Bitdefender

Last updated

Bitdefender
Type Private
Industry Computer software
FoundedNovember 6, 2001;21 years ago (2001-11-06)
FounderFlorin Talpeș
Headquarters Bucharest, Romania

Santa Clara, California
Area served
Worldwide
Key people
Florin Talpeș (CEO)
Products Cybersecurity software
Services Computer security
Number of employees
1,600+ (2023)
Website www.bitdefender.com OOjs UI icon edit-ltr-progressive.svg

Bitdefender is a Romanian cybersecurity technology company headquartered in Bucharest, Romania, with offices in the United States, Europe, Australia and the Middle East. [1] [2]

Contents

The company was founded in 2001 by the current CEO and main shareholder, Florin Talpeș. Bitdefender develops and delivers cybersecurity products and services, including endpoint protection, cloud and managed security, antivirus software and IoT security. Bitdefender products are distributed through partners in over 150 countries [2] and the US market is estimated to generate more than 40% of its revenues. As of 2020, the company employed more than 1,600 people worldwide. [2]

As of August 2021, Bitdefender was ranked 5th globally among free anti-malware application vendors for Microsoft Windows by market scores. [3]

History

Bitdefender software was originally developed by SOFTWIN and sold as AVX (Antivirus Expert) from 1996 until 2001, when its name was changed. In 2007, SOFTWIN spun off Bitdefender. [4]

Company milestones

1990: Creation of Softwin, one of the first IT start-ups in post-communist Romania.

The rapid growth of computer viruses leads to the development of Softwin AVX (AntiVirus eXpert)

2001: The Bitdefender subsidiary is created. AVX solution is rebranded under the Bitdefender name.

2004: First offices outside Romania in US, Germany and UK.

Further expansion in the Middle East (2011), and Denmark / Nordics Region (2015).

2007: Bitdefender becomes a separate business entity with external capital entry.

Axxess Capital Investment Fund becomes a key shareholder. [5]

2011: Bitdefender launches enterprise range and virtualization security products.

2015: Bitdefender creates a new consumer product category with Bitdefender BOX and IoT security services. [6]

2017: Bitdefender makes its first major acquisition by acquiring French partner Profil Technology Source. [7]

British fund Vitruvian buys a 30% stake in the Bitdefender, valuing Bitdefender at more than $600 million. [8]

2018: Bitdefender creates a new subsidiary in Australia through the acquisition of assets from business partner SMS eTech. [9]

Bitdefender acquires behavioral and network security analytics company RedSocks. [10]

2019: Bitdefender opens its own Security Operations Center in San Antonio, Texas.

2021: Bitdefender unveils its extended detection and response (XDR) platform, offering business customers further visibility and incident context during investigations to accelerate threat validation, response actions and remediation. [11]

2022: Bitdefender signed a multi-year partnership deal with Scuderia Ferrari on September 28. [12] [13]

Fighting cyber-crime

Bitdefender is part of the Cybersecurity Tech Accord for a safer online world, a collaboration among over 150 global technology companies committed to protecting their customers and users and helping them defend against malicious threats. [14]

Independent tests

Bitdefender has won a number of awards from AV-Comparatives, an anti-virus assessment firm. [15] [16]

Controversies and incidents

Trojan.FakeAlert.5

On March 20, 2010, computers running Bitdefender under 64-bit versions of Windows were affected by a malfunctioning update that classified every executable program as well as dll files as infected. These files were all marked as 'Trojan.FakeAlert.5' and were moved into quarantine. This action led to software and systems malfunctions that affected users around the world. [17] Bitdefender representatives announced the removal of the faulty update and a workaround for the users affected, [18] except for those using the 2008 version. [19]

