Cybersecurity company Eset gives us a unique insight into their research lab, the beating heart of the company. From the front row, we hear how Eset wants to make not only itself but also Europe the driving force in the global fight against cybercrime.

It’s a drizzly Monday morning in Bratislava. There is no sign of the Belgian summer weather in Slovakia. A short taxi ride, which we could have done just as quickly on foot, takes us over the Most SNP. Known for its odd UFO saucer overlooking the Danube, the bridge connects the historic center with the new commercial zone and symbolizes the progress the country has made since independence. The towers of local cybersecurity specialist Eset dominate the skyline.

Typically, a cybersecurity company isn’t one to walk in and out of, and Eset is no exception. We have to identify ourselves not just once, but twice. A first time at the reception on the ground floor, but we too cannot enter the Eset offices without an extra visitor badge.

An employee in the elevator to the sixteenth floor explains that Eset has understandable reasons to be particularly vigilant these days. The company plays an active role in Ukraine to protect the country’s digital infrastructure from politically motivated cyber attacks. During our visit we will also note that the ongoing war is causing tensions in Eastern Europe.

Research in DNA

This does not make the reception by the Eset population any less warm. The briefing room reserved for the press is stocked with drinks and healthy (and not-so-healthy) snacks; Before we even take a seat, we are already offered a coffee. Nothing but praise for Slovakian hospitality.

Of course we didn’t drive all the way to Bratislava to have coffee. Eset wants to show us his research lab. Research is in the company’s DNA even before it was officially founded, says Branislav Ondrasik. In 1987, founders Peter Pasko and Miroslav Trnka developed an antivirus solution, which was one of the first of its kind in Europe at the time. Eset saw the light of day in 1992.

Thirty years later, the company continues to make significant contributions to the research of malware, ransomware, trojans and other malicious creatures that can plague your device. More than 300,000 unique types of malware have already been discovered in the laboratory: a number that Ondrasik proudly shows in his presentation.

In the laboratory

We can’t wait to see where this all happens. We go up one floor Security Awareness Specialist Ondrej Kubovic is waiting for us. He accompanies us to the “Houston room”. We couldn’t think of a more appropriate name ourselves because if you have a problem call Houston.

Now we must dampen your expectations. The term “cybersecurity lab” can be used by the imagination, but in practice you shouldn’t really think of anything more than a room with lots of computer screens. Again, these screens weren’t that crowded on the day of our visit. No need to panic: Eset has embraced the hybrid working model and employs experts outside of Slovakia from Singapore to Canada who keep an eye on things 24/7.

Kubovic explains how he and his colleagues work at the Eset Lab. “There are two computer screens on every desk. One of them serves as a “test device”. When a researcher takes custody of a malware sample, it can be released into a controlled environment to study the behavior of the virus. Because malware can partially damage a device, each researcher gets an extra computer for day-to-day operations.”

Our attention is primarily focused on the television screens hanging in the laboratory. They are reminiscent of screens in a trade fair hall that show stock prices so investors know what to buy. On the TV screens in the Eset Lab we see world maps, graphs and colored dots that we cannot immediately understand. We therefore only ask for a hotline from Kubovic.

He clarifies: “The two screens on the left serve as the update dashboard. Researchers use these screens to monitor whether all scanners that Eset has placed around the world have been updated to the latest software version.” Finally, Eset itself as a security company has to lead by example.

The two screens on the right look a lot more menacing, with dots constantly bouncing from green to blue and red. Here Eset monitors security events in real time. “The color codes show how many of these events may be imminent. When the ball goes green there is little or no danger, when it comes red some vigilance is required,” explains Kubovic.

On the map of Belgium we suddenly see that some dots turn red. Kubovic immediately reassures us: “Not every red dot immediately means that an intervention team must be deployed.” We carefully analyze each alert to see if and how we must intervene.” A call to the home front seems unnecessary in this case.

Find new ways

Because Eset is so close to the line of fire, Kubovic and his colleagues know what’s going on in the cybersecurity world better than anyone. He will be happy to share some useful insights with you that you can take with you to Belgium. Cybercriminal attack tactics are constantly evolving.

Kubovic: “The typical scenario of a cyber attack is still a phishing email with malicious files, even if the email is gradually becoming a less popular target.” In 2022, Microsoft introduced blocking for macro files in Outlook, which make their execution difficult. This shifted the focus to OneNote, but improved protection has now been introduced for that as well.”

“It won’t stop attackers from trying,” warns Kubovic. “Log4j is now the second largest vector after phishing. In 2023, new vulnerabilities will keep popping up, which are not always easy to fix due to licensing. It shows that for every door that closes, hackers find new ways. As long as people continue to ignore warnings and blindly click on everything, they will keep coming back.”

We also ask Kubovic, as a security expert, how he sees the rise of Generative AI: “What we are already seeing is criminals using Generative AI to create phishing emails.” Email takes less time. The use of voice technology may become a new form of phishing, but more research is needed on this topic.”

Businesses today also use artificial coding aids to write their codes. Nevertheless, Kubovic advises to be a little careful. “Provided you have a good database, AI can write good code. But the tools have limitations, so programming skills are still required.”

For every door that closes, hackers find new ways. As long as people continue to ignore warnings and blindly click on everything, they will keep coming back.

Ondrej Kubovic, Security Awareness Specialist

Ambassador of Europe

After the conversation with Kubovic, it’s time to let everything sink in. The rain has stopped so we can get some fresh air in the nearby park. Eset has managed to find a quiet spot in Bratislava, although we suspect there’s little time for a leisurely stroll in the heat of battle. When I returned to the press room, they were joined by Ignacio Sbambato. If Chief Business Officer He must ensure that Eset is not only praised for its research, but also ensures that the products are sold in the business market.

Eset has big ambitions in this market. The Slovak company is now one of the largest European born and raised security software vendors. For Sbambato, himself a proud Argentinian, it is important that the company stays true to its roots.

Sbambato: “The local character is a great advantage in cyber security. Since – and perhaps also because of – the war in Ukraine, we have observed that government agencies, for example, are looking more specifically for a local security partner. They usually do this for security reasons, but also because our research teams have access to unique data that other parties don’t have.”

Security remains an Achilles’ heel for many companies around the world. It’s not about not wanting to do it, but often simply not being able to do it because of a lack of resources and staff.

Igancio Sbambato, Eset Chief Business Officer

In Europe, Eset sits at a table with the largest, mostly American cybersecurity providers of the genre Palo Alto, Fortinet and Cisco. Beating them on their own territory is another matter for any European IT company for the time being.

“We not only want to be the largest player in the European market, but also to profile Europe as a global leader in cybersecurity. The oversupply is hampering expansion into the US for the time being. Nevertheless, we see enormous opportunities. Security remains an Achilles’ heel for many companies around the world. “It’s not about not wanting to do it, but simply not being able to do it because of a lack of resources and staff,” concludes an ambitious but also honest Sbambato.

As we leave for the airport, dark clouds gather over Bratislava again. The weather gives us the metaphor, as many companies today are feeling a downpour of cyber attacks looming over their heads. It’s up to the specialists at Eset Lab to clear the clouds again.