Kaspersky Lab (; ) is a Russian
multinational cybersecurity
Computer security (also cybersecurity, digital security, or information technology (IT) security) is a subdiscipline within the field of information security. It consists of the protection of computer software, systems and networks from thr ...
and
anti-virus
Antivirus software (abbreviated to AV software), also known as anti-malware, is a computer program used to prevent, detect, and remove malware.
Antivirus software was originally developed to detect and remove computer viruses, hence the name ...
provider headquartered in
Moscow
Moscow is the Capital city, capital and List of cities and towns in Russia by population, largest city of Russia, standing on the Moskva (river), Moskva River in Central Russia. It has a population estimated at over 13 million residents with ...
,
Russia
Russia, or the Russian Federation, is a country spanning Eastern Europe and North Asia. It is the list of countries and dependencies by area, largest country in the world, and extends across Time in Russia, eleven time zones, sharing Borders ...
,
and operated by a
holding company
A holding company is a company whose primary business is holding a controlling interest in the Security (finance), securities of other companies. A holding company usually does not produce goods or services itself. Its purpose is to own Share ...
in the
United Kingdom
The United Kingdom of Great Britain and Northern Ireland, commonly known as the United Kingdom (UK) or Britain, is a country in Northwestern Europe, off the coast of European mainland, the continental mainland. It comprises England, Scotlan ...
. It was founded in 1997 by
Eugene Kaspersky
Yevgeny Valentinovich Kaspersky (; born 4 October 1965) is a Russian cybersecurity expert and the CEO of Kaspersky Lab, an IT security company with 4,000 employees. He co-founded Kaspersky Lab in 1997 and helped identify instances of government-s ...
,
Natalya Kaspersky
Natalya Ivanovna Kasperskaya (; born 5 February 1966) is a Russian IT entrepreneur, President of the InfoWatch Group of companies and co-founder and former CEO of antivirus security software company Kaspersky Lab. and Alexey De-Monderik. Kaspersky Lab develops and sells
antivirus
Antivirus software (abbreviated to AV software), also known as anti-malware, is a computer program used to prevent, detect, and remove malware.
Antivirus software was originally developed to detect and remove computer viruses, hence the name ...
,
internet security
Internet security is a branch of computer security. It encompasses the Internet, browser security, web site security, and network security as it applies to other applications or operating systems as a whole. Its objective is to establish rules ...
, password management,
endpoint security
Endpoint security or endpoint protection is an approach to the protection of computer networks that are remotely bridged to client devices. The connection of endpoint devices such as laptops, tablets, mobile phones, and other wireless devices t ...
, and other cybersecurity products and services.
Kaspersky expanded abroad from 2005 to 2010 and grew to $704 million in annual revenues by 2020, up 8% from 2016, though annual revenues were down 8% in
North America
North America is a continent in the Northern Hemisphere, Northern and Western Hemisphere, Western hemispheres. North America is bordered to the north by the Arctic Ocean, to the east by the Atlantic Ocean, to the southeast by South Ameri ...
due to US government security concerns.
the software has about 400 million users and has the largest market-share of cybersecurity software vendors in
Europe
Europe is a continent located entirely in the Northern Hemisphere and mostly in the Eastern Hemisphere. It is bordered by the Arctic Ocean to the north, the Atlantic Ocean to the west, the Mediterranean Sea to the south, and Asia to the east ...
. Kaspersky Lab ranks fourth in the global ranking of antivirus vendors by revenue. It was the first Russian company to be included into the rating of the world's leading software companies, called the Software Top 100 (79th on the list, as of June 29, 2012). Kaspersky Lab is ranked 4th in
Endpoint Security
Endpoint security or endpoint protection is an approach to the protection of computer networks that are remotely bridged to client devices. The connection of endpoint devices such as laptops, tablets, mobile phones, and other wireless devices t ...
segment according to
IDC data for 2010.
The Kaspersky Global Research and Analysis Team (GReAT) has led the discovery of sophisticated espionage platforms conducted by nations, such as
Equation Group
The Equation Group, also known in China as APT-C-40, is a highly sophisticated Threat (computer)#Threat agents or actors, threat actor suspected of being tied to the Tailored Access Operations (TAO) unit of the United States National Security Age ...
and the
Stuxnet
Stuxnet is a Malware, malicious computer worm first uncovered on June 17, 2010, and thought to have been in development since at least 2005. Stuxnet targets supervisory control and data acquisition (SCADA) systems and is believed to be responsibl ...
worm.
cyber-espionage
Cyber espionage, cyber spying, or cyber-collection is the act or practice of obtaining secrets and information without the permission and knowledge of the holder of the information using methods on the Internet, networks or individual computers th ...
efforts were uncovered through their research. Kaspersky also publishes the annual Global IT Security Risks Survey.
Kaspersky's research hubs analyze more than 350,000 malware samples per day.
The US government has alleged that Kaspersky has engaged with the Russian
Federal Security Service
The Federal Security Service of the Russian Federation �СБ, ФСБ России (FSB) is the principal security agency of Russia and the main successor agency to the Soviet Union's KGB; its immediate predecessor was the Federal Counterin ...
(FSB)—ties which the company has actively denied. In 2017 The Trump administration issued a ban of Kaspersky software on federal civilian and military computers. In response to
these and other allegations, Kaspersky began to solicit independent reviews and verification of its
source code
In computing, source code, or simply code or source, is a plain text computer program written in a programming language. A programmer writes the human readable source code to control the behavior of a computer.
Since a computer, at base, only ...
, and relocated core infrastructure and customer data from Russia to
Switzerland
Switzerland, officially the Swiss Confederation, is a landlocked country located in west-central Europe. It is bordered by Italy to the south, France to the west, Germany to the north, and Austria and Liechtenstein to the east. Switzerland ...
. Multiple countries have banned or restricted their
government agencies
A government agency or state agency, sometimes an appointed commission, is a permanent or semi-permanent organization in the machinery of government (bureaucracy) that is responsible for the oversight and administration of specific functions, ...
from using Kaspersky products, including Lithuania, the Netherlands, and the United States.
On 20 June 2024, the US announced that it would prohibit Kaspersky from selling or distributing updates to its software to US customers which caused the cybersecurity company to leave the US market the following month.
History
The first version of Kaspersky Lab's antivirus software was developed by Eugene Kaspersky in 1989 in response to the
Cascade Virus.
Early versions had just 40 virus definitions and were mostly distributed to friends and family members.
