Russian cybersecurity firm Kaspersky executed an automatic switch, removing its anti-malware software from computers across the U.S. and installing UltraAV antivirus solutions without prior warning. This transition has sparked widespread concern among U.S. customers who relied on Kaspersky's protections.
In early September, Kaspersky emailed its U.S. customer base, promising continued "reliable cybersecurity protection" through UltraAV, a product of Pango Group. UltraAV's website features a dedicated page for Kaspersky's U.S. customers.
Despite these assurances, Kaspersky did not transparently communicate that its software would be automatically deleted and replaced with UltraAV's solutions. Several users reported discovering UltraVPN installed alongside UltraAV, likely due to existing Kaspersky VPN subscriptions.Â
Pango Group owns multiple VPN brands, such as Hotspot Shield, UltraVPN, and Betternet, as well as Comparitech, a VPN review website. However, beyond this affiliation, little is known about UltraAV's capabilities or reputation in the cybersecurity industry.
As of September 30, 2024, Kaspersky will no longer be able to support or provide product updates. The U.S. Department of Commerce's Bureau of Industry and Security (BIS) announced a ban on selling Kaspersky antivirus in the U.S. over alleged ties to the Russian government. BIS mentioned that Kaspersky’s U.S. operations posed a significant national security risk.
The automatic software update, deployed on September 19, facilitated the seamless transition to UltraAV to prevent any protection gaps resulting from Kaspersky's market exit.Â
The forced transition raises critical questions about user consent and transparency in cybersecurity practices. While UltraAV purportedly offers a similar feature set to Kaspersky's products, the lack of prior notification and detailed information about UltraAV's capabilities leaves many users uncertain about their new security setup.