Xcitium (formerly Comodo Security Solutions Inc.) is a cybersecurity company based in Bloomfield, New Jersey, United States.

[citation needed] The firm has partnered with Comodo in the past, and seeks to provide a range of cybersecurity products and consulting services.

Comodo is a member of the following industry organizations: In response to Symantec's comment asserting paid antivirus is superior to free antivirus, the CEO of Comodo Group, Melih Abdulhayoğlu had challenged Symantec on 18 September 2010 to see whether paid or free products can better defend the consumer against malware.

[31] Moxie Marlinspike analyzed the IP address on his website the next day and found it to have English localization and Windows operating system.

The new controls implemented by Comodo following the incident on 15 March 2011, removed any risk of the fraudulent issue of certificates.

It was also implied that the attacker followed an online video tutorial and searched for basic opsec[32] Such attacks are not unique to Comodo – the specifics will vary from CA to CA, RA to RA, but there are so many of these entities, all of them trusted by default, that further holes are deemed to be inevitable.

[46] In February 2015, Comodo was associated with a man-in-the-middle enabling tool known as PrivDog, which claims to protect users against malicious advertising.

"[48] In 2009 Microsoft MVP Michael Burgess accused Comodo of issuing digital certificates to known malware distributors.

[50] In January 2016, Tavis Ormandy reported that Comodo's Chromodo browser exhibited a number of vulnerabilities, including disabling of the same-origin policy.

As soon as Comodo became aware of the issue in early February 2016, the company released a statement and a fix: "As an industry, software in general is always being updated, patched, fixed, addressed, improved – it goes hand in hand with any development cycle...What is critical in software development is how companies address an issue if a certain vulnerability is found – ensuring it never puts the customer at risk."

Ormandy noted that Comodo received a "Excellence in Information Security Testing" award from Verizon despite the vulnerability in its browser, despite having its VNC delivered with a default of weak authentication, despite not enabling address space layout randomization (ASLR), and despite using access control lists (ACLs) throughout its product.

On 24 June 2016, Comodo publicly posted in its forum that it had filed for "express abandonment" of their trademark applications.

[60] Bryant reached out in June 2016, and on 25 July 2016, Comodo's Chief Technical Officer Robin Alden confirmed a fix was put in place, within the responsible disclosure date per industry standards.