Kaspersky continued developing the software at KAMI,
resulting in the AntiViral Toolkit Pro (AVP) product released in 1992.
It was popularized in 1994 after a competitive analysis by
Hamburg University
The University of Hamburg (, also referred to as UHH) is a public research university in Hamburg, Germany. It was founded on 28 March 1919 by combining the previous General Lecture System ('' Allgemeines Vorlesungswesen''), the Hamburg Colon ...
gave his software first place.
In 1997, Eugene Kaspersky, his wife Natalya Kaspersky, and Alexey De-Monderik left KAMI to form Kaspersky Lab,
and to continue developing the antivirus product, then called AVP.
The product was renamed Kaspersky Anti-Virus after an American company registered the AVP trademark in the US.
In 1998, a Taiwanese student released a virus called
CIH. During the first three weeks of the outbreak, Kaspersky Lab's AVP was the only software at the time able to remove it. This increased demand and led to deals with antivirus companies in Japan, Finland and Germany to integrate AVP into their software.
According to ''
WIRED
Wired may refer to:
Arts, entertainment, and media Music
* ''Wired'' (Jeff Beck album), 1976
* ''Wired'' (Hugh Cornwell album), 1993
* ''Wired'' (Mallory Knox album), 2017
* "Wired", a song by Prism from their album '' Beat Street''
* "Wired ...
'', Kaspersky's software was "advanced for the time". For example, it was the first software to monitor viruses in an isolated quarantine.
The company's revenue grew 280 percent from 1998 to 2000, with about 60 percent of its revenue coming from foreign sales.
Natalya worked to broker deals abroad and localize the software. It opened offices in the UK, Poland, Holland and China. It later expanded to Germany, France, the US and Japan.
By 2000, the company had 65 employees and sales in more than 40 countries.
Kaspersky opened new offices in South East Asia and the
Middle East
The Middle East (term originally coined in English language) is a geopolitical region encompassing the Arabian Peninsula, the Levant, Turkey, Egypt, Iran, and Iraq.
The term came into widespread usage by the United Kingdom and western Eur ...
in 2008
and in South Africa in 2009.
It also expanded in India, the Middle East and Africa in 2010.
In 2009, retail sales of Kaspersky Lab's antivirus products reached almost 4.5 million copies per year.
In 2011,
General Atlantic
General Atlantic, legal main entity General Atlantic Service Company, L.P., (also known as "GA") is an American growth equity firm providing capital and strategic support for global growth companies, headquartered in New York, United States. T ...
bought a 20 percent share of Kaspersky Lab for $200 million, with the expectation of helping the company go public. A few months later, the decision was made to keep the firm private and Kaspersky re-purchased the shares from General Atlantic.
This was followed by numerous executive departures in 2011 and 2014 regarding disputes over going public and over Eugene Kaspersky's management style.
On January 1, 2012, Kaspersky Lab officially left the
Business Software Alliance (BSA) over
SOPA
The Stop Online Piracy Act (SOPA) was a proposed United States congressional bill to expand the ability of U.S. law enforcement to combat online copyright infringement and online trafficking in counterfeit goods. Introduced on October 26, 20 ...
. The BSA had supported the controversial anti-piracy bill, but Kaspersky Lab did not support it stating, "we believe that such measures will be used contrary to the modern advances in technology and the needs of consumers," and to show their disapproval, announced their intent to leave on December 5, 2011.
By 2013, the company had an unaudited $667 million in annual revenues.
In 2014, Kaspersky Lab signed a distribution deal with Ingram Micro, which significantly expanded its reseller program.
In August 2015, two former Kaspersky employees alleged that the company introduced modified files into the
VirusTotal
VirusTotal is a website created by the Spanish security company Hispasec Sistemas. Launched in June 2004, it was acquired by Google in September 2012. The company's ownership switched in January 2018 to Chronicle, a subsidiary of Google.
Viru ...
antivirus database to trick software from Kaspersky competitors into triggering false positives in virus and malware scans. A possible motive is that Eugene Kaspersky allegedly was furious at competitors perceived to be "unfairly" free-riding on Kaspersky's malware discoveries via the open-source VirusTotal database. The company denied the allegations.
On his personal blog, Eugene Kaspersky compared the accusations to unsubstantiated conspiracy theories. Reuters followed up by publishing leaked emails allegedly from Kaspersky alluding to "falsies" and "rubbing out" foreign competitors; Kaspersky Lab stated the emails "may not be legitimate and were obtained from anonymous sources that have a hidden agenda".
In 2016, Kaspersky executive Ruslan Stoyanov was arrested by Russian authorities on charges predating his work at Kaspersky. In 2019, he was convicted of treason.
In June 2023, Kaspersky Lab said many of its senior staff and managers were hit by an ongoing attack that it first suspected in early 2023 and has compromised thousands of
iPhone
The iPhone is a line of smartphones developed and marketed by Apple that run iOS, the company's own mobile operating system. The first-generation iPhone was announced by then–Apple CEO and co-founder Steve Jobs on January 9, 2007, at ...
s. The oldest traces of infection date back to 2019. The Russian
Federal Security Service
The Federal Security Service of the Russian Federation �СБ, ФСБ России (FSB) is the principal security agency of Russia and the main successor agency to the Soviet Union's KGB; its immediate predecessor was the Federal Counterin ...
(FSB) separately accused the US
National Security Agency
The National Security Agency (NSA) is an intelligence agency of the United States Department of Defense, under the authority of the director of national intelligence (DNI). The NSA is responsible for global monitoring, collection, and proces ...
and company
Apple
An apple is a round, edible fruit produced by an apple tree (''Malus'' spp.). Fruit trees of the orchard or domestic apple (''Malus domestica''), the most widely grown in the genus, are agriculture, cultivated worldwide. The tree originated ...
of being behind the attack and infiltrating the phones of diplomats from China, Israel,
NATO
The North Atlantic Treaty Organization (NATO ; , OTAN), also called the North Atlantic Alliance, is an intergovernmental organization, intergovernmental Transnationalism, transnational military alliance of 32 Member states of NATO, member s ...
members, and Syria. Kaspersky Lab said it does not believe itself to be the main target and that it had not shared its own findings about the attack with Russian authorities until the FSB announcement.
On 20 June 2024, after the US announced that it would prohibit Kaspersky from selling or distributing updates to its software to US customers, the company announced it would leave the US market.
On September 25, the company abruptly replaced its software on US users' computers with UltraAV software developed by US cybersecurity firm Pango, angering some users.
