MeetingTV has filed a lawsuit against Palo Alto Networks and its acquired threat intelligence unit Koi Security for publishing a faulty AI-driven report that inaccurately accused the startup of involvement in a Chinese espionage campaign, causing significant damage to its operations.
- AI-generated threat report falsely links MeetingTV to Chinese espionage group
- MeetingTV's services globally blocked, severely impacting business
- Palo Alto Networks faces legal and reputational risks after Koi acquisition
What happened
MeetingTV sued Palo Alto Networks and its subsidiary Koi Security following the release of a threat report published at the end of 2025. The report, generated using an AI large language model within Koi’s proprietary Wings platform, linked MeetingTV’s video conferencing service to a Chinese criminal group conducting large-scale malware and espionage campaigns. The company asserts that these AI-driven findings were erroneous hallucinations rather than supported facts.
The questionable report described MeetingTV’s product, Zoomcorder, as a front for criminal activity and claimed it was part of an extensive operation stealing corporate meeting intelligence. Despite the serious accusations, MeetingTV states it was never contacted by Koi for verification, and after publication, no engagement followed. The fallout led to multiple security providers blocking MeetingTV’s domains and classifying them as malware, disrupting its business worldwide.
Why it matters
This case highlights critical challenges in using AI-generated intelligence within cybersecurity. The lawsuit underscores the dangers of unsupervised AI analysis leading to false positives that can irreparably harm innocent companies’ reputations and business. MeetingTV’s founder Michael Robertson emphasized that the blocks imposed by major providers like Verizon and Palo Alto Networks have created a near impossible barrier to normal operations.
The involvement of a major security firm like Palo Alto Networks, which acquired Koi Security shortly before the incident, raises concerns about the due diligence and quality controls around AI-driven threat intelligence. The incident also questions the standards around verification of sensitive claims before public dissemination and the potential collateral damage caused by flawed AI models in high-impact scenarios.
What to watch next
The lawsuit will likely explore the responsibilities of cybersecurity companies using AI in their investigative processes and how they validate or retract AI-produced findings that target third parties. Palo Alto Networks has not publicly detailed any steps toward correcting the misinformation or aiding MeetingTV’s efforts to restore its service status and reputation.
Future developments may also focus on regulatory or industry responses to the risks posed by integrating AI into cybersecurity research, emphasizing accountability and transparency. MeetingTV’s ongoing struggle with service blocks and the demand for a formal retraction underscore the broader need for caution and safeguards in adopting AI-driven cybersecurity tools.