For its part, Positive is seen as one of the most popular security companies: employees look for high-level security, publish new research threats, and carry out bad work signs that say “Be careful!” hanging over their desks. The company is open to its ties with the Russian government: it has an 18-year history of security services including a two-year relationship with the Russian Ministry of Defense. But according to a study previously unpublished in the US, they also manufacture and sell government weapons in Russia.
Another area that has been identified by the company’s work on SS7, the most important technology for mobile phones worldwide. In a public display of Forbes, Has recently shown how it can transmit encryption using vulnerabilities in SS7. In particular, the US decided that Positive not only found and detected errors in the system, but also developed a destructive tactic to exploit the security holes used by Russian intelligence on deep cyber campaigns.
Much of Positive’s involvement in the Russian government’s fraud is similar to what American security companies do to US agencies. But there is a big difference. A former U.S. attorney general, who asked not to be named because he was not allowed to discuss sensitive issues, described the relationship between companies like Positive and their Russian intellectuals as “troublesome” and “abusive.” The costs are small, the demands are one-sided, the capacity is compromised, and the threat of non-compliance can be greatly increased.
U.S. lawmakers have already confirmed that Positive also runs cybercrime, and a large group is allowed to carry out their cyber campaigns as long as it is in Russia’s best interests. Such practices are illegal in the West: American military contractors are being closely monitored on a day-to-day basis by a cyber-security agency.
Former US officials say there is a strong alliance with Russia’s FSB, which includes human trafficking, crackdown on crime, and altering the cyber power that Western nations like the United States have opposed Russia.
The company’s annual conference, Positive Hack Days, was described in recent US prisons as “recording events at the FSB and GRU.” The event has been popular since time immemorial frequency and Russian diplomats.
Good did not respond to a request for comment.
Thursday’s announcement is not the first time Russian security companies have been scrutinized.
Russia’s largest security company, Kaspersky, has been under fire for years because of its ties with the Russian government – ultimately banned by US government officials. Kaspersky always denies any special relations with the Russian government.
But one thing that distinguishes Kaspersky from Positive, especially for American regulators, is that Kaspersky sells antivirus software to Western companies and governments. There are fewer smart data collection tools than antivirus programs, which are deliberately designed to monitor all computer activity and to manage the live machines. US officials believe it Russian pirates have used Kaspersky’s program to spy on Americans, but Positive – a small company that sells a variety of goods and services – has nothing in common with it.
Recent sanctions are the most recent segment between Moscow and Washington on the rise of cyber attacks, including those supported by Russia. SolarWinds Attack against the US, which led to four government agencies fighting for a long time. Earlier this year, a senior US cyber security official said surviving the threat could take the US at least 18 months.