Products and services
Kaspersky Lab develops and markets antivirus, internet security, password management, endpoint security, and other cybersecurity products and services.
It is the fourth or fifth largest endpoint security vendor
and the third largest consumer IT security software company.
It is the sixth largest overall IT security company.
Its revenues are about 15 percent from Russian companies domestically, one-third from European organizations and one-fourth from US organizations.
The software has about 400 million users in all.
Kaspersky's consumer software include the Antivirus, Internet Security and Total Security products.
The Antivirus software includes malware protection, monitors the PC for suspicious program behavior, and warns users about potentially dangerous websites. The Internet Security software adds privacy features, parental controls, anti-phishing tools.
Total Security adds parental controls, adult website filters, diagnostic tools, a Password Manager application, and other features.
Since 2023, the new lineup was introduced, with Kaspersky Basic, Plus and Premium replacing Antivirus, Internet Security and Total Security. Kaspersky's software is available for Macs, PCs, Android, iOS,
Windows Mobile
Windows Mobile is a discontinued mobile operating system developed by Microsoft for smartphones and personal digital assistants (PDA). Designed to be the portable equivalent of the Windows desktop OS in the emerging Mobile device, mobile/port ...
,
BlackBerry
BlackBerry is a discontinued brand of handheld devices and related mobile services, originally developed and maintained by the Canadian company Research In Motion (RIM, later known as BlackBerry Limited) until 2016. The first BlackBerry device ...
and
Symbian
Symbian is a discontinued mobile operating system (OS) and computing platform designed for smartphones. It was originally developed as a proprietary software OS for personal digital assistants in 1998 by the Symbian Ltd. consortium. Symbian OS ...
.
For businesses, the company has developed Kaspersky Industrial CyberSecurity for
OT environments, and Kaspersky Hybrid Cloud Security for container infrastructures. Detection and response solutions include Kaspersky Next
XDR Expert, Kaspersky Next
EDR Optimum, and Kaspersky
SIEM Security information and event management (SIEM) is a field within computer security that combines security information management (SIM) and security event management (SEM) to enable real-time analysis of security alerts generated by applications an ...
for centralized security monitoring. The company markets the Kaspersky Endpoint Security for Business suite. It includes a centralized user interface and management application called the Kaspersky Security Center. The cybersecurity software itself is called the Kaspersky Security Network. The Kaspersky Administration KitSecurity Center manages configuration, installation and remote use. The business suite also has quarantine, reporting, and other features. Its software product for businesses with 25 staff or less is called Kaspersky Small Office Security (KSOS).
Within the suite are products specifically for virtualization security,
mobile security,
and fraud protection
among others. Kaspersky also develops a free tool that helps businesses gain access to Windows devices that are infected by
ransomware
Ransomware is a type of malware that Encryption, encrypts the victim's personal data until a ransom is paid. Difficult-to-trace Digital currency, digital currencies such as paysafecard or Bitcoin and other cryptocurrency, cryptocurrencies are com ...
.
In 2017, KasperskyOS, a secure operating system, was released, and in 2021, Kaspersky IoT Secure Gateway 100 for IoT was introduced based on it. Among
cloud solutions, Kaspersky Hybrid Cloud Security protects cloud infrastructures, and Kaspersky SD-WAN ensures secure corporate networks.
Threatpost
Threatpost is a discontinued
computer security
Computer security (also cybersecurity, digital security, or information technology (IT) security) is a subdiscipline within the field of information security. It consists of the protection of computer software, systems and computer network, n ...
blog which was funded by Kaspersky Lab. According to
Eugene Kaspersky
Yevgeny Valentinovich Kaspersky (; born 4 October 1965) is a Russian cybersecurity expert and the CEO of Kaspersky Lab, an IT security company with 4,000 employees. He co-founded Kaspersky Lab in 1997 and helped identify instances of government-s ...
, it was independent of Kaspersky. It was launched in 2009. After August 2022, no new articles have been published on the site.
Partnerships
The Kaspersky Anti-Virus engine also powers products or solutions by other security vendors, such as
Check Point
Check Point Software Technologies Ltd. is an
Israeli multinational provider of software and combined hardware and software products for IT security, including network security, endpoint security, cloud security, mobile security, data security ...
,
Bluecoat,
Juniper Networks
Juniper Networks, Inc. is an American multinational corporation headquartered in Sunnyvale, California. The company develops and markets networking products, including Router (computing), routers, Network switch, switches, network management so ...
,
Microsoft Forefront
Microsoft Forefront is a discontinued family of line of business, line-of-business security software by Microsoft Corporation. Microsoft Forefront products are designed to help protect computer networks, Server (computing), network servers (su ...
, Netintelligence,
Clearswift,
FrontBridge,
Netasq, Wedge Networks, and others. Altogether, more than 120 companies are licensing technology from Kaspersky Lab. Kaspersky Lab also has a number of partnerships with various technology companies.
The
International Multilateral Partnership Against Cyber Threats in which
Datuk Mohd Noor Amin acts as the chairman, announced the appointment of Harry Cheung – Managing Director of Kaspersky Lab, APAC – as the Goodwill Ambassador for Greater China.
Kaspersky Lab was a long-term partner of
Scuderia Ferrari
Scuderia Ferrari (; ), currently racing under Scuderia Ferrari HP, is the racing division of luxury Italian auto manufacturer Ferrari and the racing team that competes in Formula One racing. The team is also known by the nickname "the Pranc ...
and in December 2021, announced a partnership extension with the
Formula One
Formula One (F1) is the highest class of worldwide racing for open-wheel single-seater formula Auto racing, racing cars sanctioned by the Fédération Internationale de l'Automobile (FIA). The FIA Formula One World Championship has been one ...
team, and also became the team's esports partner. However, in March 2022 the deal was paused as a joint decision taken by the two companies due to the
2022 Russian invasion of Ukraine
On 24 February 2022, , starting the largest and deadliest war in Europe since World War II, in a major escalation of the Russo-Ukrainian War, conflict between the two countries which began in 2014. The fighting has caused hundreds of thou ...
.
Market assessments and reception
According to 2016 reviews in ''
PC Magazine
''PC Magazine'' (shortened as ''PCMag'') is an American computer magazine published by Ziff Davis. A print edition was published from 1982 to January 2009. Publication of online editions started in late 1994 and continues .
Overview
''PC Mag ...
