Bad Kaspersky antivirus update prevents business and home users from accessing websites
Kaspersky antivirus update users are advised to temporarily disable the Web protection component and install a new update in order to fix the issue
IDG News Service - A faulty antivirus update issued by Kaspersky Lab on Monday left many of its home and business customers unable to access any websites on their computers.
Systems administrators using Kaspersky Endpoint Security (KES) on their corporate networks started reporting the problem on Kaspersky's support forum on Monday afternoon, Eastern Time. The reports kept piling up until late in the evening.
"I have ~12,000 machines running KES8 and my help desk started getting calls about an hour ago saying users were having problems accessing various web sites," one user named bradb21 reported.
Other users confirmed the problem and attempted to troubleshoot it themselves. Some reported success after disabling the Web protection component or turning off the product's monitoring for port 80, 443 and other Web proxy ports.
Users later posted responses they had received from the company's technical support representatives. This included a recommendation to temporarily disable the Web antivirus component on the affected computers via the management console, force them to perform a new definition update and re-enable the Web antivirus.
Most users reported that the problem manifested itself only on Windows XP systems. However, the faulty update didn't just affect business antivirus products, but consumer ones as well.
"The issue was caused by a database update released on 4/2/2013 at 8:52:00 PM MSK [Moscow Standard Time] that resulted in the Web Anti-Virus component in some products blocking Internet access," a Kaspersky representative said Tuesday via email. "The problem only affected x86 systems with the following products installed: Kaspersky Anti-Virus for Windows Workstations 6.04 MP4; Kaspersky Endpoint Security 8 for Windows; Kaspersky Endpoint Security 10 for Windows; Kaspersky Internet Security 2012 and 2013; and Kaspersky Pure 2.0."
The problem was fixed with a database update released on Jan. 5 at 2:31 a.m. Moscow Standard Time (Jan. 4 at 5:31 p.m. ET), according to the Kaspersky representative.
Computers that download updates via the Kaspersky Administration Kit or Security Center management console will receive the fix automatically. However, computers that are configured to download the antivirus updates directly from Kaspersky's update servers will need to first have the Web Anti-Virus component disabled, the Kaspersky representative said.
"Kaspersky Lab would like to apologize for any inconvenience caused by this database update error. Actions have been taken to prevent such incidents from occurring in the future," she said.
Faulty antivirus updates are not uncommon and nearly every antivirus company has had to deal with them at one time or another. The impact of a bad update, however, is different from case to case and can range from a mild annoyance to hours of downtime.
There have been cases when bad antivirus updates deleted critical system files and left computers unable to boot into the operating system. In such situations, fixing the problem can require manual intervention, which can be a very time consuming task, especially on corporate networks with hundreds or thousands of computers and offsite branches.
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- The Threat Landscape Hardly a day goes by without the discovery of a new cyberthreat somewhere in the world! But how do you keep up with...
- Security for Virtualization In the rush to implement virtualization, security has become second. So while the business benefits are clear, the risks are less well documented...
- HP HAVEn: See the big picture in Big Data HP HAVEn is the industry's first comprehensive, scalable, open, and secure platform for Big Data. Enterprises are drowning in a sea of data...
- What Datapipe customers need to know about the new PCI DSS 3.0 compliance standard This handy quick reference outlines what PCI DSS 3.0 is, who needs to be compliant and how Alert Logic solutions address the new...
- Meg Whitman presents Unlocking IT with Big Data During this Web Event you will hear Meg Whitman, President and CEO, HP discuss HAVEn - the #1 Big Data platform, as well...
- The New Way to Work Knowledge Vault This Knowledge Vault focuses on how, in today's increasingly virtual world, it's more important than ever to engage deeply with employees, suppliers, partners,... All Malware and Vulnerabilities White Papers | Webcasts