One of the biggest security firms in the world admits it was hacked | BusinessInsider.com
Russia-based Kaspersky Lab, one of the biggest and most well-known cybersecurity research firms in the world, has admitted to being hacked.
In a blog post published earlier today, Kaspersky Lab CEO and founder Eugene Kaspersky wrote, “We discovered an advanced attack on our own internal networks. It was complex, stealthy, it exploded several zero-day vulnerabilities, and we’re quite confident that there’s a nation state behind it.”
Kaspersky customer’s data is safe, the company said. The sophisticated attack stayed away from user information and focused instead on Kapersky’s own systems and intellectual property, the company said. The company has since fixed the hole that allowed for the attack.
What the Kaspersky breach tells us about the state of antivirus | Alex Eckelberry
Considering that most antivirus vendors practice what I call “hash-whoring”, where hash detections from VirusTotal or internal scans are dumped wholesale into their databases (explaining the massive size of today’s antivirus engine), the poor detection state of this variant is surprising. (Incidentally, I’m not condemning this practice — it’s a very useful stop-gap until a detection team can make a good detection — nevertheless, it’s abused way too much, especially by poorer quality, also-ran engines.)
…Is this blog post another tired rant against antivirus? Absolutely not. AV isn’t dead. It’s part of a valid belt-and-suspenders approach to security.
But, a day later, and we still see poor detection? Yeah, that part sucks.—http://blog.eckelberry.com/what-the-kaspersky-breach-tells-us-about-the-state-of-antivirus/