'', Kaspersky AntiVirus and competitor
Bitdefender
Bitdefender is a multinational cybersecurity technology company dual-headquartered in Bucharest, Romania and Santa Clara, California, with offices in the United States, Europe, Australia and the Middle East.
The company was founded in 2001 by c ...
were both consistently ranked at the top in independent competitive tests.
''PC Magazine's'' own malware and phishing tests showed similar results. Noted pros — “bonus security tools” and a large number of
Kaspersky Total Security features, including password management, encryption and
parental control software. Minuses — scanning took longer than expected.
The product received high scores in lab tests for antivirus,
antiphishing and other features and “average” scores in tests for antivirus and spam filtering.
Kaspersky's 2013 Endpoint Security for Windows product was the top-ranked enterprise antivirus software in a competitive test by Dennis Technology Labs, followed by Symantec Endpoint Protection.
AV-Comparatives awarded Kaspersky "Product of the Year" for 2015, based on the number of high scores it received throughout the year on a wide range of tests.
''PC Magazine'' praised the software's features, but said it lacked policy management and deployment options.
Kaspersky's parental control software has been praised by PC Magazine for its “very affordable parental control and monitoring,” software content filtering, child profiles,
social media
Social media are interactive technologies that facilitate the Content creation, creation, information exchange, sharing and news aggregator, aggregation of Content (media), content (such as ideas, interests, and other forms of expression) amongs ...
monitoring and other features. Downsides noted: some features only available for
iOS
Ios, Io or Nio (, ; ; locally Nios, Νιός) is a Greek island in the Cyclades group in the Aegean Sea. Ios is a hilly island with cliffs down to the sea on most sides. It is situated halfway between Naxos and Santorini. It is about long an ...
or
Android.
The anti-virus software testing group AV-Comparatives gave the
Windows XP
Windows XP is a major release of Microsoft's Windows NT operating system. It was released to manufacturing on August 24, 2001, and later to retail on October 25, 2001. It is a direct successor to Windows 2000 for high-end and business users a ...
version of Kaspersky AV an "Advanced+" rating (its highest) in both its February 2008 on-demand detection test (with the fourth highest detection rate among 16 products tested). However, in the Retrospective/Proactive Test May 2008, Kaspersky received the "Standard" rating, detecting 21% of new malware with 1-month old signatures and receiving a substantial amount of false positives.
The firewall included in Kaspersky Internet Security 7.0 got a "Very Good" rating in Matousec's Firewall challenge, with a result of 85%. Kaspersky Anti-Virus 7.0 has achieved a 6.5 result out of 8 in the Anti Malware Labs rootkit detection test. It has also achieved a 31 out of 33 detection of polymorphic viruses and a 97% result in the self-protection test.
In 2007, Kaspersky Internet Security 7 received an award from the British magazine ''
PC Pro
''PC Pro'' is one of several computer magazines published monthly in the United Kingdom by Future plc. Its headquarters is in London. ''PC Pro'' also licenses individual articles (or even the whole magazine) for republication in various countri ...
'' and also won a place in its "A List".
Kaspersky has passed most of the
Virus Bulletin
Virus Bulletin is a magazine about the prevention, detection and removal of malware and spam. It regularly features analyses of the latest virus threats, articles exploring new developments in the fight against viruses, interviews with anti-virus ...
comparative tests since August 2003. In 2005, according to ''
PC World
''PC World'' (stylized as PCWorld) is a global computer magazine published monthly by IDG. Since 2013, it has been an online-only publication.
It offers advice on various aspects of PCs and related items, the Internet, and other personal tec ...
'' magazine, Kaspersky anti-virus software provided the fastest updates for new virus and security threats in the industry.
In ''PC World'' magazine's March 2010 comparison of consumer security suites, Kaspersky Internet Security 2010 scored 4.5/5 stars, and was rated second overall. In the December 2011 version of AV-Comparatives' annual reports, Kaspersky Lab's software achieved the highest overall ranking and has earned the AV Comparatives' "Product of the Year" award.
On February 1, 2012, Kaspersky Internet Security earned "AV-TEST Award for Best Repair 2011" award in the field of home user products from
AV-TEST
AV-TEST is an independent organization which evaluates and rates antivirus and security suite software for Microsoft Windows, macOS and Android operating systems, according to a variety of criteria. The organisation is based in Magdeburg, Germany ...
Institute. On January 28, 2013, Kaspersky Endpoint Security earned "AV-TEST Award for Best Protection 2012" and "AV-TEST Award for Best Repair 2012" awards in the field of corporate products from AV-TEST Institute.
Later in 2013, Kaspersky earned the product of the year award from AV-Comparatives and the highest score among Enterprise solutions in a Dennis Technology Labs report.
Kaspersky has also received certification of its products through the OESIS OK Certification Program, which verifies that the applications are interoperable with third-party technology solutions like
NAC and
SSL VPN products from
Cisco Systems
Cisco Systems, Inc. (using the trademark Cisco) is an American multinational corporation, multinational digital communications technology conglomerate (company), conglomerate corporation headquartered in San Jose, California. Cisco develops, m ...
,
Juniper Networks
Juniper Networks, Inc. is an American multinational corporation headquartered in Sunnyvale, California. The company develops and markets networking products, including Router (computing), routers, Network switch, switches, network management so ...
,
F5 Networks, and others.
Kaspersky products regularly participate in and achieve high results in independent tests by
AV-Test
AV-TEST is an independent organization which evaluates and rates antivirus and security suite software for Microsoft Windows, macOS and Android operating systems, according to a variety of criteria. The organisation is based in Magdeburg, Germany ...
,
AV-Comparatives, and SE Labs. These organizations are members of the
Anti-Malware Testing Standards Organization
Anti-Malware Testing Standards Organization (AMTSO) is an international non-profit organization set up in 2008 to address a perceived need for improvement in the quality, relevance and objectivity of anti-malware testing methodologies.
Stated obj ...
(AMTSO), which
Microsoft
Microsoft Corporation is an American multinational corporation and technology company, technology conglomerate headquartered in Redmond, Washington. Founded in 1975, the company became influential in the History of personal computers#The ear ...
has adopted as an “industry standard organization” for independent certification purposes.
Finances
Malware discovery
Kaspersky Lab's Global Research and Analysis Team (GReAT) was established in 2008.
It investigates cybersecurity threats and other work by malware operations.
IT security companies are often evaluated by their ability to uncover previously unknown viruses and vulnerabilities.
