Company:Bitdefender

From HandWiki
Short description: Romanian cybersecurity technology company
Bitdefender
TypePrivate
IndustryComputer software
FoundedNovember 6, 2001; 22 years ago (2001-11-06)
FounderFlorin Talpeș
HeadquartersBucharest, Romania

Santa Clara, California
Area served
Worldwide
Key people
Florin Talpeș (CEO)
ProductsCybersecurity software
ServicesComputer security
Number of employees
1,600+ (2023)
Website{{{1}}}

Bitdefender is a Romanian cybersecurity technology company headquartered in Bucharest, Romania, with offices in the United States , Europe, Australia and the Middle East.[1][2]

The company was founded in 2001 by the current CEO and main shareholder, Florin Talpeș. Bitdefender develops and delivers cybersecurity products and services, including endpoint protection, cloud and managed security, antivirus software and IoT security. Bitdefender products are distributed through partners in over 150 countries[2] and the US market is estimated to generate more than 40% of its revenues. As of 2020, the company employed more than 1,600 people worldwide.[2]

As of August 2021, Bitdefender was ranked 5th globally among free anti-malware application vendors for Microsoft Windows by market scores.[3]

History

Bitdefender software was originally developed by SOFTWIN and sold as AVX (Antivirus Expert) from 1996 until 2001, when its name was changed. In 2007, SOFTWIN spun off Bitdefender.[4]

Company milestones

1990: Creation of Softwin, one of the first IT start-ups in post-communist Romania.

The rapid growth of computer viruses leads to the development of Softwin AVX (AntiVirus eXpert)

2001: The Bitdefender subsidiary is created. AVX solution is rebranded under the Bitdefender name.

2004: First offices outside Romania in US, Germany and UK.

Further expansion in the Middle East (2011), and Denmark / Nordics Region (2015).

2007: Bitdefender becomes a separate business entity with external capital entry.

Axxess Capital Investment Fund becomes a key shareholder.[5]

2011: Bitdefender launches enterprise range and virtualization security products.

2015: Bitdefender creates a new consumer product category with Bitdefender BOX and IoT security services.[6]

2017: Bitdefender makes its first major acquisition by acquiring French partner Profil Technology Source.[7]

British fund Vitruvian buys a 30% stake in the Bitdefender, valuing Bitdefender at more than $600 million.[8]

2018: Bitdefender creates a new subsidiary in Australia through the acquisition of assets from business partner SMS eTech.[9]

Bitdefender acquires behavioral and network security analytics company RedSocks.[10]

2019: Bitdefender opens its own Security Operations Center in San Antonio, Texas.

2021: Bitdefender unveils its extended detection and response (XDR) platform, offering business customers further visibility and incident context during investigations to accelerate threat validation, response actions and remediation.[11]

2022: Bitdefender signed a multi-year partnership deal with Scuderia Ferrari on September 28.[12][13]

Fighting cyber-crime

Bitdefender is part of the Cybersecurity Tech Accord for a safer online world, a collaboration among over 150 global technology companies committed to protecting their customers and users and helping them defend against malicious threats.[14]

Independent tests

Bitdefender has won a number of awards from AV-Comparatives, an anti-virus assessment firm.[15][16]

Controversies and incidents

Trojan.FakeAlert.5

On March 20, 2010, computers running Bitdefender under 64-bit versions of Windows were affected by a malfunctioning update that classified every executable program as well as dll files as infected. These files were all marked as 'Trojan.FakeAlert.5' and were moved into quarantine. This action led to software and systems malfunctions that affected users around the world.[17] Bitdefender representatives announced the removal of the faulty update and a workaround for the users affected,[18] except for those using the 2008 version.[19]

DarkSide ransomware

In 2021, Bitdefender was accused of self-promotion when releasing and publicly announcing a decryptor to the detriment of actual victims with regards to DarkSide, a hacking group. In 2020, DarkSide switched their main encryption ransomware product over to an "affiliate" model wherein other attackers could download and use their software in exchange for a portion of the profits. However, they introduced a bug in the process where affiliate hackers would all use the same private RSA key - meaning that a decryption package for a single target who paid the ransom would work on any target that had the ransomware installed. Security researchers noticed and were quietly already helping victims of the software, but with no public notice, making it so that the attackers would only see an inexplicable decrease in ransom payments that could be written off as chance. Months later, Bitdefender publicly released a decryptor of their own development and issued a blog post describing the flaw. This was criticized in an article in the MIT Technology Review. The article wrote that Bitdefender's program wasn't even safe - it was flawed and would "damage" files decrypted with it due to bugs within it, unlike the earlier decryptors that had been quietly used. Second, the blog post tipped off DarkSide as to the nature of the flaw; DarkSide promptly patched the bug and sarcastically thanked Bitdefender for pointing it out, then went on with their campaign of extortion. A notable incident that took place after Bitdefender's public disclosure was the Colonial Pipeline cyberattack in May 2021. While the security researchers who had been using the flaw before acknowledge that it's probable DarkSide would eventually have noticed and fixed the issue, they still criticized Bitdefender for using the bug merely for a brief burst of publicity, rather than in the way that would most help victims of the scheme.[20] Bitdefender has defended their actions on their blog, saying that they only wished to make as many organizations as possible aware of its existence of the bug in DarkSide's ransom attacks.[21] The article and blog post triggered a discussion among cybersecurity professionals about the pros and cons of publicly disclosing such vulnerabilities in malware.[22]

