{"id":639643,"date":"2024-09-26T19:50:34","date_gmt":"2024-09-26T16:50:34","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/kaspersky-defends-force-replacing-its-security-software-without-users-explicit-consent\/"},"modified":"2024-09-26T19:50:34","modified_gmt":"2024-09-26T16:50:34","slug":"kaspersky-defends-force-replacing-its-security-software-without-users-explicit-consent","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/kaspersky-defends-force-replacing-its-security-software-without-users-explicit-consent\/","title":{"rendered":"#Kaspersky defends force-replacing its security software without users’ explicit consent"},"content":{"rendered":"
\n

Earlier this week, some U.S. customers of Kaspersky\u2019s antivirus were surprised to find out that the Russian-made software disapp<\/a>eared from their computers and had been replaced by a new antivirus called UltraAV, owned by American company Pango.\u00a0<\/p>\n

The move was the result of the U.S. government\u2019s unprecedented ban on Kaspersky, which prohibited the sale of any Kaspersky software in the country. The ban on selling the company\u2019s software became effective on July 20, while the ban on providing subsequent security updates to existing customers will become effective on September 29.\u00a0<\/p>\n

A spokesperson for Pango, the cybersecurity company that owns UltraAV, defended the automatic migration, which in practice meant roughly a million U.S. Kaspersky customers became UltraAV customers overnight. At a technical level, that meant Kaspersky uninstalled itself from customers\u2019 machines, and UltraAV installed itself, without any user interaction.\u00a0<\/p>\n

That lack of user interaction \u2014 or request for consent \u2014 is what confused and concerned some former Kaspersky customers.\u00a0<\/p>\n

\u201cBasically, on my computers, Kaspersky pushed an uninstall of the Kaspersky products and pushed an automatic install of UltraAV & UltraVPN onto my computers,\u201d Avi Fleischer, a former customer of Kaspersky, had previously told TechCrunch. \u201cThey should\u2019ve given me the option to accept UltraAV or not.\u201d<\/p>\n

\u201cThey should NEVER push software onto someone\u2019s computer without explicit permission,\u201d said Fleischer.<\/p>\n

Kaspersky\u2019s spokesperson Francesco Tius told TechCrunch that, \u201cthe migration process started at the beginning of September, of which all Kaspersky customers in the U.S. eligible for the transition were informed in an email communication.\u201d Tius said that for Windows users, the transition \u201cwas done automatically.\u201d<\/p>\n

Tius said in the email that this was done to ensure Windows users \u201cwould not experience a gap in protection upon Kaspersky\u2019s exit from the market.\u201d (Windows 10 and 11 have their own baked-in antivirus made by Microsoft, called Defender. If a Windows user has a third-party antivirus, and then uninstalls it, Defender switches back on automatically, according to Microsoft<\/a>.)<\/p>\n

Users on Mac, Android, and iOS devices, on the other hand, \u201cneeded to manually install and activate the service following the instructions on the email,\u201d said Tius.\u00a0<\/p>\n

Tius blamed the fact that some users were unaware of the transition on the fact that they \u201cdid not have an email registered with Kaspersky.\u201d\u00a0<\/p>\n

\u201cThese users were informed of the transition via in-app message only,\u201d said Tius, who also pointed to an FAQ posted on UltraAV\u2019s website<\/a>. Neither the in-app message, nor UltraAV\u2019s website site, explicitly say that Windows users would experience a software uninstalling itself and installing a completely different software. On top of that, UltraAV is a brand new antivirus with no previous track record or published security audit, adding to the concerns of customers.\u00a0<\/p>\n

Pango spokesperson Sydney Harwood made largely the same points as Tius in a series<\/a> of emails with TechCrunch.<\/p>\n

Rob Joyce, the former director of cybersecurity at the National Security Agency, wrote in a series of posts on X<\/a> that this automatic migration showed why granting Kaspersky software trusted access to anyone\u2019s computer was a \u201chuge risk.\u201d<\/p>\n

\u201cThey had total control of your machine,\u201d wrote Joyce.\u00a0<\/p>\n

Martijn Grooten, a cybersecurity consultant and the former editor of Virus Bulletin, a publication covering the antivirus industry since 1989, told TechCrunch that, \u201cultimately, if you install software, it can update itself to become something entirely new, change branding and\/or change ownership.\u201d<\/p>\n

\u201cThat\u2019s all a risk you implicitly accept and all of it happens regularly,\u201d he said, adding that he does not remember another time an antivirus did the same thing. \u201cThey should have probably informed people better, given that security software depends on trust, but even in that case, some people would have ignored the warning.\u201d<\/p>\n<\/div>\n

If you liked the article, do not forget to share it with your friends. Follow us on\u00a0Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n

\n

If you want to read more like this article, you can visit our Technology<\/a><\/span> category.<\/strong><\/p>\n<\/blockquote>\n

Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

Earlier this week, some U.S. customers of Kaspersky\u2019s antivirus were surprised to find out that the Russian-made software disappeared from their computers and had been replaced by a new antivirus called UltraAV, owned by American company Pango.\u00a0 The move was the result of the U.S. government\u2019s unprecedented ban on Kaspersky, which prohibited the sale of…<\/p>\n","protected":false},"author":1,"featured_media":639644,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/techcrunch.com\/wp-content\/uploads\/2024\/09\/kaspersky-office-logo.jpg?resize=1200,743","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[152030,70375,152031,152032,152033,72287,152034],"class_list":["post-639643","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology","tag-antivirus","tag-cybersecurity","tag-information-security","tag-infosec","tag-kaspersky","tag-security","tag-ultraav"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/639643","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=639643"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/639643\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/639644"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=639643"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=639643"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=639643"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}