Robert Lipovsky

Robert Lipovsky

Principal Threat Intelligence Researcher


Education? Master’s Degree in Computer Science from the Slovak University of Technology in Bratislava

Highlights of your career? Giving presentations at several security conferences, including EICAR, CARO, and Virus Bulletin.

Position and history at ESET? Malware Researcher since 2007, currently holds the position Security Intelligence Team Lead.

What malware do you hate the most? Grayware/PUAs – when malware authors complain about detection and try to convince you they’re not malware.

Favorite activities? Snowboarding, listening to music, playing guitar…

What is your golden rule for cyberspace? Be reasonably paranoid..

When did you get your first computer and what kind was it? During primary school. It was an Intel 8088 palmtop, used it for programming in GW-BASIC 

Favorite computer game/activity? Project I.G.I.


49 articles by Robert Lipovsky

ESET research

Filecoder: Holding your data to ransom

Filecoder: Holding your data to ransom

ESET research

Filecoder: Holding your data to ransom

Trojans that encrypt user files and try to extort a ransom from the victim in exchange for a decryptor utility are nothing new. We’ve noted a significant increase in Filecoder activity over the past few summer months - in this blog post we address the questions we’re getting about this issue.

Robert Lipovsky23 Sep 20135 min. read


ESET research

Hesperbot - technical analysis: part 2/2

Hesperbot - technical analysis: part 2/2

ESET research

Hesperbot - technical analysis: part 2/2

In this 3rd Hesperbot blog post we’ll look at the most intriguing part of the malware - the way it handles network traffic interception.

Robert Lipovsky09 Sep 20137 min. read


ESET research

Hesperbot – Technical analysis part 1/2

Hesperbot – Technical analysis part 1/2

ESET research

Hesperbot – Technical analysis part 1/2

Win32/Spy.Hesperbot is a new banking trojan that has been targeting online banking users in Turkey, the Czech Republic, Portugal and the United Kingdom. For more information about its malware spreading campaigns and victims, refer to our first blog post. In this post we’ll cover the technical details of the malware, including the overall architecture, as well as the mobile component.

Robert Lipovsky06 Sep 20136 min. read


ESET research

Hesperbot – A New, Advanced Banking Trojan in the Wild

Hesperbot – A New, Advanced Banking Trojan in the Wild

ESET research

Hesperbot – A New, Advanced Banking Trojan in the Wild

A new and effective banking trojan has been discovered targeting online banking users in Turkey, the Czech Republic, Portugal and the United Kingdom. It uses very credible-looking phishing-like campaigns, related to trustworthy organizations, to lure victims into running the malware.

Robert Lipovsky04 Sep 20135 min. read


ESET research

More malware targeting crypto-currencies: Litecoin stealing Trojan found

More malware targeting crypto-currencies: Litecoin stealing Trojan found

ESET research

More malware targeting crypto-currencies: Litecoin stealing Trojan found

Bitcoin is not the only crypto-currency targeted by malware now that a Trojan designed to steal Litecoins has been discovered. In this post we review recent discoveries in malware impacting digital money.

Robert Lipovsky01 Jul 20132 min. read


ESET research

Tax returns: Slovakian spyware campaign

Tax returns: Slovakian spyware campaign

ESET research

Tax returns: Slovakian spyware campaign

ESET’s Security Research Lab details a malware-spreading campaign leveraging the deadline for tax returns in Slovakia and examines a case of infection where a bank's two-factor authentication prevented financial loss.

Robert Lipovsky24 May 20134 min. read


ESET research

PokerAgent botnet stealing over 16,000 Facebook credentials

PokerAgent botnet stealing over 16,000 Facebook credentials

ESET research

PokerAgent botnet stealing over 16,000 Facebook credentials

The ‘PokerAgent’ botnet, which we have tracked in 2012, was designed to harvest Facebook log-on credentials, also collecting information on credit card details linked to the Facebook account and Zynga Poker player stats, presumably with the intention to mug the victims.

Robert Lipovsky29 Jan 20139 min. read


ESET research

Java 0-Day Exploit CVE-2013-0422

Java 0-Day Exploit CVE-2013-0422

ESET research

Java 0-Day Exploit CVE-2013-0422

Robert Lipovsky11 Jan 20131 min. read


ESET research

Quervar Induc.C reincarnate?

Quervar   Induc.C reincarnate?

ESET research

Quervar Induc.C reincarnate?

Robert Lipovsky21 Aug 20128 min. read