REvil Ransomware

In September 2021, Bitdefender published a universal decryptor utility that will help past victims of the REvil ransomware recover their encrypted files.[23]

See also

References

  1. "Interview with Florin Talpes, CEO at Bitdefender". http://blog.howtoweb.co/2013/10/interview-with-florin-talpes-ceo-at-bitdefender/. 
  2. 2.0 2.1 2.2 "Bitdefender Long Description" (in en). https://www.bitdefender.com/site/view/about-us.html. 
  3. "Market scores held by the leading Windows anti-malware application vendors worldwide as of August 2021" (in en). https://www.statista.com/statistics/1267474/market-score-antivirus-vendors-for-windows-systems/. 
  4. "Definition of: Bitdefender". PC Magazine Encyclopedia. https://www.pcmag.com/encyclopedia/term/67446/bitdefender. Retrieved 17 May 2019. 
  5. "M&A alert. Vitruvian Partners buys stake in Bitdefender from Axxess Capital" (in ro). 2017-12-01. https://business-review.eu/news/ma-alert-vitruvian-partners-buys-stake-in-bitdefender-from-axxess-capital-153510. 
  6. "IoT News - Bitdefender BOX : the ultimate security solution for smart home environments?" (in en-US). 2017-12-06. https://iotbusinessnews.com/2017/12/06/64663-bitdefender-box-ultimate-security-solution-smart-home-environments/. 
  7. "Romania's Bitdefender buys France's Profil Technology" (in en). http://seenews.com/news/romanias-bitdefender-buys-frances-profil-technology-554434. 
  8. Ilie, Luiza (2017-12-01). "Vitruvian buys 30 pct stake in Romanian cyber security firm Bitdefender" (in en). Reuters. https://www.reuters.com/article/romania-bitdefender-idUSL8N1O122A. 
  9. "Romania's Bitdefender buys Australian partner SMS eTech" (in en). http://seenews.com/news/romanias-bitdefender-buys-australian-partner-sms-etech-626451. 
  10. Bitdefender. "Bitdefender Acquires Behavioral and Network Security Analytics Company RedSocks". www.prnewswire.com (Press release). Retrieved 2021-01-15.
  11. "Bitdefender Unveils the Next Evolution of Endpoint Detection and Response Solutions - eXtended EDR (XEDR)". www.prnewswire.com (Press release).
  12. "Bitdefender Team Partner - Ferrari.com" (in en). https://www.ferrari.com/en-EN/formula1/partners/bitdefender. 
  13. "Bitdefender's Partnership with Scuderia Ferrari" (in en-US). https://www.bitdefender.com/scuderiaferrari/. 
  14. "Cybersecurity Tech Accord" (in en-US). https://cybertechaccord.org/accord/. 
  15. "Awards" (in en-US). https://www.av-comparatives.org/awards/. 
  16. "Test antivirus software Bitdefender" (in de). https://www.av-test.org/en/antivirus/home-windows/manufacturer/bitdefender/. 
  17. McMillan, Robert. "Bad Bitdefender Update Clobbers Windows PCs". https://www.pcworld.com/article/192000/bad_bitdefender_update_clobbers_windows_pcs.html. 
  18. "Trojan.FakeAlert.5 Update issue". http://news.bitdefender.com/NW1431-en--Trojan.FakeAlert.5-Update-issue.html. 
  19. Peter Bright (22 March 2010). "Bitdefender update breaks 64-bit Windows PCs". https://arstechnica.com/software/news/2010/03/bitdefender-update-breaks-64-bit-windows-pcs.ars. 
  20. Dudley, Renee; Golden, Daniel (May 24, 2021). "The Colonial pipeline ransomware hackers had a secret weapon: self-promoting cybersecurity firms". MIT Technology Review. https://www.technologyreview.com/2021/05/24/1025195/colonial-pipeline-ransomware-bitdefender/. 
  21. Bitdefender's Position on Ransomware Attacks and Decryptors
  22. Schwartz, Samantha (September 21, 2021). "Is there too much transparency in cybersecurity?". https://www.cybersecuritydive.com/news/cybersecurity-transparency-hackerone/606914/. 
  23. Arjun Ramprasad (September 18, 2021). "Universal decryptor for past REvil ransomware victims released". Preview Tech. https://previewtech.net/universal-decryptor-for-past-revil-ransomware-victims-released/17. 

External links

  • A Q&A discussion in IT World Canada on whether Bitdefender ought to have released the decryptor software w/r/t DarkSide