DarkSide ransomware

In 2021, Bitdefender was accused of self-promotion when releasing and publicly announcing a decryptor to the detriment of actual victims with regards to DarkSide, a hacking group. In 2020, DarkSide switched their main encryption ransomware product over to an "affiliate" model wherein other attackers could download and use their software in exchange for a portion of the profits. However, they introduced a bug in the process where affiliate hackers would all use the same private RSA key - meaning that a decryption package for a single target who paid the ransom would work on any target that had the ransomware installed. Security researchers noticed and were quietly already helping victims of the software, but with no public notice, making it so that the attackers would only see an inexplicable decrease in ransom payments that could be written off as chance. Months later, Bitdefender publicly released a decryptor of their own development and issued a blog post describing the flaw. This was criticized in an article in the MIT Technology Review . The article wrote that Bitdefender's program wasn't even safe - it was flawed and would "damage" files decrypted with it due to bugs within it, unlike the earlier decryptors that had been quietly used. Second, the blog post tipped off DarkSide as to the nature of the flaw; DarkSide promptly patched the bug and sarcastically thanked Bitdefender for pointing it out, then went on with their campaign of extortion. A notable incident that took place after Bitdefender's public disclosure was the Colonial Pipeline cyberattack in May 2021. While the security researchers who had been using the flaw before acknowledge that it's probable DarkSide would eventually have noticed and fixed the issue, they still criticized Bitdefender for using the bug merely for a brief burst of publicity, rather than in the way that would most help victims of the scheme. [20] Bitdefender has defended their actions on their blog, saying that they only wished to make as many organizations as possible aware of its existence of the bug in DarkSide's ransom attacks. [21] The article and blog post triggered a discussion among cybersecurity professionals about the pros and cons of publicly disclosing such vulnerabilities in malware. [22]

REvil Ransomware

In September 2021, Bitdefender published a universal decryptor utility that will help past victims of the REvil ransomware recover their encrypted files. [23]

See also

Related Research Articles

<span class="mw-page-title-main">Malware</span> Malicious software

Malware is any software intentionally designed to cause disruption to a computer, server, client, or computer network, leak private information, gain unauthorized access to information or systems, deprive access to information, or which unknowingly interferes with the user's computer security and privacy. Researchers tend to classify malware into one or more sub-types.

<span class="mw-page-title-main">Antivirus software</span> Computer software to defend against malicious computer viruses

Antivirus software, also known as anti-malware, is a computer program used to prevent, detect, and remove malware.

<span class="mw-page-title-main">Trend Micro</span> Japanese multinational cyber security company

Trend Micro Inc. is a multinational cyber security software company with global headquarters in Tokyo, Japan and in Dallas/Fort Worth Metroplex, United States. The company has globally dispersed R&D in 16 locations across every continent excluding Antarctica. The company develops enterprise security software for servers, containers, & cloud computing environments, networks, and end points. Its cloud and virtualization security products provide automated security for customers of VMware, Amazon AWS, Microsoft Azure, and Google Cloud Platform.

<span class="mw-page-title-main">ESET</span> Slovak internet security company

ESET, s.r.o., is a Slovak software company specializing in cybersecurity. ESET's security products are made in Europe and provide security software in over 200 countries and territories worldwide, and its software is localized into more than 30 languages.

<span class="mw-page-title-main">Scareware</span> Malware designed to elicit fear, shock, or anxiety

Scareware is a form of malware which uses social engineering to cause shock, anxiety, or the perception of a threat in order to manipulate users into buying unwanted software. Scareware is part of a class of malicious software that includes rogue security software, ransomware and other scam software that tricks users into believing their computer is infected with a virus, then suggests that they download and pay for fake antivirus software to remove it. Usually the virus is fictional and the software is non-functional or malware itself. According to the Anti-Phishing Working Group, the number of scareware packages in circulation rose from 2,850 to 9,287 in the second half of 2008. In the first half of 2009, the APWG identified a 585% increase in scareware programs.

<span class="mw-page-title-main">Avast</span> Czech security software company

Avast Software s.r.o. is a Czech multinational cybersecurity software company headquartered in Prague, Czech Republic, that researches and develops computer security software, machine learning, and artificial intelligence. Avast has more than 435 million monthly active users and the second largest market share among anti-malware application vendors worldwide as of April 2020. The company has approximately 1,700 employees across its 25 offices worldwide. In July 2021, Norton LifeLock, an American cybersecurity company, announced that it was in talks to merge with Avast Software. In August 2021, Avast's board of directors agreed to an offer of US$8 billion.

