Undetectable Humanizer: Lifetime Subscription
Transform AI-Generated Text into Human-Like, High-Ranking Content & Bypass Even the Most Sophisticated AI Detectors
Get 95% Deal

Kaspersky users in the US say their antivirus was replaced by UltraAV

Ashwin
Sep 24, 2024
Antivirus
|
32

Kaspersky users in the US have discovered that their antivirus has been replaced by UltraAV. That doesn't seem like it would do wonders for a company's PR image.

For those unaware, the US government banned the sale of Kaspersky products in the United States in June, with the rule coming into effect on July 20. Why? Because the US Government believed that "Kaspersky and third-party products that integrate Kaspersky's products pose undue and unacceptable risks to U.S. national security and to the security and safety of U.S. persons." However, the Russian cybersecurity firm was allowed to provide software updates to users in the US, until September 29. On July 20, Kaspersky announced it was ending its business operations in the US.

Now, all of us were expecting Kaspersky to inform the user about how they would be affected by the issue when updates are no longer provided. The logical expectation was that the user would be educated on how to uninstall the antivirus from their computer, and use Windows Defender as an alternative.

US Kaspersky users say their antivirus has been replaced by UltraAV

Kaspersky had other plans. It partnered with UltraAV in an undisclosed deal to replace its own antivirus on over 1 million users' computers. Kaspersky antivirus was uninstalled automatically on user's computers, and silently replaced by UltraAV. This is textbook malware behavior right there.

What is UltraAV?

UltraAV is based in Boston, and is owned by Pango, a partner of Kaspersky. The company is the same one that owns UltraVPN, and Hotspot Shield. The Register reports that Pango was acquired by Aura, a Massachusetts firm, in 2021. Aura had acquired Max Secure Software, an Indian security vendor, two years ago. UltraAV uses the engine created my Max Secure Software. Confused yet?

This is probably Kaspersky's way of sidestepping the restrictions set by the US, it's not a direct product, nor is it integrated into a third party. But it sure isn't a good deal from the consumer's perspective.

Well, UltraAV doesn't appear to be a rebranding or rebadging of Kaspersky. Here's a comparison of the features offered by the two products. It includes a VPN, Password Manager, and all the bells and whistles that most security products have these days.

Kaspersky vs UltraAV comparison of features

Honestly, UltraAV is the most generic name that you could pick. It kind of sounds like a fake software, doesn't it? There are several reports on reddit, where users say they panicked after they saw something called UltraAV on their computer. I suppose the reaction is fair, I'd have probably done the same.

I don't think this migration was a good idea, in fact, this could be the dumbest way to have handled the situation. Why not just display a warning to the user, and ask them to use Microsoft Defender? It's free, and not a premium competitor that would affect it in other markets, or perhaps it could give people in other Countries the impression that Defender is enough? The ethical choice would be to just asked the user if they want to switch to UltraAV, and an option to decline the migration?

Did Kaspersky notify users about the transition to UltraAV?

It turns out they did, Axios wrote about this 2 weeks ago. Users were notified about the migration from Kaspersky to UltraAV via email. But some users say they were never informed prior to the software's installation.

(Image courtesy: reddit)

Kaspersky antivirus email notification about UltraAV

Hang on! That email doesn't seem to say that UltraAV would be automatically installed on the user's PC, nor does it ask for the user's permission. Axios' report does mention that there would be "no action required by customers."

Kaspersky UltraAV

Anyway, UltraAV antivirus does appear to be a legit product. The official website has a banner at the top that takes visitors to a page about the transition to UltraAV.

Kaspersky antivirus was replaced by UltraAV

Notice the banner that has the same wording, "No action required"?

Is it a good antivirus? I have no idea about it, but don't forget to turn off auto-renewal for the subscription. I'd probably uninstall it and stick to Windows Defender if I were you, or just use Bitdefender Free. Don't use Avast/Avira/AVG/Norton, they are all the same trash.

I get that Kaspersky has closed up shop in the US, but this is a poor way to repay the loyalty of your users. It could potentially have a snowball effect among customers in other regions.

What's your take on this?