Kaspersky's reputation for investigating cyber-security threats has been influential in gaining sales and prestige.
Beginning around 2010, Kaspersky exposed a series of government-sponsored cyber-espionage and sabotage efforts. These include
Stuxnet
Stuxnet is a Malware, malicious computer worm first uncovered on June 17, 2010, and thought to have been in development since at least 2005. Stuxnet targets supervisory control and data acquisition (SCADA) systems and is believed to be responsibl ...
,
Duqu
Duqu is a collection of computer malware discovered on 1 September 2011, thought by Kaspersky Labs to be related to the Stuxnet worm and to have been created by Unit 8200. The Laboratory of Cryptography and System Security ( CrySyS Lab) of the ...
,
Flame
A flame () is the visible, gaseous part of a fire. It is caused by a highly exothermic chemical reaction made in a thin zone. When flames are hot enough to have ionized gaseous components of sufficient density, they are then considered plasm ...
, Gauss,
Regin
In Norse mythology, Reginn (; often anglicized as Regin or Regan) is a son of Hreiðmarr and the foster father of Sigurð. His brothers are Fáfnir and Ótr.
Attestations Völsunga saga
When Loki mistakenly kills Ótr, Hreiðmarr demands to ...
and the
Equation Group
The Equation Group, also known in China as APT-C-40, is a highly sophisticated Threat (computer)#Threat agents or actors, threat actor suspected of being tied to the Tailored Access Operations (TAO) unit of the United States National Security Age ...
.
According to ''Wired'', "many of them
ere
Ere or ERE may refer to:
* ''Environmental and Resource Economics'', a peer-reviewed academic journal
* ERE Informatique, one of the first French video game companies
* Ere language, an Austronesian language
* Ebi Ere (born 1981), American-Nigeria ...
seemingly launched by the US and its UK and Israeli allies. Kaspersky is especially well-known for its work uncovering Stuxnet,
Careto
The Careto tradition is a folk ritual practice of the Trás-os-Montes e Alto Douro region of Portugal, believed to have prehistoric roots in Celtic traditions. The Careto is a masked character garbed with colorful fringe and noisemaking rattles ...
, and Flame."
Stuxnet
In 2010, Kaspersky Lab worked with Microsoft to counteract the
Stuxnet
Stuxnet is a Malware, malicious computer worm first uncovered on June 17, 2010, and thought to have been in development since at least 2005. Stuxnet targets supervisory control and data acquisition (SCADA) systems and is believed to be responsibl ...
worm, which had infected 14 industrial locations in
Iran
Iran, officially the Islamic Republic of Iran (IRI) and also known as Persia, is a country in West Asia. It borders Iraq to the west, Turkey, Azerbaijan, and Armenia to the northwest, the Caspian Sea to the north, Turkmenistan to the nort ...
using four zero-day vulnerabilities in Microsoft Windows. According to IEEE Spectrum, the circumstances "strongly suggest" the worm was developed by the
United States
The United States of America (USA), also known as the United States (U.S.) or America, is a country primarily located in North America. It is a federal republic of 50 U.S. state, states and a federal capital district, Washington, D.C. The 48 ...
and
Israel
Israel, officially the State of Israel, is a country in West Asia. It Borders of Israel, shares borders with Lebanon to the north, Syria to the north-east, Jordan to the east, Egypt to the south-west, and the Mediterranean Sea to the west. Isr ...
to damage centrifuges in Iran's nuclear-enrichment program. It was the first discovery of a major government-sponsored cyber-attack.
Flame
In May 2012, Kaspersky Lab identified the
malware
Malware (a portmanteau of ''malicious software'')Tahir, R. (2018)A study on malware and malware detection techniques . ''International Journal of Education and Management Engineering'', ''8''(2), 20. is any software intentionally designed to caus ...
Flame
A flame () is the visible, gaseous part of a fire. It is caused by a highly exothermic chemical reaction made in a thin zone. When flames are hot enough to have ionized gaseous components of sufficient density, they are then considered plasm ...
, which a researcher described as potentially "the most sophisticated cyber weapon yet unleashed". According to the researchers in Kaspersky Lab, the malware had infected an estimated 1,000 to 5,000 machines worldwide
when asked by the United Nations
International Telecommunication Union
The International Telecommunication Union (ITU)In the other common languages of the ITU:
*
* is a list of specialized agencies of the United Nations, specialized agency of the United Nations responsible for many matters related to information ...
to investigate reports of a virus affecting
Iranian Oil Ministry
The Ministry of Petroleum (MOP) () manages all aspects of the Petroleum industry in Iran, Iranian oil industry, including the discovery, extraction, production, distribution, and importation and exportation of crude oil and petrochemical produc ...
computers.
As Kaspersky Lab investigated, they discovered an
MD5
The MD5 message-digest algorithm is a widely used hash function producing a 128-bit hash value. MD5 was designed by Ronald Rivest in 1991 to replace an earlier hash function MD4, and was specified in 1992 as Request for Comments, RFC 1321.
MD5 ...
hash and filename that appeared only on customer machines from Middle Eastern nations. After discovering more pieces, researchers dubbed the program "Flame" after the name of one of its modules.
Flame was an earlier variant of Stuxnet. Kaspersky never verified the source of the software, but it is suspected to have been developed by the
National Security Agency
The National Security Agency (NSA) is an intelligence agency of the United States Department of Defense, under the authority of the director of national intelligence (DNI). The NSA is responsible for global monitoring, collection, and proces ...
(NSA) to transmit keystrokes, Skype calls and other data.
Kaspersky created algorithms to find similar malware and found Gauss that July, which collected and transmitted data from devices infected by bluetooth or USB drives.
Red October
In January 2013, Kaspersky discovered the
Red October malware, which had been used for widespread cyber-espionage for five years. It targeted political targets like embassies, nuclear sites, mostly in Europe, Switzerland and North America. The malware was likely written by Russian-speaking hackers and the exploits by Chinese hackers.
That June, Kaspersky discovered NetTraveler, which it said was obtaining data on emerging technology from government targets and oil companies. Kaspersky did not identify who was behind it, but it was similar to other cyber-espionage coming from Beijing, China. Later that same year, Kaspersky discovered a hacker group it called Icefog after investigating a cybersecurity attack on a Japanese television company. Kaspersky said the hacker group, possibly from China, was unique in that they targeted specific files they seemed to know about before planting malware to extract them.