<span class="mw-page-title-main">Ransomware</span> Malicious software used in ransom demands

Ransomware is a type of malware from cryptovirology that threatens to publish the victim's personal data or permanently block access to it unless a ransom is paid off. While some simple ransomware may lock the system without damaging any files, more advanced malware uses a technique called cryptoviral extortion. It encrypts the victim's files, making them inaccessible, and demands a ransom payment to decrypt them. In a properly implemented cryptoviral extortion attack, recovering the files without the decryption key is an intractable problem – and difficult to trace digital currencies such as paysafecard or Bitcoin and other cryptocurrencies are used for the ransoms, making tracing and prosecuting the perpetrators difficult.

<span class="mw-page-title-main">Cryptovirology</span> Study of securing and encrypting virology

Cryptovirology refers to the use of cryptography to devise particularly powerful malware, such as ransomware and asymmetric backdoors. Traditionally, cryptography and its applications are defensive in nature, and provide privacy, authentication, and security to users. Cryptovirology employs a twist on cryptography, showing that it can also be used offensively. It can be used to mount extortion based attacks that cause loss of access to information, loss of confidentiality, and information leakage, tasks which cryptography typically prevents.

Webroot Inc. is an American privately-held cybersecurity software company that provides Internet security for consumers and businesses. The company was founded in Boulder, Colorado, US, and is now headquartered in Broomfield, Colorado, and has US operations in San Mateo and San Diego, and globally in Australia, Austria, Ireland, Japan and the United Kingdom.

<span class="mw-page-title-main">HitmanPro</span> Anti-malware computer program

HitmanPro is a portable antimalware program, which aims to detect and remove malicious files and registry entries related to rootkits, trojans, viruses, worms, spyware, adware, rogue antivirus programs, ransomware, and other malware from infected computers.

<span class="mw-page-title-main">AVG Technologies</span> Brand of cybersecurity, privacy, performance and utility applications

AVG Technologies is a brand of cybersecurity, privacy, performance and utility software applications for desktop computers and mobile devices developed by Avast, a part of Gen Digital. AVG was a cybersecurity software company founded in 1991 and it merged into Avast following an acquisition in 2017. It typically offers freeware, earning revenues from advertisers and from users that upgrade to paid versions for access to more features.

<span class="mw-page-title-main">Malwarebytes</span> Internet security company

Malwarebytes Inc. is an American Internet security company that specializes in protecting home computers, smartphones, and companies from malware and other threats. It has offices in Santa Clara, California; Clearwater, Florida; Tallinn, Estonia; Bastia Umbra, Italy; and Cork, Ireland.

<span class="mw-page-title-main">Kaspersky Lab</span> Russian multinational cybersecurity and anti-virus provider

Kaspersky Lab is a Russian multinational cybersecurity and anti-virus provider headquartered in Moscow, Russia, and operated by a holding company in the United Kingdom. It was founded in 1997 by Eugene Kaspersky, Natalya Kaspersky, and Alexey De-Monderik; Eugene Kaspersky is currently the CEO. Kaspersky Lab develops and sells antivirus, internet security, password management, endpoint security, and other cybersecurity products and services.

Bleeping Computer is a website covering technology news and offering free computer help via its forums that was created by Lawrence Abrams in 2004. It publishes news focusing heavily on cybersecurity, but also covers other topics including computer software, computer hardware, operating system and general technology.

Multiscanning is running multiple anti-malware or antivirus engines concurrently. Traditionally, only a single engine can actively scan a system at a given time. Using multiple engines simultaneously can result in conflicts that lead to system freezes and application failures. However, a number of security applications and application suites have optimized multiple engines to work together.

Dridex, also known as Bugat and Cridex, is a form of malware that specializes in stealing bank credentials via a system that utilizes macros from Microsoft Word.

