Skip to content

ESET recognized as a “Strong Performer” in prestigious Endpoint Security report

  • ESET has been cited as a “Strong Performer” in the renowned “Endpoint Security, Q4 2023” report.
  • ESET’s business endpoint solutions excel in endpoint malware and exploit prevention, offering robust mobile device security, device management, and vulnerability and patch management for all supported endpoints. 

BRATISLAVA — November 08, 2023 — ESET, a global cybersecurity leader, has been acknowledged as a “Strong Performer,” according to The Forrester Wave™: Endpoint Security, Q4 2023 report. Forrester, a respected analyst firm, meticulously researched and analyzed 13 top endpoint security vendors in its 25-criterion evaluation to guide security and risk professionals in selecting the right solution for their needs.

The report underscores the critical role of endpoint security solutions, acting as the first and last line of defense for business users, safeguarding their devices from malware, detecting and responding to malicious actions, and resolving incidents swiftly and efficiently. The report states that “ESET’s differentiator is that it’s able to support organizations that need to maintain an air-gapped infrastructure;” highlighting, in our opinion, the company’s commitment to meeting diverse security needs.

The report also noted that ESET has dominant prevention engines when it comes to malware and exploits target at endpoints — its mobile device security provides mobile device management, and the solution includes vulnerability and patch management for all supported endpoints.

Jakub Debski, Chief Product Officer at ESET, stated, “Safeguarding our users and their businesses against the most sophisticated advanced threats is at the core of our business mission at ESET. In today’s rapidly evolving digital landscape, it is essential for businesses to have access to robust and state-of-the-art detection and response tools. We are confident that security and risk professionals can make informed decisions for their organizations by choosing ESET’s innovative solutions — allowing the companies to focus on their operations, simplifying their security through ESET’s unified XDR platform.”

ESET believes Forrester’s recognition positions ESET as a competitive player in the endpoint security market, reinforcing the company’s reputation for delivering advanced and reliable security solutions. ESET remains steadfast in its mission to empower businesses with cutting-edge digital security tools, ensuring robust protection against evolving cyber threats.For more information about ESET and its endpoint security solutions, please read here. The full report can be downloaded here by Forrester clients or through purchase.

For more information about ESET and its endpoint security solutions, please read here.

About Version 2
Version 2 is one of the most dynamic IT companies in Asia. The company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About ESET  
For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint security to encryption and two-factor authentication, ESET’s high-performing, easy-to-use products give individuals and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D facilities worldwide, ESET became the first IT security company to earn 100 Virus Bulletin VB100 awards, identifying every single “in-the-wild” malware without interruption since 2003.

Simple antivirus is not enough anymore. ESET is introducing all-in-one protection for consumers

BRATISLAVA — November 15, 2023 —ESET, a global leader in cybersecurity, today announced the launch of its new innovative and streamlined offering for consumers. With more than 30 years on the market, ESET has moved to unify its broadly deployed consumer product portfolio. Specifically, ESET is introducing three brand new customer-centric subscription tiers, providing both broad and reliable digital life protection via new features, such as a Virtual Private Network (VPN) and a Browser Privacy & Security extension.

Responding to the increasing demand for an all-in-one solution that offers intuitive use of these new features, ESET is introducing an improved ESET HOME—a comprehensive security management platform. Available across all major operating systems—Windows, macOS, Android, and iOS—and includes visibility into home networks and connected smart devices.

„At ESET, we’re thrilled to unveil our cutting-edge consumer solutions. It’s more than just security – it’s a comprehensive portfolio designed to keep our customers safe in today’s digital landscape. We’re dedicated to advancing technology without compromising their safety. Our team has poured their expertise into creating a powerful blend of AI, human insight, and cloud protection, delivering a state-of-the-art defense against a multitude of cyber threats. The new ESET HOME Security subscription tiers offer multilayered security, protect privacy, and keep the devices and homes of our customers safe. With ESET, they’re not just protected; they’re empowered to explore, connect, and thrive securely,“ said Mária Trnková, Chief Marketing Officer at ESET.

