Summary
Kaspersky, a Russian cybersecurity firm, has initiated an automatic transition of its antivirus software to UltraAV for its U.S. customers without prior notification. This move follows the U.S. government’s decision to add Kaspersky to the Entity List, leading to a ban on sales and updates of its products in the country.
The forced transition began after Kaspersky announced it would cease its U.S. operations due to national security concerns. Customers reported that Kaspersky’s software was uninstalled and replaced with UltraAV’s antivirus and VPN solutions while they were unaware, leading to confusion and concern about potential malware infections. Although Kaspersky communicated the transition via email to some customers, many felt blindsided by the abrupt removal of their existing software. The company stated that the transition was designed to ensure continued protection for users, but the lack of explicit consent raised significant concerns about user autonomy and software management.
Background of the Transition
In June 2024, Kaspersky was added to the U.S. Entity List, prompting the Biden administration to announce a ban on sales and updates of its software, effective September 29, 2024. Following this, Kaspersky informed customers in July about layoffs and the impending closure of its U.S. operations. By September, the company had reached an agreement to transfer its U.S. customer base to UltraAV, a cybersecurity firm owned by Pango Group.
Customer Reactions
Many customers expressed shock upon discovering that Kaspersky had removed its software and installed UltraAV without their consent. Reports on social media highlighted a range of reactions, with some users fearing their systems had been infected. A former Kaspersky reseller criticized the lack of choice provided to users, stating that customers should have been given the option to accept or decline the new software.
Official Statements
Kaspersky defended the transition, asserting that it partnered with UltraAV to ensure a seamless migration for U.S. customers. The company claimed that the update was intended to prevent any gaps in protection, but the execution raised questions about user consent and software control. A Kaspersky representative acknowledged that the update took place on September 19, 2024, facilitating the switch to UltraAV as part of Kaspersky’s exit from the U.S. market.
This incident has sparked discussions about the implications of forced software transitions and the responsibilities of companies to their customers, especially in the context of cybersecurity.
Some Kaspersky customers receive surprise forced-update to new antivirus software
Sep. 23 / Tech Crunch “ Customers of Kaspersky antivirus in the United States found out in the last few days that their cybersecurity software was automatically replaced with a new...
Kaspersky deletes itself, installs UltraAV antivirus without warning
Sep. 23 / Bleepingcomputer “ Starting Thursday, Russian cybersecurity company Kaspersky deleted its anti-malware software from customers' computers across the United States and...