Comodo Group

From Wikipedia, the free encyclopedia - View original article

Comodo Group, Inc.
IndustryComputer security, internet security
FoundedUnited Kingdom (1998 (1998))[citation needed]
HeadquartersClifton, New Jersey, United States
Key peopleMelih Abdulhayoğlu (President and CEO)
Jump to: navigation, search
Comodo Group, Inc.
IndustryComputer security, internet security
FoundedUnited Kingdom (1998 (1998))[citation needed]
HeadquartersClifton, New Jersey, United States
Key peopleMelih Abdulhayoğlu (President and CEO)

Comodo Group, Inc. is a privately held group of companies providing computer software and SSL digital certificates, based in Clifton, New Jersey, United States. It has offices in the United Kingdom, Ukraine, Romania, China, India, Turkey and the United States.[1]

Comodo is the second most used certificate authority according to W3Techs,[2] competing against Symantec, Trend Micro, DigiCert, Entrust, GlobalSign, Go Daddy, and others.

Comodo competes in the antivirus industry against Avira, BullGuard, F-Secure, Frisk, Kaspersky, McAfee, Panda Security, Sophos, Symantec and Trend Micro among others.


The company was founded in 1998 in the United Kingdom, by Comodo CEO, Melih Abdulhayoğlu, a technologist and an entrepreneur. Comodo relocated to the United States, first settling in Jersey City, New Jersey in 2004. Comodo's product line is focused primarily on computer and internet security.[3] The firm operates a Certificate Authority that issues SSL certificates, offers a computer security suite that includes antivirus and firewall protection and offers other web and network protection services.

In December 2012 the company relocated its world headquarters from Jersey City to Clifton, New Jersey.[4]


Certificate Authority[edit]

Comodo's largest and most prominent business is as a Certificate Authority that sells SSL Certificates. As of June 1, 2013 the company had a 27% Market Share among Certificate Authorities, just second behind Symantec, according to[5]

Enterprise Products[edit]

The Comodo strategy for the Enterprise market focuses primarily on cross selling web site PCI and Malware scanning services to their customers for SSL Certificates. They also market an End Point Security Management System that leverages their internet security software.

Consumer Products[edit]

The Comodo strategy for the consumer market is to offer its software products as freemium; that is, they are available for download free of charge,[6] but additional features and support are available for a fee.[7] Among Comodo's free products is the Comodo Internet Security, incorporating a personal firewall, Host-based intrusion detection system and antivirus program.[8] Other Comodo branded freeware security tools include an anti-malware tool, and a memory firewall that protects against over 90% of buffer overflow attacks.[9] For an additional fee, Comodo product users can subscribe to Comodo's computer cleaning and optimizing services for real-time computer assistance. Comodo also offers Comodo System Cleaner, which includes a free registry cleaner program,[10]

Comodo Unite (formerly EasyVPN), a virtual private networking (VPN) program, and Comodo SecureEmail, an email encryption program that allows S/MIME email users to send emails to any email user without exchanging keys beforehand. These products come in both a limited free version and a more functional professional release.

To support the mobile computing market Comodo has introduce the Comodo Mobile Security for the Android and Comodo Cloud storage for the Android and iOS.[11]


Comodo Internet Security[edit]

Comodo Internet Security initially received mixed;it was generally praised for its firewall and its value for price, but criticized for its poor antivirus detection. Over time, however, its antivirus component received better reviews. For instance, a 2008 review of Internet Security 3.5 from PC Magazine security analyst, Neil J. Rubenking, yielded a score of 2.5 out of 5, praising the suite's firewall and criticizing its antimalware component.[12] Five years later, on 7 February 2013, Comodo Internet Security 2013 earned the PC Magazine Editor's Choice award. Neil J. Reubenking, reviewing the suite once again, gave it a score 4.5 of 5 stars.[13]

In response to Symantec's comment over the effectiveness of free Antivirus software, on September 18, 2010, the CEO of Comodo Group Melih Abdulhayoğlu challenged Symantec to see which products can defend the consumer better against malware.[14] Symantec responded saying that if Comodo is interested they should have their product included in tests by independent reviewers.[15] On 29 September 2010, Neil J. Rubenking, the lead analyst for security of PC Magazine, published an article on Comodo Antivirus 5.0 that[16][17] concluded that Comodo Antivirus 5.0 blocked a higher percentage of malware than Norton AntiVirus, but was less effective than the Norton solution when it came to malware removal. Rubenking's review also noted that the Comodo malware blocking gave a number of false positives which he felt tarnished Comodo's results.

