV. Some customers expressed alarm at the unannounced software swap. Kaspersky blamed missed notifications on unregistered email addresses, directing users to in-app messages and an online FAQ. The abrupt change raises concerns about user autonomy and privacy in software updates, particularly as UltraAV lacks an established security track record.
We got a workaround? (Score:1)
Re:We got a workaround? (Score:5, Interesting)
Considering Kaspersky is on the entity list, it's probably looking to just divest of any US interests ASAP to avoid further sanctions to preserve it's reputation abroad for the rest.
I wouldn't be surprised if they make some effort to block machines in US from installing their AV.
Re: (Score:2, Funny)
Send everything on your computer directly to Kremlin without going thru Kaspersky
Re: (Score:2)
Send everything on your computer directly to Kremlin without going thru Kaspersky
What evidence exists that this happens?
I am asking honestly. I do not really know the backstory.
The Russians tricked me! (Score:2)
No surprise.
What's the controversy? (Score:5, Informative)
I don't understand why this is such a huge controversy, the whole thing seems really straightforward:
1. Kaspersky is banned from the US.
2. Kaspersky plans to replace their soon to be unsupported antivirus software with an American one (a good thing to do, seems like Kaspersky really does care about the security of their users).
3. Kaspersky communicates this to their customers via email and the application (again, this is the right way to do it and a good thing).
4. The time comes and Kaspersky replaces it's software with the US antivirus.
And then the result of this is users saying "omg this software that has complete control of my computer is able to install software?!?! Scary!" Give me a break. This whole thing is such a non-story, please correct me if I'm missing something or if you have a different perspective.
Re: (Score:2)
Re: (Score:2)
It is very likely the opposite, that Kaspersky OEMed UltraAV.
Kaspersky is a huge, very profitable company. UltraAV is a nothingburger.
In fact I would not be surprised if Kaspersky has not taken a majority stake in the company.
Re: (Score:2)
In fact I would not be surprised if Kaspersky has not taken a majority stake in the company.
You not being surprised and them actually doing so are not the same thing.
Did it actually happen?
Re: (Score:2)
Can someone tell me what Kasperdky did, or what evidence exists that they did something bad?
Re: What's the controversy? (Score:2)
At https://ultrasecureav.com/faq [ultrasecureav.com]
It says
Due recent restrictions to Kaspersky, UltraAV is operating as an independent service provider in order to offer comparable continued service for Kaspersky US customers.
That makes it very clear that they are contracted out to Kaspersky.
Re:What's the controversy? (Score:4, Interesting)
Pango is in turn owned by WC SACD Holdings Inc, a Massachussets company. The CEO, Hari Ravichandran, is the CEO of Aura and talks as Pango as a subsidiary [jpmorgan.com]. Aura in turn has a technobabble about us page that says nothing [aura.com].
The UltraAV software itself isn't signed by Pango, WC, or Aura. It's signed by "Max Secure Software India Private Limited". Which, at best, means that Pango subcontracted an Indian AV to brand as American so Kaspersky could claim they swapped out an AV for an "American" one. MaxSecure is generally considered sketchy software and has asked to be unlisted as a potentially unwanted program among other AV/antimalware apps [reddit.com], and that it will false positive files for the illusion of being effective.
This is sketchy as hell, and never should have been done without user consent, much less with the company they chose to contract.
Re: (Score:2)
It's windows they have complete ring-0 root control of the OS it's extremely simple.
Re: (Score:1)
On Windows, applications can usually install their own updater service that is set up to run with elevated privileges (noteworthy examples: Google Chrome, Adobe Reader, Lenovo Vantage/System update, etc.). ... which usually acts as a rootkit, listening for remote commands and updates, including removing it
It is absolutely of no surprise that an antivirus that is rooted deep enough into the OS to be able scan every byte that goes through you storage devices and network cards, also installs an updater service