Russian antimalware company Doctor Web, the developer of Dr.Web cybersecurity products, on Tuesday said it was recently targeted in a cyberattack.
In an English-language statement posted on its website, the security firm said it had detected a targeted attack aimed at its resources on September 14.
“The attempt to harm our infrastructure was prevented in a timely manner, and no user whose system was protected by Dr.Web was affected,” the company said.
The incident prompted the company to disconnect all resources from its network to check them for signs of compromise. Its Dr.Web virus databases were also temporarily suspended.
A post written in Russian reveals that the company had kept an eye on the attacker’s movements after detecting the breach. In the same post, the company said the virus databases have been brought back online.
Doctor Web has not shared any information on who may be behind the attack. Cybersecurity companies may be targeted by any type of threat actor, including state-sponsored groups, hacktivists, and profit-driven cybercriminals.
The Russian cybersecurity firm Kaspersky, which is leaving the United States following a software sale ban, was targeted at least two times by what are believed to be state-sponsored threat actors: a decade ago in Duqu 2.0 attacks and more recently in Operation Triangulation.
The Russian security firm Avanpost was recently targeted by pro-Ukrainian hackers, with the attackers claiming to have stolen and destroyed vast amounts of data belonging to the company.
Western cybersecurity companies have also been targeted in recent months, including major firms such as Zscaler and Fortinet, both apparently targeted by profit-driven hackers.
Related: North Korean Hackers Hijack Antivirus Updates for Malware Delivery
Related: Cybersecurity Firm FireEye Says Was Hacked by Nation State
Related: Dragos Says No Evidence of Breach After Ransomware Gang Claims Hack via Third Party
