TheVortiq
Inteligencia Artificial

Startup Sues Koi Security Over AI Hallucinations Linking It to Chinese Espionage

MeetingTV accuses the cybersecurity firm of publishing a fake AI-generated report without human verification, causing blocks and reputational damage.

July 12, 2026 · 4 min read

an abstract image of a sphere with dots and lines

TL;DR: MeetingTV sued Koi Security over an AI report falsely linking it to Chinese espionage. The case highlights the dangers of AI without human oversight and could set a legal precedent.

What Happened?

MeetingTV, a video conferencing startup founded by Michael Robertson (known for creating MP3.com and SIPphone), filed a lawsuit in a federal court in California against Palo Alto Networks and its subsidiary Koi Security. The lawsuit originated after the publication of a threat intelligence report in December 2024, in which Koi claimed that MeetingTV's Zoomcorder service was linked to a Chinese state-sponsored cyber espionage campaign attributed to the DarkSpectre group. According to the lawsuit, the report was almost entirely generated by Koi's Wings platform, an automated analysis tool based on artificial intelligence, without proper human oversight. The report claimed that Zoomcorder used a browser extension called 'Twitter X Video Downloader' to distribute malware. However, MeetingTV maintains that such an extension never existed and that Koi presented no technical evidence to support the connection. The lawsuit alleges that Koi blindly trusted its automated system, resulting in false accusations. After the report's publication, multiple security companies and service providers, including DNS providers and email platforms, blocked MeetingTV's domains, classifying them as malicious infrastructure. MeetingTV claims this severely damaged its reputation and operations, and that Koi did not contact the startup before publishing the report, denying them the opportunity to clarify the facts. Koi later removed references to Zoomcorder, but the damage was already done.

Why Is This Important?

This case is one of the first where a company sues another for damages caused by AI 'hallucinations' in the cybersecurity field. Unlike other known cases of generative AI producing false information (such as chatbots inventing legal citations), this incident occurred in a high-stakes context: identifying cyber threats. The lawsuit alleges that Koi presented its AI's findings as verified facts without rigorous review, leading to concrete blocking actions by third parties. MeetingTV founder Michael Robertson stated that the report caused immediate and tangible harm: potential customers abandoned the platform, investors withdrew, and the company lost revenue. This case underscores the tension between automation and the need for human verification in cybersecurity, a field where errors can have devastating consequences. It also raises questions about the legal liability of companies that market AI tools without ensuring their accuracy. Palo Alto Networks has defended Koi's work, stating it reflects their efforts to identify threats, but the case exposes that over-reliance on AI can generate false accusations with severe collateral effects.

Consequences and Precedents

If the courts rule in favor of MeetingTV, this case could set an important precedent for the legal liability of companies using AI without adequate human oversight. The lawsuit emphasizes that AI systems can produce incorrect information, and presenting their results as verified facts without rigorous review can cause serious harm. Legal experts note that this case could establish due diligence standards for AI use in cybersecurity, forcing companies to implement human verification processes before publishing conclusions that affect third parties. Additionally, the case could influence AI regulation, especially in critical sectors. Compared to other incidents, such as an airline chatbot inventing refund policies, this is more severe because false espionage accusations can have legal and national security implications. It also recalls the 2020 controversy when FireEye mistakenly attributed an attack to a ransomware group, but in that case, human review was involved. MeetingTV's lawsuit could lead cybersecurity companies to be more cautious when publishing AI-generated reports and could increase pressure for stricter regulatory oversight.

What Readers Should Know

This incident highlights the risks of delegating critical tasks to AI without supervision. Companies developing AI tools must implement robust verification processes before publishing conclusions that could affect third parties. For cybersecurity professionals, the lesson is clear: AI is a powerful tool, but not infallible. Human verification remains indispensable to avoid reputational and legal damage. The case also raises questions about ethics and transparency in publishing threat reports. Companies should consider establishing protocols to notify affected parties before making serious accusations public. Additionally, users and businesses relying on threat intelligence reports should be aware that these may contain errors, especially if generated automatically. This case could lead to greater regulation of AI use in cybersecurity, as well as an increase in lawsuits for defamation or damages caused by AI. Ultimately, MeetingTV vs. Palo Alto Networks could become a landmark case defining how to balance AI innovation with legal liability and protection of the rights of companies affected by false accusations.

Keep reading