Complete security management platform

Research among ESET customers shows that the vast majority of ESET HOME users define themselves as home admins, those who take care of their household’s digital security. They are tech savvy but don’t want to spend much time managing ESET products. To meet customers’ needs, ESET has made improvements to ESET HOME. Now, as a complete security management platform, it is a seamless part of the user experience. In this version, managing devices, making online purchases, subscription activation and renewal, downloading or upgrading security solutions, and enabling powerful functionalities like VPN security, Password Manager, and more.

To enhance user experience and simplify the platform’s management, ESET has made several interface changes, including the introduction of Overall Protection Status, so users can see the level of protection for their households in one view. This combines both the validity status of a user’s subscriptions and the security status of devices connected to the account in three categories: Protected, Attention Required, and Security Alert.

These changes aim to provide customers with cutting-edge protection, while minimal interaction is needed to set up the product. At the same time, this new ecosystem provides meaningful options and functionality for proactive users who want to control and customize it. ESET HOME is an easy-to-use web portal and mobile app available for both iOS and Android.

Explore new subscription tiers and their features

Also introduced with this launch are three subscription tiers for this new ecosystem—ESET HOME Security Essential, ESET HOME Security Premium, and ESET HOME Security Ultimate. Subscription tiers provide all-in-one protection, from the entry-level of protection up to the ultimate level, covering the complex needs of individuals and their households for digital life privacy and security. ESET HOME Security subscriptions are available on all major operating systems—Windows, macOS, Android, and iOS.

ESET HOME Security Essential is an entry-level subscription tier with protection features, including improved modern endpoint security and multilayered real-time protection, as well as additional tools that further enhance the user’s ability to protect against various threats. Included are the Safe Banking and Safe Browsing features, designed to protect users’ sensitive data, and Network Inspector, a diagnostic tool providing information on the security of the user’s router and display of devices connected to the network. Newly developed browser extensions provide enhancement of the Browser Privacy & Security feature. This includes cleanup tools, such as Browser Cleanup, which cleans cookies, history, and much more from the browser, regularly or on demand.

The middle tier, ESET HOME Security Premium, extends the feature set further by adding other security functionalities, such as a Password Manager, which protects and stores users’ passwords and personal data. This includes an automatic and accurate form-filling feature, saving users time when filling out web forms. Secure Data functionality boosts their privacy and security with powerful encryption of files and removable media, preventing data theft in the event of USB or laptop loss and ensuring secure collaboration and data sharing. ESET HOME Security Premium offers the ESET LiveGuard tool, cloud-based protection specifically designed to mitigate never-before-seen threats.

ESET HOME Security Ultimate is the most advanced subscription tier; it seamlessly provides complex all-in-one protection and introduces a brand-new ESET feature: VPN. This feature is also complemented by the browser extension functionality (Browser Privacy & Security), to ensure that the user’s browsing is protected. Additionally, Metadata Cleanup removes metadata from uploaded pictures to the browsers on Windows. Website Settings Review allows users to easily review and change permissions granted to websites.

Enhancing online security: Introducing VPN feature

ESET’s new VPN feature offers users a confidential internet experience by establishing a private network connection guaranteeing protection while using public Wi-Fi, and enforcing a strict no-logs policy to make it more difficult to track. It encrypts users’ online activities and enables unlimited bandwidth access to geo-restricted content, including unrestricted and private access to websites in more than 60 countries worldwide. Thanks to this feature, users can securely access their home countries’ TV shows and movies while traveling or enjoy their favorite streaming services from different parts of the world. Even more features are available on the VPN service running on desktop, including DNS leak protection, MAC spoofing, proxy gateway for other devices, firewall, and split tunneling. By adding a VPN on iOS, ESET is strengthening its presence on this platform, where Password Manager and ESET HOME are already established.

Device-tailored security solutions

ESET HOME Security takes device protection to a new level by seamlessly integrating a suite of standalone device protection solutions tailored to meet customers’ security needs. This includes ESET NOD32 Antivirus, ESET Mobile Security for Android, Parental Control for Android, and ESET Smart TV Security.

