Reuters: Russian antivirus firm faked malware to harm rivals

Discussion in 'other anti-virus software' started by vlk, Aug 14, 2015.

  1. vlk

    vlk AV Expert

    Joined:
    Dec 26, 2002
    Posts:
    618
  2. mnosteele

    mnosteele Registered Member

    Joined:
    Oct 19, 2003
    Posts:
    181
    Location:
    Chesapeake, VA USA
    WOW! I will never touch Kaspersky again, used to be a reseller and it caused more problems than it prevented. They should be banned from testing sites, punished just like the cheaters in professional sports. No excuse for this type of behavior, bush league and classless.
    :thumbd::mad:
     
  3. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    5,057
    Interesting. Bad move by Kaspersky.
    If we would check other large IT companies, how many of them would have clean history?
     
  4. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    Erm, how do you "trick" competition into flagging files as malware? If any competitor has somehow fallen for that, they are a lousy security company. It's their job to verify what the files are, what they do and if they are malware or not, not Kaspersky's.
     
  5. Tarantula

    Tarantula Registered Member

    Joined:
    Jul 23, 2010
    Posts:
    357
    Wow! As if Reuters is something you can rely on. Facepalm.
     
  6. anon

    anon Registered Member

    Joined:
    Dec 27, 2012
    Posts:
    4,087
    Shoot the messenger........ :rolleyes:
     
  7. Tarantula

    Tarantula Registered Member

    Joined:
    Jul 23, 2010
    Posts:
    357
    No, it's just that Reuters is US propaganda tool. I don't believe a word.
     
  8. JimmyJames321

    JimmyJames321 Registered Member

    Joined:
    Apr 6, 2015
    Posts:
    47
    Well, to make the accusation a concrete case.
    1. those two former employees should identify themselves like Snowden did. and
    2. other than verbal accusations, hard evidence is needed.

    as of now, we should treat it as rumor.
     
  9. Nightwalker

    Nightwalker Registered Member

    Joined:
    Nov 7, 2008
    Posts:
    784
    In the past years I noticed that many antivirus signatures are just copycats from Kaspersky and the use of Virustotal to copy is a fact.
    I think we had a discussion about this here on Wilders (2008-2009 maybe?).

    Kaspersky are at fault if it is true, but the other antivirus firms are even worse, they really have a bad R&D to follow other companies so blind, they shouldn't be trust at all.

    I totally agree with RejZoR
     
  10. RejZoR

    RejZoR Registered Member

    Joined:
    May 31, 2004
    Posts:
    6,426
    A reason why Kaspersky "might" have done this is exactly what you said. I know quite some companies that were plain lazy and just added detections if Kaspersky detected it (or other high profile product). I know companies share intelligence and samples, but this is just lazy work. Basically they piggy back on the hard work of Kaspersky analysis systems and work of their analysist. Even if Kaspersky did this, it's still entirely the fault of companies that has potentially fallen for this "trick". If you're lazy in the beginning, you're also lazy when you add fakes. Meaning it's entirely YOUR fault. Not sure why people jumped to conclusion that Kaspersky is the bad guy here. If you ask me, Kaspersky did nothing wrong and I see no reason to boycott them or talk bad abou them because of it.
     
  11. FleischmannTV

    FleischmannTV Registered Member

    Joined:
    Apr 7, 2013
    Posts:
    1,071
    Location:
    Germany
    I fully agree with RejZor.
     
  12. Eggnog

    Eggnog Registered Member

    Joined:
    Nov 17, 2012
    Posts:
    94
    Location:
    United States
    Remember, all this is "according to two former employees". So take that for what it's worth and don't jump to conclusions.
     
  13. itman

    itman Registered Member

    Joined:
    Jun 22, 2010
    Posts:
    2,969
    Location:
    U.S.A.
    In one technique, Kaspersky's engineers would take an important piece of software commonly found in PCs and inject bad code into it so that the file looked like it was infected, the ex-employees said. They would send the doctored file anonymously to VirusTotal.

    Would that not break the hash of the file? And VT never detected that?
     
  14. m0unds

    m0unds Guest

    i don't think virustotal uses the hash for anything other than cross-referencing previous detection reports of that same file, either by search or when someone else submits a previously scanned file for scanning.
     
  15. wshrugged

    wshrugged Registered Member

    Joined:
    Jun 12, 2009
    Posts:
    202
    I don't imagine an end user felt warm and fuzzy when a detection/quarantine happened on their system.

    IF the story is true, Kaspersky should've made their findings public, post trap. Messing with end user's lives/time without a LOUDLY stated purpose isn't forgivable. Immediately exposing thieves, is.


    [disclosure -- I've used one of the products mentioned in the article but wasn't affected. I don't/won't use Kaspersky for other reasons but any company who did what is alleged (without loud publicity) wouldn't have me for a customer - ever.]
     
  16. Miyagi

    Miyagi Registered Member

    Joined:
    Mar 12, 2005
    Posts:
    420
    Location:
    Honolulu, Hawaii
    Wasn't there something similar with Malwarebytes and IOBit?
     
  17. xxJackxx

    xxJackxx Registered Member

    Joined:
    Oct 23, 2008
    Posts:
    4,047
    Location:
    USA
    I do also. Not stopping me from using it.
     
  18. haakon

    haakon Registered Member

    Joined:
    May 25, 2015
    Posts:
    752
    Location:
    SW USA
  19. Hiltihome

    Hiltihome Registered Member

    Joined:
    Jul 5, 2013
    Posts:
    550
    Location:
    Baden Germany
  20. phalanaxus

    phalanaxus Registered Member

    Joined:
    Jan 19, 2011
    Posts:
    499
    It's really interesting how quickly people will believe something and jump to conclusions. The article linked states the claim comes from anonymous ex-Kaspersky workers and says reuters have no solid evidence. People shouldn't forget that spewing bull$ is so easy.
     
  21. imdb

    imdb Registered Member

    Joined:
    Nov 2, 2011
    Posts:
    758
    i second that
     
  22. Iangh

    Iangh Registered Member

    Joined:
    Jul 13, 2005
    Posts:
    611
    Location:
    Melbourne, Australia
    What about the people that had the system stuffed, and the ramifications thereof. Was that OK?
     
  23. funkydude

    funkydude Registered Member

    Joined:
    Apr 5, 2004
    Posts:
    6,852
    I wouldn't be surprised if it is true. As AV companies face further irrelevancy they will push to try and maintain profits.
     
  24. malexous

    malexous Registered Member

    Joined:
    Jun 18, 2010
    Posts:
    828
    Location:
    Ireland
    Two disgruntled ex-employees would never make something up about their former employer and rivals would never pretend to be ex-employees of a company. Rivals would definitely fake malware, though.
     
    Last edited: Aug 14, 2015
  25. Nevis

    Nevis Registered Member

    Joined:
    Aug 28, 2010
    Posts:
    786
    Location:
    255.255.255.255
    Wow, I thought I would be the one defending Kaspersky here but looks like it already gathered quite a few supporters.
     
Loading...