Mask
In February 2014, Kaspersky identified the malware Mask, which infected 380 organizations in 31 countries. Many organizations that were affected were in Morocco. Some of the files were in Spanish and the group is believed to be a state conducting espionage, but Kaspersky did not speculate on which country may have developed it.
Regin
In November 2014, Symantec and Kaspersky authored papers that contained the first disclosure of malicious software named
Regin
In Norse mythology, Reginn (; often anglicized as Regin or Regan) is a son of Hreiðmarr and the foster father of Sigurð. His brothers are Fáfnir and Ótr.
Attestations Völsunga saga
When Loki mistakenly kills Ótr, Hreiðmarr demands to ...
.
According to Kaspersky, Regin is similar to QWERTY, a malware program discovered the next year.
Regin was used to take remote control of a computer and is believed to have originated from the
Five Eyes
The Five Eyes (FVEY) is an Anglosphere intelligence alliance comprising Australia, Canada, New Zealand, the United Kingdom, and the United States. These countries are party to the multilateral UKUSA Agreement, a treaty for joint cooperat ...
alliance.
That same month Kaspersky reported on the
Darkhotel attack, which targeted users of wireless networks at hotels in Asia. It asked users to update their software, and then download malware that gave up their passwords.
Equation Group
In 2015, Kaspersky identified a highly sophisticated threat actor that it called "The Equation Group". The group incorporated sophisticated spying software into the firmware of hard drives at banks, government agencies, nuclear researchers and military facilities, in countries that are frequent targets of US intelligence efforts. It is suspected to have been developed by the National Security Agency (NSA) and included many unique technical achievements to better avoid detection.
That same day, Kaspersky announced the discovery of a hacker group it called
Carbanak, which was targeting banks and moving millions of dollars into fake accounts. Carbanak was discovered when one bank asked Kaspersky to investigate suspicious behavior from its ATMs.
A similar malware using some of the same techniques as Carbanak was discovered in 2016 and dubbed Carbanak 2.0.
Duqu
In June 2015, Kaspersky reported that its own network had been infiltrated by government-sponsored malware. Evidence suggested the malware was created by the same developers as
Duqu
Duqu is a collection of computer malware discovered on 1 September 2011, thought by Kaspersky Labs to be related to the Stuxnet worm and to have been created by Unit 8200. The Laboratory of Cryptography and System Security ( CrySyS Lab) of the ...
and
Stuxnet
Stuxnet is a Malware, malicious computer worm first uncovered on June 17, 2010, and thought to have been in development since at least 2005. Stuxnet targets supervisory control and data acquisition (SCADA) systems and is believed to be responsibl ...
, in order to get intelligence that would help them better avoid detection by Kaspersky in the future. Kaspersky called it Duqu 2.0.
The malicious software resided in memory to avoid detection. The hack was believed to have been done by the same group that did
Duqu
Duqu is a collection of computer malware discovered on 1 September 2011, thought by Kaspersky Labs to be related to the Stuxnet worm and to have been created by Unit 8200. The Laboratory of Cryptography and System Security ( CrySyS Lab) of the ...
in 2011. It used exploits in Microsoft installer files.
Android cyber-espionage
In June 2015, Kaspersky Lab and Citizen Lab both independently discovered software developed by
Hacking Team
Hacking Team was a Milan-based information technology company that sold offensive intrusion and surveillance capabilities to governments, law enforcement agencies and corporations. Its "''Remote Control Systems''" enable governments and corporati ...
and used by 60 governments around the world to covertly record data from the mobile phones of their citizens. The software gave police enforcement a "menu of features" to access emails, text messages, keystrokes, call history and other data.
Kaspersky also identified 37,000 attacks against banking companies that used modifications of the malware called Asacub and took control of Android devices. Asacub targeted mostly banking customers in the US, Russia and Ukraine using an SMS message that baited users into installing a Trojan.
Silverlight
In 2016, Kaspersky discovered a zero day vulnerability in
Microsoft Silverlight
Microsoft Silverlight is a discontinued application framework designed for writing and running rich internet applications, similar to Adobe Inc., Adobe's Run time environment, runtime, Adobe Flash. While early versions of Silverlight focused on ...
.
Kaspersky identified a string of code often used by exploits created by the suspected author. It then used
YARA rules on its network of Kaspersky software users to find that string of code and uncover the rest of the exploit. Afterwards, Microsoft issued a "critical" software patch to protect its software from the vulnerability.
Poseidon Group
In 2016, Kaspersky uncovered the Poseidon Group, which would infiltrate corporations with malware using phishing emails, then get hired by the same company as a security firm to correct the problem. Once hired, Poseidon would install additional malware and backdoors. In June 2016 Kaspersky helped uncover a Russian hacking group, leading to 50 arrests.
Titanium
In 2019, Kaspersky uncovered Titanium, a very advanced and insidious
backdoor malware
Malware (a portmanteau of ''malicious software'')Tahir, R. (2018)A study on malware and malware detection techniques . ''International Journal of Education and Management Engineering'', ''8''(2), 20. is any software intentionally designed to caus ...
APT, developed by
PLATINUM
Platinum is a chemical element; it has Symbol (chemistry), symbol Pt and atomic number 78. It is a density, dense, malleable, ductility, ductile, highly unreactive, precious metal, precious, silverish-white transition metal. Its name origina ...
, a
cybercrime
Cybercrime encompasses a wide range of criminal activities that are carried out using digital devices and/or Computer network, networks. It has been variously defined as "a crime committed on a computer network, especially the Internet"; Cyberc ...
collective. Kaspersky Lab reported the malware on November 8, 2019.
MATA Toolset Campaign
In 2020, Kaspersky published research on the MATA Toolset Campaign, a sophisticated cyber-espionage framework targeting multiple operating systems, including
Windows
Windows is a Product lining, product line of Proprietary software, proprietary graphical user interface, graphical operating systems developed and marketed by Microsoft. It is grouped into families and subfamilies that cater to particular sec ...
,
macOS
macOS, previously OS X and originally Mac OS X, is a Unix, Unix-based operating system developed and marketed by Apple Inc., Apple since 2001. It is the current operating system for Apple's Mac (computer), Mac computers. With ...
, and
Linux
Linux ( ) is a family of open source Unix-like operating systems based on the Linux kernel, an kernel (operating system), operating system kernel first released on September 17, 1991, by Linus Torvalds. Linux is typically package manager, pac ...
. The
malware
Malware (a portmanteau of ''malicious software'')Tahir, R. (2018)A study on malware and malware detection techniques . ''International Journal of Education and Management Engineering'', ''8''(2), 20. is any software intentionally designed to caus ...