More information about the new consumer offering and subscription tiers can be found here.

About Version 2
Version 2 is one of the most dynamic IT companies in Asia. The company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About ESET  
For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint security to encryption and two-factor authentication, ESET’s high-performing, easy-to-use products give individuals and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D facilities worldwide, ESET became the first IT security company to earn 100 Virus Bulletin VB100 awards, identifying every single “in-the-wild” malware without interruption since 2003.

ESET Research: Infamous IoT botnet Mozi taken down via a kill switch

  • ESET researchers have observed the sudden demise of one of the most prolific Internet of Things (IoT) botnets: Mozi has been responsible for the exploitation of hundreds of thousands of devices a year since 2019.
  • ESET observed a drop in Mozi’s activity in India and China in August, later discovering a kill switch that disabled the malware and stripped the Mozi bots of their functionality.
  • There are two potential instigators for this takedown: the original Mozi botnet creator or Chinese law enforcement, perhaps enlisting or forcing the cooperation of the original actor or actors. The sequential targeting of India and then China suggests that the takedown was carried out deliberately, with one country targeted first and the other a week later.

BRATISLAVA — November 1, 2023 — ESET Research recently observed the sudden demise of one of the most prolific Internet of Things (IoT) botnets, named Mozi, infamous for exploiting vulnerabilities in hundreds of thousands of IoT devices each year. User Datagram Protocol (UDP) observed an unanticipated drop in activity that began in India and was also observed in China a week later. The change was caused by an update to Mozi bots that stripped them of their functionality. A few weeks following these events, ESET researchers were able to identify and analyze the kill switch that caused Mozi’s demise.

“The demise of one of the most prolific IoT botnets is a fascinating case of cyber forensics, providing us with intriguing technical information on how such botnets in the wild are created, operated, and dismantled,” says ESET researcher Ivan Bešina, who investigated the disappearance of Mozi.

On September 27, 2023, ESET researchers spotted the control payload (configuration file) inside a UDP message missing the typical content; its new activity was in fact to act as the kill switch responsible for Mozi’s takedown. The kill switch stopped the parent process – the original Mozi malware – and disabled certain system services, replaced the original Mozi file with itself, executed certain router/device configuration commands, and disabled access to various ports.

Despite the drastic reduction in functionality, the Mozi bots have maintained persistence, indicating a deliberate and calculated takedown. ESET analysis of the kill switch showed a strong connection between the botnet’s original source code and recently used control payloads that were signed by the correct private keys.

“There are two potential instigators for this takedown: the original Mozi botnet creator or Chinese law enforcement, perhaps enlisting or forcing the cooperation of the original actor or actors. The sequential targeting of India and then China suggests that the takedown was carried out deliberately, with one country targeted first and the other a week later,” explains Bešina.

For more technical information about the demise of the Mozi botnet, check out the blog post “Who killed Mozi? Finally putting the IoT zombie botnet in its grave” Make sure to follow ESET Research on Twitter (now known as X) for the latest news from ESET Research.

About Version 2
Version 2 is one of the most dynamic IT companies in Asia. The company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About ESET  
For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint security to encryption and two-factor authentication, ESET’s high-performing, easy-to-use products give individuals and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D facilities worldwide, ESET became the first IT security company to earn 100 Virus Bulletin VB100 awards, identifying every single “in-the-wild” malware without interruption since 2003.

ESET Research: Winter Vivern attacks Roundcube webmail servers of governments in Europe through zero-day vulnerability

  • ESET researchers discovered that the Winter Vivern group has been exploiting a zero-day XSS vulnerability in Roundcube Webmail.
  • According to ESET telemetry, the campaign targeted Roundcube Webmail servers belonging to governmental entities and a think tank in Europe.
  • Roundcube is an open-source webmail server used by many different organizations.
  • Roundcube patched the vulnerability and released security updates very quickly after being notified by ESET.
  • No manual interaction other than viewing the malicious email message in a web browser is required. The final JavaScript payload can exfiltrate email messages to the command and control server of the group.

