Around the world, the Czech Republic is perhaps most famous for its beer, super models, hockey players and charming cities. Which is already pretty good by most international standards. What is less known but no less impressive is its power status in the field of antivirus protection. Indeed, the Czech Republic (and Slovakia) are most likely protecting your computer from nefarious code right now. The countries of the former Czechoslovakia produce several of the top antivirus programs in the world. It’s an unexpected accomplishment and one we’d like to investigate further.
Jakub Truschka, the marketing specialist of the Brno-based company TrustPort defines a computer virus as “a program that is able to replicate itself and spread from one computer to another.” Igor Hák, the Chief Technical Director of the Czech branch of ESET (a Slovak company), further explains that currently “malware” is a term that’s come into existence to incorporate not just viruses, but other types of malicious codes, like worms, trojans, rootkits, spyware and so on. These exotic-sounding threats are quite real and can not only delete important files on your computer or your smartphone, but subvert the infrastructure of countries (like the recent Stuxnet worm’s attack on Iran’s nuclear program) and will soon be able to turn your coffee maker and toaster against you.
The first computer virus that affected PCs was called “Brain” and was written in 1986 by two brothers in Pakistan for research purposes.
Check out this video about the creators of the Brain virus:
It was an experiment that didn’t cause much harm (mainly annoyance). But soon, more viruses followed. In 1987, a high school student in Vienna wrote a virus (not surprisingly called “Vienna”) that became a real nuisance and had in many ways sparked the creation of the antivirus industry. Eduard Kučera and Pavel Baudiš, the founders of the Czech company Avast and Slovaks Peter Paško and Miroslav Trnka (who founded ESET) all cut their teeth discovering and fighting the Vienna virus.
As Igor Hák of ESET recounts, “many other virus discoveries quickly followed, which sparked the idea to devise a universal software solution to counter these then relatively unknown computer threats.” The Velvet Revolution of 1989 had a profound impact in freeing the brilliant minds of the former Czechoslovakia to turn this idea into commerce. Formed in the early 1990s, a number of companies have come to lead the field. As of 2011, Avast’s “avast!” product line has more than 135 million active users, ESET has offices in more than 180 countries of the world, and this past month (January 2012) the Brno-based AVG Technologies, whose product is incorporated into the MS Windows Security Center, filed a $125 million IPO. All these companies continually rank in the top ten of security software firms in the world (interestingly, the top company is currently the Russian Kaspersky Lab).
So why Czech Republic and Slovakia? What makes the region so successful in churning out computer security experts? There is no simple answer. Jakub Truschka of TrustPort sees it in terms of the high level of education and skill level of the local programmers, which is an ideal export “for a country with rather limited natural resources”. Lyle Frink, the PR manager of AVAST says that “because the computers here were behind those in the US, programmers had to be more skilled in writing programs that consumed less computer resources. This turned into a professional advantage.” Igor Hák of Eset does not know if there is anything special in the local water, but also thinks “both countries benefit from quality graduates of technical universities. Since the company’s beginnings, ESET’s success is strongly linked with the exceptional skills of our employees.”
We spoke to a young programmer at Prague College, which has a School of IT & Computing. Notably, the young man wanted to remain anonymous for this article. He proposed that “people in CR always had a tendency to research security. After hearing remarkable stories of Czech cryptanalysts from WWII and the Cold War just proves it to me even more.”
While early computer viruses were mostly created by young computer enthusiasts, who wanted to test their skills and to let the world know who they were, Igor Hák of ESET says that “currently nearly all threats are made just for money.” Spammers often take over the computers of unsuspecting users to help spread their messages and products. Jakub Trushka of TrustPort suspects it goes even further – “production of malicious software has fallen into the hands of organized groups, who simply added computer crime to other criminal methods they had been using before. Their basic goals are to take control of someone else’s computers, to use them as a platform for further attacks, and in the end, as a means of making money.”
Another motivating factor in creating malware is highlighted by the Prague College computer student. He indicated that it’s actually common in antivirus companies and in all fields of computer security to hire the hackers who create the viruses in the first place. He says that “for decades the governments and large companies have been employing people that were hacking them.”
Jakub Truschka of TrustPort confirms that “bringing an insider’s perspective into play can hugely help the anti-malware struggle… it is sort of a never-ending battle. The antivirus companies develop new methods of detection and destruction of threats, the cybercriminals look for new direct or indirect ways to circumvent the protective measures.” So there is potentially an incentive for young programmers to create viruses because it can lead to fame and jobs. Of course, some of them end up behind bars, and this is not to say that most people at antivirus companies started out making the viruses – that is just not true. Yet the relationship between those who try to destroy your computer and those who protect it is certainly complex. And if you’re wondering if there is a sure-fire way to stay clear of computer viruses, Lyle Frink of AVAST jokes: “Well, if you write on paper with a pen or pencil, your security needs are greatly limited.”
More interesting tidbits from the world of malware:
The first mobile virus, Cabir, appeared in 2004.
A TROJAN HORSE is a malicious program that disguises itself as something useful and once installed takes over the user’s computer or causes various undesirable effects. Thanks, Ulysses!
A BOTNET is a collection of infected computers connected to the Internet (each such computer known as a ‘bot’).
On March 29, 2010, Symantec Corporation named Shaoxing, China, as the world’s malware capital.