, attributed to the
Lazarus Group
The Lazarus Group (also known as Guardians of Peace or Whois Team
) is a hacker group made up of an unknown number of individuals, alleged to be run by the government of North Korea. While not much is known about the group, researchers have at ...
, was used for stealing databases, distributing
ransomware
Ransomware is a type of malware that Encryption, encrypts the victim's personal data until a ransom is paid. Difficult-to-trace Digital currency, digital currencies such as paysafecard or Bitcoin and other cryptocurrency, cryptocurrencies are com ...
, and installing
backdoors on infected systems. MATA's capabilities allowed attackers to execute a wide range of malicious activities, including exfiltrating sensitive data from corporate networks and compromising financial systems. The campaign highlighted the increasing cross-platform threat posed by state-sponsored actors. In September 2022 and October 2023, new malware samples linked to the MATA cluster were uncovered.
PyPI Supply Chain Attack
In 2024, Kaspersky uncovered a year-long
supply chain attack
A supply chain attack is a cyber-attack that seeks to damage an organization by targeting less secure elements in the supply chain. A supply chain attack can occur in any industry, from the financial sector, oil industry, to a government sector. ...
targeting the
Python Package Index
The Python Package Index, abbreviated as PyPI () and also known as the Cheese Shop (a reference to the ''Monty Python's Flying Circus'' sketch "Cheese Shop sketch, Cheese Shop"), is the official third-party software repository for Python (progra ...
(PyPI), a popular repository for
Python
Python may refer to:
Snakes
* Pythonidae, a family of nonvenomous snakes found in Africa, Asia, and Australia
** ''Python'' (genus), a genus of Pythonidae found in Africa and Asia
* Python (mythology), a mythical serpent
Computing
* Python (prog ...
developers. Attackers uploaded malicious packages containing JarkaStealer, a malware designed to exfiltrate sensitive information from infected systems. These packages were disguised as legitimate tools and lured victims through social engineering tactics, including
AI (
OpenAI
OpenAI, Inc. is an American artificial intelligence (AI) organization founded in December 2015 and headquartered in San Francisco, California. It aims to develop "safe and beneficial" artificial general intelligence (AGI), which it defines ...
's
ChatGPT
ChatGPT is a generative artificial intelligence chatbot developed by OpenAI and released on November 30, 2022. It uses large language models (LLMs) such as GPT-4o as well as other Multimodal learning, multimodal models to create human-like re ...
)
chatbot
A chatbot (originally chatterbot) is a software application or web interface designed to have textual or spoken conversations. Modern chatbots are typically online and use generative artificial intelligence systems that are capable of main ...
s offering assistance. The campaign demonstrated the vulnerability of
open-source
Open source is source code that is made freely available for possible modification and redistribution. Products include permission to use and view the source code, design documents, or content of the product. The open source model is a decentrali ...
ecosystems and emphasized the importance of scrutinizing dependencies in software development.
NKAbuse Malware
In 2023, Kaspersky exposed NKAbuse, a sophisticated multiplatform malware written in the Go programming language. This malware leveraged
blockchain
The blockchain is a distributed ledger with growing lists of Record (computer science), records (''blocks'') that are securely linked together via Cryptographic hash function, cryptographic hashes. Each block contains a cryptographic hash of th ...
technology for its
peer-to-peer
Peer-to-peer (P2P) computing or networking is a distributed application architecture that partitions tasks or workloads between peers. Peers are equally privileged, equipotent participants in the network, forming a peer-to-peer network of Node ...
communication infrastructure, making it resilient to takedowns. NKAbuse functioned as a flooder and a backdoor, enabling attackers to launch distributed
denial-of-service
In computing, a denial-of-service attack (DoS attack) is a cyberattack in which the perpetrator seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host con ...
(DDoS) attacks and gain persistent access to compromised systems. The campaign illustrated the evolving use of blockchain in
cybercrime
Cybercrime encompasses a wide range of criminal activities that are carried out using digital devices and/or Computer network, networks. It has been variously defined as "a crime committed on a computer network, especially the Internet"; Cyberc ...
and reinforced the need for enhanced detection methods.
Triangulation
In 2023, Kaspersky uncovered Triangulation, a sophisticated spyware campaign targeting
iOS
Ios, Io or Nio (, ; ; locally Nios, Νιός) is a Greek island in the Cyclades group in the Aegean Sea. Ios is a hilly island with cliffs down to the sea on most sides. It is situated halfway between Naxos and Santorini. It is about long an ...
mobile devices. The malware exploited multiple
zero-day vulnerabilities to gain full control of targeted devices. Triangulation was primarily distributed through malicious attachments in instant messaging apps. Once installed, it allowed attackers to access encrypted communications,
GPS
The Global Positioning System (GPS) is a satellite-based hyperbolic navigation system owned by the United States Space Force and operated by Mission Delta 31. It is one of the global navigation satellite systems (GNSS) that provide geol ...
locations, and sensitive data. Kaspersky attributed the campaign to an
advanced persistent threat
An advanced persistent threat (APT) is a stealthy threat actor, typically a State (polity), state or state-sponsored group, which gains unauthorized access to a computer network and remains undetected for an extended period. In recent times, the ...
(APT) group but refrained from naming a specific actor, though evidence suggested ties to state-sponsored espionage.
CloudSorcerer/EastWind
CloudSorcerer APT and its EastWind campaign were identified by Kaspersky in 2024.The malware leveraged public cloud infrastructure to perform large-scale data exfiltration and surveillance. The attackers used sophisticated
phishing
Phishing is a form of social engineering and a scam where attackers deceive people into revealing sensitive information or installing malware such as viruses, worms, adware, or ransomware. Phishing attacks have become increasingly sophisticate ...
campaigns to infiltrate government and private sector organizations, especially targeting research institutions and critical infrastructure. CloudSorcerer employed novel encryption techniques to disguise data flows, complicating detection. Kaspersky linked the malware to a state-affiliated group but did not specify which country was behind the attack.
DuneQuixote
In 2024, Kaspersky exposed DuneQuixote, a stealthy malware campaign targeting intellectual property in the technology and energy sectors. The malware used custom-built
exploits and employed
fileless techniques, operating entirely in memory to evade detection by traditional security tools. DuneQuixote's attack vector included compromised software updates and supply chain vulnerabilities. Kaspersky attributed the operation to a well-funded APT group with global reach, though the precise origin remained unclear. The discovery highlighted the growing complexity of threats targeting high-value intellectual assets.