BRATISLAVA, MONTREAL — October 25, 2023 — ESET researchers, during their regular monitoring of the cyberespionage operations of Winter Vivern, discovered that the group recently began exploiting a zero-day XSS vulnerability in the Roundcube Webmail server. In an XSS attack, malicious scripts are injected into otherwise trusted websites. According to ESET telemetry data, the campaign targeted Roundcube Webmail servers belonging to governmental entities and a think tank, all in Europe. ESET Research recommends updating Roundcube Webmail to the latest available version as soon as possible.

ESET discovered the vulnerability on October 12 and immediately reported it to the Roundcube team, who patched the vulnerability and released security updates soon after, on October 14. “We would like to thank the Roundcube developers for their quick reply and for patching the vulnerability in such a short time frame,” says ESET researcher Matthieu Faou, who discovered the vulnerability and Winter Vivern attacks.

“Winter Vivern is a threat to governments in Europe because of its persistence, its very consistent running of phishing campaigns, and because a significant number of internet-facing applications are not regularly updated despite being known to contain vulnerabilities,” explains Faou.

Exploitation of the XSS vulnerability CVE-2023-5631 can be done remotely by sending a specially crafted email message. “At first sight, the email doesn’t seem malicious – but if we examine the HTML source code, we can see a tag for SVG graphics at the end that contains an encoded malicious payload,” says Faou. By sending a specially crafted email message, attackers are able to load arbitrary JavaScript code in the context of the Roundcube user’s browser window. No manual interaction other than viewing the message in a web browser is required. The final JavaScript payload can exfiltrate email messages to the command and control server of the group.

Winter Vivern is a cyberespionage group that is thought to have been active since at least 2020 and targets governments in Europe and Central Asia. To compromise its targets, the group uses malicious documents, phishing websites, and a custom PowerShell backdoor. ESET believes with low confidence that Winter Vivern is linked to MoustachedBouncer, a sophisticated Belarus-aligned group that we first published about in August 2023. Winter Vivern has been targeting Zimbra and Roundcube email servers belonging to governmental entities since at least 2022.

For more technical information about Winter Vivern, its latest attack, and the Roundcube vulnerability, check out the blogpost “Winter Vivern exploits zero-day vulnerability in Roundcube Webmail servers” on WeLiveSecurity. Make sure to follow ESET Research on Twitter (now known as X) for the latest news from ESET Research.

About Version 2
Version 2 is one of the most dynamic IT companies in Asia. The company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About ESET  
For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint security to encryption and two-factor authentication, ESET’s high-performing, easy-to-use products give individuals and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D facilities worldwide, ESET became the first IT security company to earn 100 Virus Bulletin VB100 awards, identifying every single “in-the-wild” malware without interruption since 2003.

ESET APT Activity Report: China-aligned groups campaign against EU targets; prime target of Russia-aligned groups remains Ukraine

  • The latest APT Activity Report contains activities of selected APT groups from April 2023 to September 2023.
  • It highlights China-aligned groups’ persistent campaigns in the EU and the evolution of Russia’s cyberwar in Ukraine from sabotage to espionage.
  • Various groups exploited vulnerabilities in WinRAR, Microsoft Exchange servers, and IIS servers.
  • The prime target of Russia-aligned groups remained Ukraine; Telegram users were targeted for data collection.
  • Among the newly discovered China-aligned groups, DigitalRecyclers repeatedly compromised a governmental organization in the EU, TheWizards conducted adversary-in-the-middle attacks, and PerplexedGoblin targeted another governmental organization in the EU.

BRATISLAVA — October 26, 2023 — ESET released its latest report about the activities of selected advanced persistent threat (APT) groups that were observed, investigated, and analyzed by ESET researchers from April 2023 until the end of September 2023. Notably, ESET Research observed various APT groups exploiting known vulnerabilities to exfiltrate data from governmental entities or related organizations. Handpicked findings were presented exclusively to selected journalists during a press event. The presentation and the report explore China-aligned groups’ persistent campaigns in the European Union and the evolution of Russia’s cyberwar in Ukraine from sabotage to espionage.