Summary
Kaspersky users in the US say their antivirus was replaced by UltraAV
Article Name
Kaspersky users in the US say their antivirus was replaced by UltraAV
Description
US Kaspersky users were alarmed to find that their antivirus was replaced by UltraAV.
Author
Publisher
Ghacks Technology News
Logo
Advertisement

Tutorials & Tips


Previous Post: «

Comments

  1. si said on September 29, 2024 at 9:47 am
    Reply

    Last time I checked, BitDefender Free was discontinued. Even if it weren’t, I wouldn’t wish this abomination on my worst enemies! It’s extremely obtuse, and annoying with no way to turn off its constant messages about every little thing.

  2. qwreqwreqwre said on September 27, 2024 at 9:58 pm
    Reply

    @J.R. Guthrie:

    “Avast was rated #1 in the latest A/V”

    I’d never use Avast or AVG.

    This is just a small taste:

    “FTC fines cybersecurity company Avast $16.5 million for tracking and selling user data ”

    https://edition.cnn.com/2024/02/22/tech/ftc-avast-cybersecurity-company-fine/index.html

    “Avast fined $16.5 million for ‘privacy’ software that actually sold users’ browsing data”

    https://www.theverge.com/2024/2/22/24080135/avast-security-privacy-software-ftc-fine-data-harvesting

    “Do you use Avast’s antivirus? By default, Avast collects your web browsing activity and offers it to marketers through a subsidiary named Jumpshot. Companies who pay Avast can view full “clickstream data” to see what Avast users are doing online.”

    “Avast says this data is “anonymized,” but PCMag and Motherboard were able to link it to individuals. For example, if you know which Amazon user bought a specific product at a specific second on a specific date, you can identify the “anonymized” individual and then look back through their browsing history.”

    https://www.howtogeek.com/540658/is-your-antivirus-really-spying-on-you/

    One article is somewhat dated, while the others are from 2024.

    Again, this is just a small taste. There’s much more on the subject if you Google it.

    Duke N.
    GI JOE

  3. J.R. Guthrie said on September 26, 2024 at 11:20 pm
    Reply

    “Don’t use Avast/Avira/AVG/Norton, they are all the same trash” just proves the writers negligence of actually knowing what is really going on in the industry. Avast was rated #1 in the latest A/V Comparatives just ahead of Kaspersky and Bitdefender. Avast and AVG use the same A/V engine, Avira and Norton are both completely different products!

    Sincerely,

    J.R. Guthrie
    Advantage Micro Corporation

  4. Scanning my brain stem again I see said on September 26, 2024 at 11:06 am
    Reply

    Dr.Web is in Russia as well. Why haven’t we heard anything about their products/services?

    https://www.drweb.com/
    https://en.wikipedia.org/wiki/Dr.Web

    “Dr.Web is a software suite developed by Russian anti-malware company Doctor Web. First released in 1992, it became the first anti-virus service in Russia.”

  5. Anonymous said on September 26, 2024 at 9:56 am
    Reply

    ‘I don’t think this migration was a good idea, in fact, this could be the dumbest way to have handled the situation. Why not just display a warning to the user, and ask them to use Microsoft Defender?’

    Capitalism comrade.

  6. I saw you ... in an orange grove said on September 26, 2024 at 5:25 am
    Reply

    Downloads still available for:

    = Free Rescue Disk Download (Linux Live CD/DVD/USB)
    “Kaspersky Rescue Disk is designed to scan, disinfect, and restore infected operating systems. It should be used when it is impossible to boot the operating system.

    Kaspersky Lab products are always upgraded and renewed. Kaspersky Lab specialists recommend using the latest version of Kaspersky Rescue Disk to restore your system.

    Once Kaspersky Rescue Disk is downloaded, burn it to a CD / DVD or any USB device and then start your computer from it.”

    https://www.kaspersky.com/downloads/free-rescue-disk
    https://www.majorgeeks.com/files/details/kaspersky_rescue_disk.html

    = Free Virus Removal Tool (stand alone tool)
    https://www.kaspersky.com/downloads/free-virus-removal-tool
    https://www.majorgeeks.com/files/details/kaspersky_virus_removal_tool.html

  7. Paul said on September 25, 2024 at 4:12 pm
    Reply

    @tinarse “Your OS comes with a free, perfectly-adequate solution.”

    No it doesn’t. It is a resource-hungry subpar solution, and mostly meant to work with Microsoft Edge.