SparkCat
In February 2025 discovers SparkCat, a first
OCR infostealer found in iOS
App Store
An app store, also called an app marketplace or app catalog, is a type of digital distribution platform for computer software called applications, often in a mobile context. Apps provide a specific set of functions which, by definition, do not i ...
. On iOS and Android, infostealer requests access to users' photo galleries when they attempt to use support chat in an infected app. Once granted permission, the malware uses Google's OCR technology to decipher text in photos and looks for screenshots of passwords or phrases to regain access to
cryptocurrency
A cryptocurrency (colloquially crypto) is a digital currency designed to work through a computer network that is not reliant on any central authority, such as a government or bank, to uphold or maintain it.
Individual coin ownership record ...
, then sends them to the attacker. By February 10, 2025, Apple and Google had removed about 20 apps from their app stores, but the malware remained available in unofficial stores and websites.
Bans and allegations of Russian government ties
Since 2015, Kaspersky has faced allegations of close ties to the Russian government by various Western media outlets and governments. In October 2017, reports alleged that hackers working for the Russian government stole confidential data from the home computer of a US
National Security Agency
The National Security Agency (NSA) is an intelligence agency of the United States Department of Defense, under the authority of the director of national intelligence (DNI). The NSA is responsible for global monitoring, collection, and proces ...
(NSA) contractor via Kaspersky antivirus software. Kaspersky denied the allegations, reporting that the software had detected Equation Group malware samples which it uploaded to its servers for analysis in its normal course of operation.
In September 2017, the
Department of Homeland Security
The United States Department of Homeland Security (DHS) is the U.S. federal executive department responsible for public security, roughly comparable to the interior, home, or public security ministries in other countries. Its missions invol ...
issued an order prohibiting the use and purchase of Kaspersky software by US federal agencies, and required their removal from systems within 90 days.
In December, President
Donald Trump
Donald John Trump (born June 14, 1946) is an American politician, media personality, and businessman who is the 47th president of the United States. A member of the Republican Party (United States), Republican Party, he served as the 45 ...
signed the
National Defense Authorization Act for Fiscal Year 2018
The National Defense Authorization Act for Fiscal Year 2018 (; NDAA 2018Pub.L. 115–91 is a United States federal law which specifies the budget, expenditures and policies of the U.S. Department of Defense (DOD) for Fiscal Year 2018. Analogou ...
, which included a ban on Kaspersky software on federal civilian and military computers. In response, Kaspersky began a "global transparency initiative", which included relocating core infrastructure and data for customers in North America and Europe from Russia to Switzerland, and opening "transparency centres" in multiple countries to allow state agencies, government experts and regulators to review its source code and other company practices.
In 2022, after the
Russian invasion of Ukraine
On 24 February 2022, , starting the largest and deadliest war in Europe since World War II, in a major escalation of the Russo-Ukrainian War, conflict between the two countries which began in 2014. The fighting has caused hundreds of thou ...
, the US government warned American businesses that the risk of using Kaspersky software had increased and the FCC added Kaspersky to its list of threats to US national security. Kaspersky responded to the FCC's move in a press release on its website, saying that the agency's decision was "made on political grounds" in light of Russia's invasion of Ukraine, and that the company "remains ready to cooperate with US government agencies to address the FCC's and any other regulatory agency's concerns".
In 2024, hacked email accounts showed that Kaspersky Lab has allegedly helped the Russian government develop software for its spy drones.
In April 2024, it was reported that the
US Department of Commerce
The United States Department of Commerce (DOC) is an executive department of the U.S. federal government. It is responsible for gathering data for business and governmental decision making, establishing industrial standards, catalyzing econo ...
was considering a general ban on Kaspersky from offering its products in the country.
On 20 June 2024,
Secretary of Commerce
The United States secretary of commerce (SecCom) is the head of the United States Department of Commerce. The secretary serves as the principal advisor to the president of the United States on all matters relating to commerce. The secretary rep ...
Gina Raimondo announced that Kaspersky Labs would be prohibited from selling or providing updates for its software to customers in the United States. The sales ban takes effect on 20 July 2024 and software updates to customers must end on 29 September 2024. The sanction is performed under executive orders issued by Trump and
Joe Biden
Joseph Robinette Biden Jr. (born November 20, 1942) is an American politician who was the 46th president of the United States from 2021 to 2025. A member of the Democratic Party (United States), Democratic Party, he served as the 47th vice p ...
, which seek to protect the personal data of US citizens from
nations designated as "foreign adversaries" to the United States.
In July 2024, Kaspersky said it would close its United States division and lay off all employees ahead of the July 20 ban. From July 17, the company offered US customers six months of free updates for the Kaspersky security suites, password manager, parental controls software, and VPN. However, it acknowledged that functionality would become limited after September 29.
In February 2025, Australia banned Kaspersky software from government systems due to concerns over national security. The Department of Home Affairs issued a directive prohibiting the installation of Kaspersky products on government devices, citing risks of foreign interference, espionage, and sabotage. Government agencies must remove all existing Kaspersky software by April 1, 2025. This decision aligns Australia with other members of the Five Eyes intelligence pact, including the U.S., Canada, and the U.K., which have also restricted Kaspersky's use.
See also
*
Antivirus software
Antivirus software (abbreviated to AV software), also known as anti-malware, is a computer program used to prevent, detect, and remove malware.
Antivirus software was originally developed to detect and remove computer viruses, hence the name ...
*
Comparison of antivirus software Legend
The term "on-demand scan" refers to the possibility of performing a manual scan (by the user) on the entire computer/device, while "on-access scan" refers to the ability of a product to automatically scan every file at its creation or sub ...
*
Comparison of computer viruses
*
Titanium (malware)
Titanium is a very advanced backdoor malware APT, developed by PLATINUM, a cybercrime collective. The malware was uncovered by Kaspersky Lab and reported on 8 November 2019. According to ''Global Security Mag'', "Titanium APT includes a compl ...
*
Shaltai Boltai
*
Vault 7
Notes
References
External links
*
Cyber Threat Real-Time MapLog of cybersecurity discoveries
{{Authority control
Antivirus software
Companies based in Moscow
Computer security companies
Information technology companies of Russia
Computer security software companies
Privately held companies of Russia
Software companies established in 1997
Software companies of Russia
Technology companies of Russia
Russian brands
1997 establishments in Russia