Russia-aligned Sednit and Sandworm, North Korea-aligned Konni, and geographically unattributed Winter Vivern and SturgeonPhisher seized the opportunity to exploit vulnerabilities in WinRAR (Sednit, SturgeonPhisher, and Konni), Roundcube (Sednit and Winter Vivern), Zimbra (Winter Vivern), and Outlook for Windows (Sednit) to target various governmental organizations, not only in Ukraine but also in Europe and Central Asia. Regarding China-aligned threat actors, GALLIUM probably exploited weaknesses in Microsoft Exchange servers or IIS servers, extending its targeting from telecommunications operators to governmental organizations around the world; MirrorFace probably exploited vulnerabilities in the Proself online storage service; and TA410 probably exploited flaws in the Adobe ColdFusion application server.

Iran- and Middle East-aligned groups continued to operate at high volume, primarily focusing on espionage and data theft from organizations in Israel. Notably, Iran-aligned MuddyWater also targeted an unidentified entity in Saudi Arabia, deploying a payload that suggests the possibility of this threat actor serving as an access development team for a more advanced group.

The prime target of Russia-aligned groups remained Ukraine, where we discovered new versions of the known wipers RoarBat and NikoWiper and a new wiper we named SharpNikoWiper, all deployed by Sandworm. Interestingly, while other groups – such as Gamaredon, GREF, and SturgeonPhisher – target Telegram users to try to exfiltrate information, or at least some Telegram-related metadata, Sandworm actively uses this service for active measure purposes, advertising its cybersabotage operations. However, the most active group in Ukraine continued to be Gamaredon, which significantly enhanced its data-collecting capabilities by redeveloping existing tools and deploying new ones.

North Korea-aligned groups continued to focus on Japan, South Korea, and South Korea-focused entities, employing carefully crafted spear phishing emails. The most active Lazarus scheme observed was Operation DreamJob, luring targets with fake job offers for lucrative positions. This group consistently demonstrated its capability to create malware for all major desktop platforms.

Finally, our researchers uncovered the operations of three previously unidentified China-aligned groups: DigitalRecyclers, repeatedly compromising a governmental organization in the EU; TheWizards, conducting adversary-in-the-middle attacks; and PerplexedGoblin, targeting another governmental organization in the EU.

ESET APT Activity Reports contain only a fraction of the cybersecurity intelligence data provided to customers of ESET’s private APT reports. ESET researchers prepare in-depth technical reports and frequent activity updates detailing activities of specific APT groups, in the form of ESET APT Reports PREMIUM, to help organizations tasked with protecting citizens, critical national infrastructure, and high-value assets from criminal and nation-state-directed cyberattacks. Comprehensive descriptions of activities described in this document were therefore previously provided exclusively to our premium customers. More information about ESET APT Reports PREMIUM, which delivers high-quality, strategic, actionable, and tactical cybersecurity threat intelligence, is available on the ESET Threat Intelligence website.

For more technical information, check the full ESET APT Activity Report on WeLiveSecurity. Make sure to follow ESET Research on Twitter (now known as X) for the latest news from ESET Research.

About Version 2
Version 2 is one of the most dynamic IT companies in Asia. The company develops and distributes IT products for Internet and IP-based networks, including communication systems, Internet software, security, network, and media products. Through an extensive network of channels, point of sales, resellers, and partnership companies, Version 2 offers quality products and services which are highly acclaimed in the market. Its customers cover a wide spectrum which include Global 1000 enterprises, regional listed companies, public utilities, Government, a vast number of successful SMEs, and consumers in various Asian cities.

About ESET  
For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint security to encryption and two-factor authentication, ESET’s high-performing, easy-to-use products give individuals and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D facilities worldwide, ESET became the first IT security company to earn 100 Virus Bulletin VB100 awards, identifying every single “in-the-wild” malware without interruption since 2003.

×

Hello!

Click one of our contacts below to chat on WhatsApp

×