  8. Software tester said on September 25, 2024 at 11:01 am
    Reply

    If you really need to use a third-party antivirus, Bitdefender released a new version of its free antivirus a few days ago. Why don’t you give it a try?
    https://www.bitdefender.com/solutions/free.html

  9. tinarse said on September 25, 2024 at 1:02 am
    Reply

    I am astonished that people are still installing – and paying for!!! – 3rd-party AV software. All you’re doing is increasing your attack surface (see: the US banning Kaspersky). Your OS comes with a free, perfectly-adequate solution.

    Do you really think that you will be the special unicorn whose machine was saved from a nefarious attack because you installed an AV that was rated 3% higher than MS Defender on some pointless test? When was the last time anyone actually got hit by a virus that wouldn’t have been caught by Defender? Has this ever happened in the real world?

    These days, any malware actor worth their code will ensure their attack can pass all the engines on VirusTotal as a first step. A basic AV like Defender is still useful, but installing a “better” one doesn’t make sense. Paying for one makes even less sense.

  10. Akina said on September 24, 2024 at 8:34 pm
    Reply

    Kaspersky was -and probably still is- the best Anti Virus software but nowadays an average Windows user do not really need a 3rd party AV when Windows Defender is enough for basic protection. Just be careful with what you download, links you clicked and flash drive that you plug into someone else’s PC.

  11. John said on September 24, 2024 at 4:21 pm
    Reply

    Not a good look for Kaspersky but it is interesting that other Western countries have not followed the US ban. I would question if there was any actually evidence of wrong doing by Kaspersky?
    So we ban a company but continue other relations with Russia such as our space explorations?
    Just appears to be a easy target to pick that would at least give the optics the US governments want in presenting itself as being tough.

  12. Tony said on September 24, 2024 at 4:14 pm
    Reply

    Software that installs third-party software without permission and notice is malware. Of course, Windows is malware too, so it’s just one big malware family.

    1. Midnight said on September 24, 2024 at 5:14 pm
      Reply

      Very true.

  13. efromme said on September 24, 2024 at 3:36 pm
    Reply

    Been using computers for over 40 years and have never ever encountered a virus. Had Norton AV wayback, but it made a mess of everything. Dumped it. Then tried AVS. Also a mess. Then McAfee – mess. Malwarebytes… mess. Kapersky – mess. After all that – against advice from the internet peanut gallery – I switched to MS Defender. Voila! No performance issues ever since. So why pay good money for a virus software that will in all likelihood will cause issues with your hard drive, OS and a internet connection? Yes, their are people out there who somehow manage to get their systems infected. Surf smart people.

    As for Russians spying on US users, well, keep in mind that BS is coming from bureaucrats in Washington DC who have a serious hard-on for all things Russian. So, for political purposes you’re supposed ignore anything Russian.

    1. Bill Magnan said on September 27, 2024 at 8:08 pm
      Reply

      100% with you on this!

      This is just one more – of some 20,000+ – sanctions on anything and anyone RUSSIAN.
      From Russian cats, trees, actors, athletes – the list is endless.

      So yes one more – to protect us.

      As for the switch in AV software – maybe they should have done a better PR job. but it is clear this action was to be sure users had ongoing and current AV protection

    2. Anonymous said on September 24, 2024 at 5:28 pm
      Reply

      just because “BS is coming from bureaucrats in Washington DC who have a serious hard-on for all things Russian” doesnt automatically mean theyre wrong or Ru is innocent (hard laugh), also any whataboutism with nsa and co helps. yes, we are aware. To be clear: Putin and fsb will do anything possible to undermine western democracies and use every possible mean, state threat actors are also well known. Kaspersky has ties to fsb, that also doesnt automaticaly mean its malware, but why taking the risk when you have alternatives.

  14. Tachy said on September 24, 2024 at 3:23 pm
    Reply

    Do people not read the news or know what is happening in the world these days?

    We (USA) are under constant cyberattack from Russia, China, Iran and you willingly install their software on your PC?

    (Redacted Explitive)’s

    1. kiba said on September 28, 2024 at 2:03 am
      Reply

      just change your government, all the world be in peace. all problems in the world are from US and its friends like UK and Israel..

      1. Tom said on October 1, 2024 at 7:45 am
        Reply

        You nailed it.