In a 9 January 2013 review, Techworld awarded Comodo Internet Security Pro 2013 4 of 5 stars and concluded "Cloud-based scanning and behaviour analysis joins a suite of top-notch security tools, designed to keep your PC secure. Recommended."[18] Also on the same date, Mike Williams of reviewed Comodo Internet Security Pro 2013 and concluded "The program remains too complex for total PC beginners, we suspect. The average user will appreciate its largely automatic operation, though, while experts enjoy the powerful tools and extreme configurability."[19]

On 7 February 2013, Comodo Internet Security Complete v6 earned the PC Magazine Editor's Choice award. Reviewing the software again, Neil J. Reubenking gave it a score 4.5 of 5 stars, commended its support service, VPN solution, DNS service and value for price but criticized its behavior blocker and its poor anti-phishing capabilities. Reubenking concluded "The biggest win for Comodo Internet Security Complete 2013 isn't in features, but in support. The GeekBuddy service fixes any problem, security or otherwise, using remote assistance. A Virus-Free Guarantee reimburses you for damage if malware gets past Comodo; you can also get reimbursed for expenses related to identity theft. Add a GeekBuddy-powered tuneup tool and an unusually powerful backup utility and you've got a winner."[13]

In October 2013, reviewed the Comodo Internet Security 2014 Complete edition and gave it a score of 9.18 out of 10. Their review notes that the firewall component is their Gold Award winner for best firewall protection. However, they also comment on the lack of brand name recognition for Comodo's product.[20]

Comodo System Utilities[edit]

In August 2012, Jeffery L. Wilson of gave Comodo System Utilities an Excellent rating, 4 of 5 stars. He states as his "Bottom Line" conclusion "Comodo System Utilities is a free and effective system-enhancing utility that is as potent, if not more so in certain cases, as paid apps".[21]

Comodo Dragon Web Browser[edit]

On June 17, 2010 a cNET Editor's review gave the Comodo Dragon a 5 of 5 star score and a rating of Spectacular. they concluded "Dragon is not only fast, but like Google Chrome, it is not strewn with numerous icons, leaving more room for Web viewing. For those who are extra cautious about their online security, or for those who are worried about Google's data-mining, this fast browser is a great choice. [22]

Industry affiliations[edit]

Comodo is a member of the following industry organizations:

2011 breach incident[edit]

On March 15, 2011, Comodo reported that a user account with an affiliate registration authority had been compromised which was used to create a new user account that issued nine certificate signing requests.[28] Nine certificates for seven domains were issued.[28] Comodo responded by revoking the nine certificates.[28] Microsoft also issued a security advisory and update to address the issue.[29][30]

The attack was traced to IP address, which originates in Tehran, Iran.[28] Though Comodo initially reported the breach was the result of a "state-driven attack", it subsequently stated that the origin of the attack may be the "result of an attacker attempting to lay a false trail."[28][31] The issue, however, led to criticism of how certificates are issued and revoked.[32][33][34][35]

On March 26, 2011, a person under the username "ComodoHacker" made several posts to claiming to be an Iranian responsible for the attacks.[36][37]


