Antivirus Software Replacement Causes Concern

Kaspersky, a Russian cybersecurity company, has exited the U.S. market due to a government ban. As a result, many American users found their Kaspersky antivirus software automatically replaced with UltraAV, a product from Pango, a U.S.-based company.

This unexpected switch happened without user consent or prior notice for some customers.

The automatic replacement process involved Kaspersky uninstalling itself and UltraAV installing in its place on Windows computers. This action raised concerns among affected users about privacy and security.

Some key points about the situation:

  • Approximately 1 million U.S. Kaspersky customers were impacted
  • Windows users experienced an automatic switch
  • Mac, Android, and iOS users had to manually install UltraAV
  • The change occurred in early September 2024
  • Some users were unaware due to not having a registered email with Kaspersky

The companies involved defended the action. They stated it was done to avoid gaps in protection for users.

Both Kaspersky and Pango claim they sent emails to inform customers about the transition. They also cited in-app messages and an FAQ on UltraAV’s website as ways they communicated the change.

Critics argue that forcing new software onto users’ computers without explicit permission is problematic. They say users should have had a choice in accepting UltraAV or not.

The lack of a track record or published security audit for UltraAV added to user worries.

A former National Security Agency cybersecurity director commented that this incident shows the risks of granting antivirus software trusted access to computers. He suggested Kaspersky had total control over users’ machines.

A cybersecurity expert noted that when people install software, they implicitly accept the risk that it can update, change branding, or ownership.

While this type of complete replacement is unusual for antivirus software, it’s not unprecedented in the broader software world.

The expert added that security software relies on trust, so better communication about the change would have been advisable.

Even with improved notification, some users might have overlooked the warnings.

This event highlights several important considerations for software users:

  1. The level of control antivirus programs have on computers
  2. The importance of reading software terms and conditions
  3. The need to stay informed about changes to installed programs
  4. The potential risks of relying on a single security solution

Image: geniuslady, depositphotos.com

Dave's goal is to help people better understand the hardware, software, and devices they use every day. On Cyber Risk he shares his knowledge on network security and computer hardware.