  15. Jeff Wilson said on September 24, 2024 at 2:25 pm
    Reply

    The question to me is, was the US government right to ban Kaspersky from doing business in the US. And is the company to whom Kaspersky sold its US customer base now officially suspect by association.

    1. boris said on September 25, 2024 at 5:51 am
      Reply

      Yes, to the first one. US is at proxy war with Russia on few fronts, and it’s banning way more serious stuff produced in Russia than Anti-Viruses. If you are not aware, US banned Russian access to all Western financial and credit markets and foreign exchanges which made Ruble none tradable and Russian Stock Market valuations arbitrary (Russians just write suggested numbers in their Economics department office whatever does not looks too horrible). It is a million percent more serious than banning antivirus. It’s like asking somebody: “I already shot you in the chest, and you are mortally wounded, but can I also use your phone? Its urgent”.

      New Antivirus are suspect either way. Their domain was registered on 2024-07-16 and protected by DomainbyProxy. At best, it is some translated bare-bones copy of some Indian or Chinese product created in a week. This fake company does not have history and credential to even be considered legitimate. People also report that a lot of functions do not work or even basic Antivirus options are not implemented. It’s a mess. We got “Hawk Tuah” by Kaspersky. They now have nothing to lose. If they install Viruses, it’s on us too, not just them. It’s in the nature of a wounded animal to bite.

  16. Lizard said on September 24, 2024 at 12:54 pm
    Reply

    There is no reason to have third party antivirus app installed on your PC…Windows Defender is free and it does great job for most people who aren’t tech savy. Last time I installed antivirus was 20 years ago. Window defender is good enough for me…have never gotten a virus since.

    1. 45 RPM said on September 24, 2024 at 4:18 pm
      Reply

      @Lizard

      Re “have never gotten a virus since”…That you know of ;)

      1. Midnight said on September 24, 2024 at 5:14 pm
        Reply

        Exactly what I tell people who have a fly-by-night, Mickey Mouse AV/IS or don’t use any protection whatsoever!
        “That you know of! ” ?

  17. Sweaty897 said on September 24, 2024 at 12:15 pm
    Reply

    This isn’t wholly surprising if you think about it. The US kicked out Kaspersky from access to US customers. That likely a very significant segment of their revenue. Selling their US accounts is a last ditch effort to recoup some of that money.

    What’s the worst that can happen? They lose business from customers that they could no longer sell to anymore? LOL. Their overall brand reputation may take a hit. But it was probably a move necessary to shore up some revenue while they reorganize.

  18. Mr.Boss said on September 24, 2024 at 12:10 pm
    Reply

    kaspersky is a good antivirus. If someone in the Us really wants to use kaspersky, they can buy it with a vpn and install it with a vpn. It helps me removing a tough virus from my pc.

  19. John G. said on September 24, 2024 at 10:17 am
    Reply

    The funny fact is that UltraAV is better than Kaspersky. Hilarious.

    Thanks for the article! :]

    1. El Duderino said on September 24, 2024 at 9:37 pm
      Reply

      @John G, once again with your useless comments.

      Are you paid for posting? Or just do the bootlicking for free?

    2. TelV said on September 24, 2024 at 11:34 am
      Reply

      @John G.,

      Well presumably you never buy stuff online. If you did you would be concerned by the fact that swapping Kapersky AV for UltraAV meant that you no longer have online payment protection now. Webcam protection is also missing according to Ashwin’s screenshot.

      1. boris said on September 24, 2024 at 3:59 pm
        Reply

        Kaspersky AV has always being malware in disguise as many other Anti-Viruses too. Webcam protection is easy. Just use small program “Webcam on/off”. Turn on webcam only when you want/need it.

      2. John G. said on September 24, 2024 at 3:56 pm
        Reply

        @TelV, let’s talk serious now. Online payments protected by a Russian AV, really dude? Webcam protection by a Russian AV, really dude?

        What do you think that we are talking about here?

      3. boris said on September 25, 2024 at 5:21 am
        Reply

        @TelV

        On top of it, Russian Companies are not allowed now to trade on open markets or trade in western currency or use any credit markets. They are using Chinese currency now or barter combined with UAE currency. And those companies you are going to trust for Online Payment processing? They are not allowed anywhere close to credit/online payment servers/clearing houses. Who you are going to complain if they clean your account? Banks are not going to give your money back if they learn what you are using.

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.