  1. ^ "Fact Sheet of Comodo Company - Creating Trust and Assurance - Comodo". Retrieved 2013-07-06. 
  2. ^ "Usage of SSL certificate authorities for websites". Retrieved October 19, 2013. 
  3. ^ Richmond, Riva (6 April 2011). "An Attack Sheds Light on Internet Security Holes". The New York Times. Retrieved 17 March 2013. 
  4. ^ "Comodo Group Inc - Clifton, NJ 07013 - (201) 963-0004 - Express Update Listing". Retrieved 2013-06-11. 
  5. ^ "Usage Statistics and Market Share of SSL Certificate Authorities for Websites, June 2013". Retrieved 2013-06-11. 
  6. ^ "Best Free Windows 7 / Vista 64-bit Software". Gizmo's Freeware. 2 December 2010. Retrieved 25 December 2010. 
  7. ^ Products and Solutions
  8. ^ "Proactive Security Challenge: Results and comments". Difinex Ltd. Retrieved 25 December 2010. 
  9. ^ "Prevent Buffer Overflow Attack with Comodo Memory Firewall". TechMixer. 26 September 2008. Retrieved 25 December 2010. 
  10. ^ Gralla, Preston (2 December 2008). "Comodo Registry Cleaner (PCWorld)". PC World Australia. IDG Communications. Retrieved 25 December 2010. 
  11. ^
  12. ^ Rubenking,, Neil J. (3 November 2008). "Comodo Internet Security 3.5". PC Magazine (Ziff Davis). Retrieved 7 March 2012. 
  13. ^ a b Rubenking, Neil J. (7 February 2013). "Comodo Internet Security Complete 2013". PC Magazine. Ziff Davis. Retrieved 25 April 2013. 
  14. ^ Abdulhayoğlu, Melih (18 September 2010). "Challenge to Symantec from Comodo CEO!". Comodo Group. Retrieved 22 September 2010. 
  15. ^ Rubenking, Neil J. (22 September 2010). "Comodo Challenges Symantec to Antivirus Showdown". PC Magazine (Ziff Davis, Inc.). Retrieved 22 September 2010. 
  16. ^ Rubenking, Neil J. (29 September 2010). "Comodo Antivirus 5.0". PC Magazine (Ziff Davis, Inc.). Retrieved 29 September 2010. 
  17. ^ "Comodo Antivirus 5.0 malware blocking chart". PC Magazine (Ziff Davis, Inc.). 29 September 2010. Retrieved 29 September 2010. 
  18. ^ "Comodo Internet Security Pro 2013 (v6.1)". TechWorld. IDG. 9 January 2013. Retrieved 25 April 2013. 
  19. ^ Williams, Mike (9 January 2013). "Comodo Internet Security Pro 2013 [Review]". BetaNews. Retrieved 25 April 2013. 
  20. ^
  21. ^ "Comodo System Utilities Review". 
  22. ^ From Comodo:. "Comodo Dragon - CNET". Retrieved 2013-06-11. 
  23. ^
  24. ^
  25. ^
  26. ^ "CA/Browser Forum". Retrieved 2013-04-23. 
  27. ^ Wilson, Wilson. "CA/Browser Forum History". DigiCert. Retrieved 2013-04-23. 
  28. ^ a b c d e "Report of incident on 15-MAR-2011". Comodo group. Retrieved 2011-03-24. 
  29. ^ "Microsoft Security Advisory (2524375)" (Microsoft). March 23, 2011. Retrieved 2011-03-24. 
  30. ^ "Microsoft Security Advisory: Fraudulent Digital Certificates could allow spoofing". Microsoft. March 23, 2011. Retrieved 2011-03-24. 
  31. ^ Hallam-Baker, Phillip (March 23, 2011). "The Recent RA Compromise". Comodo Blog. Retrieved 2011-03-24. 
  32. ^ Eckersley, Peter (March 23, 2011). "Iranian hackers obtain fraudulent HTTPS certificates: How close to a Web security meltdown did we get?". EFF. Retrieved 2011-03-24. 
  33. ^ "Iran accused in 'dire' net security attack" (BBC). BBC News. March 24, 2011. Retrieved 2011-03-24. 
  34. ^ "Detecting Certificate Authority compromises and web browser collusion". TOR. March 22, 2011. Retrieved 2011-03-24. 
  35. ^ Elinor Mills; Declan McCullagh (March 23, 2011). "Google, Yahoo, Skype targeted in attack linked to Iran". CNET. Retrieved 2011-03-24. 
  36. ^ Bright, Peter (March 28, 2011). "Independent Iranian Hacker Claims Responsibility for Comodo Hack" (WIRED). Wired. Retrieved 2011-03-29. 
  37. ^ "ComodoHacker's Pastebin". 

External links[edit]