REvil was a Russia-based or Russian-speaking private ransomware-as-a-service (RaaS) operation. After an attack, REvil would threaten to publish the information on their page Happy Blog unless the ransom was received. In a high profile case, REvil attacked a supplier of the tech giant Apple and stole confidential schematics of their upcoming products. In January 2022, the Russian Federal Security Service said they had dismantled REvil and charged several of its members.

Emsisoft Ltd. is a New Zealand-based anti-virus software distributed company. They are notable for decrypting ransomware attacks to restore data.

DarkSide is a cybercriminal hacking group, believed to be based in Russia, that targets victims using ransomware and extortion; it is believed to be behind the Colonial Pipeline cyberattack. It is thought that they have been able to hack and extort money from around 90 companies in the USA alone. The group provides ransomware as a service.

References

  1. "Interview with Florin Talpes, CEO at Bitdefender". Archived from the original on 2 November 2013. Retrieved 20 July 2015.
  2. 1 2 3 "Bitdefender Long Description". Bitdefender. Archived from the original on 5 February 2011. Retrieved 31 July 2017.
  3. "Market scores held by the leading Windows anti-malware application vendors worldwide as of August 2021". Statista. Retrieved 25 February 2023.
  4. "Definition of: Bitdefender". PC Magazine Encyclopedia. Retrieved 17 May 2019.
  5. "M&A alert. Vitruvian Partners buys stake in Bitdefender from Axxess Capital". Business Review (in Romanian). 1 December 2017. Retrieved 15 January 2021.
  6. "IoT News - Bitdefender BOX : the ultimate security solution for smart home environments?". IoT Business News. 6 December 2017. Retrieved 15 January 2021.
  7. "Romania's Bitdefender buys France's Profil Technology". seenews.com. Retrieved 15 January 2021.
  8. Ilie, Luiza (1 December 2017). "Vitruvian buys 30 pct stake in Romanian cyber security firm Bitdefender". Reuters. Retrieved 19 January 2023.
  9. "Romania's Bitdefender buys Australian partner SMS eTech". seenews.com. Retrieved 15 January 2021.
  10. Bitdefender. "Bitdefender Acquires Behavioral and Network Security Analytics Company RedSocks". www.prnewswire.com (Press release). Retrieved 15 January 2021.
  11. "Bitdefender Unveils the Next Evolution of Endpoint Detection and Response Solutions - eXtended EDR (XEDR)". www.prnewswire.com (Press release).
  12. "Bitdefender Team Partner - Ferrari.com". www.ferrari.com. Retrieved 10 October 2022.
  13. "Bitdefender's Partnership with Scuderia Ferrari". Bitdefender. Retrieved 10 October 2022.
  14. "Cybersecurity Tech Accord". Cybersecurity Tech Accord. Retrieved 15 January 2021.
  15. "Awards". AV-Comparatives. Retrieved 15 January 2021.
  16. "Test antivirus software Bitdefender". www.av-test.org (in German). Retrieved 15 January 2021.
  17. McMillan, Robert. "Bad Bitdefender Update Clobbers Windows PCs". PC World. Archived from the original on 27 October 2010. Retrieved 17 September 2017.
  18. "Trojan.FakeAlert.5 Update issue". Archived from the original on 24 March 2010.
  19. Peter Bright (22 March 2010). "Bitdefender update breaks 64-bit Windows PCs".
  20. Dudley, Renee; Golden, Daniel (24 May 2021). "The Colonial pipeline ransomware hackers had a secret weapon: self-promoting cybersecurity firms". MIT Technology Review . Retrieved 25 May 2021.
  21. Bitdefender's Position on Ransomware Attacks and Decryptors
  22. Schwartz, Samantha (21 September 2021). "Is there too much transparency in cybersecurity?" . Retrieved 25 August 2023.
  23. Arjun Ramprasad (18 September 2021). "Universal decryptor for past REvil ransomware victims released". Preview Tech. Retrieved 27 September 2021.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.