Kaspersky quietly uninstalled itself from US customers’ computers on September 19, 2024 — and silently installed UltraAV in its place. No consent prompt. No opt-out. Users woke up to find a different antivirus on their machines. The cause: a US government ban on Kaspersky’s Russian-linked operations, which forced the company out of the American market and into a controversial exit that raised serious questions about software consent and the national security logic behind the ban.
Stories Covered
Kaspersky Auto-Removes Itself, Auto-Installs UltraAV: US Ban Forces a Consent-Free Software Swap
The US Commerce Department banned Kaspersky from operating in the United States, citing national security concerns over the company’s Russian origins and the potential for the Russian government to influence or access its products. The ban forced Kaspersky to exit the US market entirely. Its response was to partner with UltraAV, a product of the Pango Group — a US-based cybersecurity company — and transition its paid subscribers automatically. On September 19, 2024, a Kaspersky update rolled out that silently uninstalled Kaspersky and installed UltraAV in its place. Users who had paid for Kaspersky found an unfamiliar antivirus on their systems the next morning, without ever being asked if they wanted it.
The notification defense offered by both companies is weak. Kaspersky sent emails in early September indicating that users would continue receiving protection through UltraAV, their US-based partner. Pango Group told Mashable that “all users with valid email addresses received direct communications.” But receiving a notice that a partner will provide future services is not the same as consenting to a silent auto-install. There is a meaningful difference between “you can choose to switch to UltraAV” and “UltraAV is being installed on your machine tonight.” The backlash on social media was immediate — users confused by an unknown antivirus that appeared without warning, some treating it as malware. The complaint is not unfounded: software that self-installs without explicit consent is exactly the behavior legitimate security tools are supposed to prevent.
On the product comparison: UltraAV has some features Kaspersky lacked, including up to $1 million in identity theft insurance, high-risk transaction monitoring, and social security number alerts. Kaspersky had features UltraAV does not, including webcam protection and online payment protection. Neither product is obviously superior. The national security case for the ban parallels the TikTok situation — the concern is not that Kaspersky has done anything demonstrably malicious, but that as a Russian company it remains subject to Russian government influence or compulsion. Whether that risk justifies banning the product for ordinary consumers (rather than just government networks) is a harder call. Critical infrastructure and government systems are a legitimate concern. For a home user with no connection to sensitive systems, the risk calculus looks different. What is harder to defend is the manner of the exit — users who paid for Kaspersky deserved a real choice about what replaced it.
Leave a Reply