In 2009, she founded the company Esage Labs, later known as ZOR Security (the Russian acronym stands for Цифровое Оружие и Защита, "Digital Weapons and Defense.")
Esage's company ZOR Security was placed on a list of US sanctioned entities after being accused of "helping Vladimir Putin bid to swing the [2016] election for Trump".
[13] Part of those vulnerabilities were responsively disclosed via the Zero Day Initiative (ZDI) security bounty program,[14] previously owned by U.S. tech giant HP, and credited under various pseudonyms.
[15] Esage has presented her research at multiple international security conferences: RECON, Positive Hack Days,[16] Zero Nights,[17] POC x Zer0con,[18] Chaos Communications Congress.
[20] As part of her competition entry at Pwn2Own Vancouver 2021 Esage targeted Parallels Desktop for Mac version 16.1.3 with a zero day exploit developed by herself, and was able to demonstrate a guest-to-host virtual machine escape with arbitrary code execution on MacOS, on a fully patched system.
[21] The entry was declared a partial win by the contest due to the fact that the targeted software vendor knew internally about the zero day bug that was leveraged in Esage's exploit.