Lawsuits
Qihoo has been described by Forbes as a confrontational and litigious company due to its involvement in various anti-competition lawsuits.[21]
The company was involved in lawsuits with Tencent,[21][22] starting with the 360 v. Tencent dispute, as well as other companies such as Baidu,[23] Emiage,[24] and Sogou.[25]
Traffic data
The company has been accused by Anonymous of overstating the volume of traffic to its site to attract advertisers.[26]
Antivirus test results
The antivirus testing companies AV-Comparatives of Austria, Germany's AV-Test, and Virus Bulletin of the UK have accused Qihoo of providing for testing its anti-virus equipped with a Bitdefender engine, while the consumer version uses Qihoo's own QVM engine.[27][28]
Certificates
According to documents released by the Mozilla Corporation in 2016, Qihoo appears to have acquired a controlling interest in the previously Israeli-run Certificate Authority "StartCom", through a chain of acquisitions, including the Chinese-owned company WoSign. WoSign also has a certificate authority business; WoSign has been accused of poor control and of misissuing certificates.[29] Furthermore, Mozilla alleges that WoSign and StartCom violate their obligations as Certificate Authorities in respect of their failure to disclose the change in ownership of StartCom; Mozilla is threatening to take action, to protect their users.[30]
Google have stated that their Chrome product will no longer trust by default any certificates signed by StartCom or Wosign roots, starting with Chrome 61.[31] Mozilla have stated that their Firefox product will no longer trust by default any certificates signed by StartCom or WoSign roots, starting with Firefox version 58.[32]
Hidden backdoors
In 2012, a whistleblower reported a hidden backdoor in 360 Secure Browser. The Product Director of 360 Secure Browser, Tao Weihua, responded that "Whoever has a mind to beat a dog will always be able to find a stick" and accused the whistleblower of "smearing 360 on behalf of Baidu", which the whistleblower said was "the worst professional response in history". Independent analysis of the claim showed that the browser has an "undeclared mechanism (i.e., via ExtSmartWiz.dll) which regularly connects to the server (e.g., every 5 minutes), and allows it to download files of any type (including executables) from the server."[33]
In October 2020, Mnemonic reported the existence of a backdoor affecting a line of children's watches under the Xplora brand manufactured by Qihoo.[34]
Samsung device cleaner
In January 2020, a Reddit user reported Qihoo 's presence in Samsung mobile phones as a pre-installed storage cleaner in the device settings, from where it sends data packages to Chinese servers.
Samsung device cleaner
In January 2020, a Reddit user reported Qihoo 's presence in Samsung mobile phones as a pre-installed storage cleaner in the device settings, from where it sends data packages to Chinese servers. The user could not identify which information is sent specifically.[35] Later, Samsung representative declared that the only data sent back to Qihoo is generic information needed to optimize storage — specifically naming OS version, phone model, and storage capacity, among other data. Qihoo's main contribution is a reference library for identifying junk files, but that library is stored locally in the utility, and Qihoo never receives data that would allow it to identify a particular file on a user's device.[36]
In December 2017, the Chinese Government acted to curtail the widespread webcasting of live security-company-cameras, private webcams, and IP camera footage, voicing concerns of violations of privacy and portrait rights, sanctioning Qihoo.[37][38][39]
National Business Daily lawsuit