Skip to main content

Kaspersky Lab accused of faking malware to generate false positives in competing software

Two former employees of Russian anti-virus firm Kaspersky Lab have accused the company of generating fake malware files so that its competitors’ software would classify them as malicious.

The allegations were made in a report today from Reuters. The two anonymous ex-employees said Kaspersky Lab would reverse engineer other companies’ software to see how they identify dangerous files.

Recommended Videos

Employees would then supposedly create harmless files with the same signatures as legitimate files that would then appear to be risky, all in the hopes that a competitor would label them as dangerous. The aim was to undermine how rival software worked.

“It is not only damaging for a competing company but also damaging for users’ computers,” said one of the ex-employees.

The unnamed accusers said these orders have been going on for 10 years and sometimes came directly from founder Eugene Kaspersky, who had taken umbrage with many other security software companies for supposedly ripping off its ideas. Some of the competitors named in Reuters’ report include Microsoft, AVG Technologies, and Avast.

It’s hard to assess the damage that these kinds of attacks or false positives can do, added the Reuters report.

Kaspersky Lab has fervently denied the allegations. “Contrary to allegations made in a Reuters news story, Kaspersky Lab has never conducted any secret campaign to trick competitors into generating false positives to damage their market standing,” said the company’s official statement. “Such actions are unethical, dishonest and illegal. Accusations by anonymous, disgruntled ex-employees that Kaspersky Lab, or its CEO, was involved in these incidents are meritless and simply false.”

In 2010, the Russian company shared some harmless files on Google’s VirusTotal aggregation. It did so to prove competitors were following Kaspersky’s lead when it came to marking files as malicious, rather than conducting their own research. Kaspersky called it a “one-time experiment” and added that in 2012 it was targeted by similar attacks that its accused of now.

The security industry has in the past complained about false positives being introduced to the web, but Kaspersky Lab has never been implicated before.

Liam O’Murchu, a security researcher at Symantec, said no one suspected Kaspersky. “We had investigated these attacks but could not find out who was behind them. We had some suspects, Kaspersky was not one of them,” he tweeted.

Microsoft, AVG, and Avast have not commented on these latest allegations.

Jonathan Keane
Jonathan is a freelance technology journalist living in Dublin, Ireland. He's previously written for publications and sites…
This compact HP Omen gaming PC is on sale at 39% off today
The HP Omen 16L gaming desktop sitting on a desk.

For those who want a proper gaming desktop but don't have enough space for a big and bulky machine, the HP Omen 16L could be what you need. You're in luck because it's on sale from the gaming PC deals of HP right now, with this configuration featuring the Nvidia GeForce RTX 3050 graphics card available at 39% off. You'll only have to pay $800 instead of its original price of $1,330, but you need to push through with your purchase immediately if you want to make sure you pocket the savings of $530.

Why you should buy the HP Omen 16L gaming PC

Read more
SpaceX’s Starlink rival is about to launch more internet satellites — here’s how to watch
Amazon's KA-01 mission for Project Kuiper gets underway from the Space Coast.

[UPDATE: A technical issue with the rocket has caused the launch to be postponed. We'll update this article with the new launch schedule just as soon as it becomes available.]

Amazon is preparing to launch its second batch of Project Kuiper internet satellites to orbit as it seeks to build out a constellation to take on SpaceX’s Starlink service.

Read more
Weird Mac mini issue prompts Apple to take action
A top-down view of the Mac Mini.

Following multiple reports of specific Mac mini computers failing to power on, Apple has launched a global repair program to sort the problem out.

Apple launched the  M2 Mac mini in January 2023, though the affected units were made between June 16 and November 23 of 2024, according to a notice about the repair program that was first spotted by MacRumors.

Read more