There’s probably a Brand X joke in there somewhere…
A number of US-based users of Kaspersky Antivirus suddenly found their antivirus program replaced by a new, unfamiliar one: UltraAV.
Before the what, let’s get to the why. A few months back, the US government implemented a ban on Kaspersky products. Cited were fears that the company might use their products to spy on US citizens. Despite an offer from Kaspersky to hand over their source code to US officials for review, the ban remains in place.
In accordance with the ruling, Kaspersky complied and announced that they would offload their US operations to UltraAV, a US-based company.
Fast forward to today, where the effects of that handover are beginning to bloom.
UltraAV isn’t exactly a household name. Which may lead users to question whether or not to go forward with it. As a matter of fact, the entire thing has some of the infosec community giving it the side eye. As said one infosec worker speaking to The Register on condition of anonymity:
We’ve a very close knit community in the AV business, so having a complete unknown is really unusual. I can talk to competitors around the world because we all know, or know of, each other – so this under-the-radar stuff got people talking.
What is known about UltraAV is fairly limited. They’re part of the Boston-based Pango Holding Group, which holds a portfolio of varied security related products. Pango has a previously established relationship with Kaspersky; the latter licensed some of the former’s VPN software. Pango also split from another Massachusetts-based outfit named Aura earlier in the month. According to The Register, the antivirus engine in UltraAV is based on work from Indian vendor Max Secure Software, which Aura acquired roughly two years ago.
It’s significant, then that UltraAV’s software hasn’t really been tested by anyone. Most anti-malware vendors provide independent testers access to their program to demonstrate its features and abilities. UltraAv and Aura have not done so; once again, per The Register, the overwhelming majority of antivirus testing laboratories haven’t seen UltraAv’s code. One which had, however, said the following to The Register:
We did not run a full test – we only had a quick look. But let’s put it this way: There is room for improvement in the protection and usability.
UltraAv also hasn’t been put through its paces by the Anti-Malware Testing Standards Organization (AMTSO), a non-profit dedicated to ensuring the industry continues to be honest. While there’s no requirement for such testing, it’s highly suspicious that none has happened in an industry that is based on trust. UltraAV states that a third-party test “is planned for the end of this year.”
It’s also worth noting that before their acquisition by Aura, UltraAV’s products didn’t have the greatest reputation for reliability.
As for the end user, however, the ban goes into full effect at the end of September, on the 30th.
per an Aura spokesperson:
Users will maintain the price for UltraAV that they were being billed for Kaspersky.
If any customers were to cancel their plan and then repurchase UltraAV, it would cost them $47.88 per year, billed annually for the first year and then would renew at the full price of UltraAV, $149.99. This plan would not include the added identity protection features being offered under the Kaspersky transition.
Kaspersky sent their final bills to users in June, and payments to UltraAV begin in October. Those using Kaspersky’s free version will still see support.
All said, consumer complacency is a real thing, so it’s likely that a large number of users simply won’t care about the change. Which means UltraAV just got a sizeable userbase for basically nothing (a Luigi strategy if ever you saw one). For those interested, UltraAV has an FAQ detailing the changes for Kaspersky customers here.
Source: The Register