Newsroom
Hi! Want to write about Cossack Labs? Our newsroom will help you with the task. Also, feel free to contact us on cryptography and data security related issues, we’ll be happy to share our story and discuss the latest technologies.
About us
Cossack Labs is a team of highly experienced cryptographers and software engineers. Our mission is to make strong security methodologies and approaches convenient within modern infrastructures and business. We provide large and small companies with data security tools and bespoke solutions helping to protect their sensitive data against data leakages, external attackers, insiders, mis-configurations and to be compliant with regulations. We're a British company, headquartered in London, with our R&D office in Kyiv, Ukraine.
Our products. Acra, Themis, and Hermes combine both high level of security and usability. They care of encryption, key management, access control, intrusion detection, accountable logging under the hood, enabling our customers to focus on doing their own business, building their products with confidence that data security has been properly taken care of.
Our history. Cossack Labs started in 2014 as data security R&D, published many research results as whitepapers, open-source tools, and contributions to community standards. We were united by the idea to bring cryptography and data security technologies into open-source security solutions. Today, our data security solutions work for large enterprises, startups, and tech-savvy SMEs from healthcare, embedded financing, traditional and unbundled banking, modern and traditional fintech, critical infrastructures, and other industries.
Who we are. We are risk-driven, not hype-driven, follow British business culture and traditions. We innovate in applied cryptography, and solve customers’ real-life problems, cutting through complexity.
Read more about company history
Cossack Labs is a team of highly experienced cryptographers and software engineers. Our mission is to make strong security methodologies and approaches convenient within modern infrastructures and business. We provide large and small companies with data security tools and bespoke solutions helping to protect their sensitive data against data leakages, external attackers, insiders, mis-configurations and to be compliant with regulations. We're a British company, headquartered in London, with our R&D office in Kyiv, Ukraine.
Our products. Acra, Themis, and Hermes combine both high level of security and usability. They care of encryption, key management, access control, intrusion detection, accountable logging under the hood, enabling our customers to focus on doing their own business, building their products with confidence that data security has been properly taken care of.
Our history. Cossack Labs started in 2014 as data security R&D, published many research results as whitepapers, open-source tools, and contributions to community standards. We were united by the idea to bring cryptography and data security technologies into open-source security solutions. Today, our data security solutions work for large enterprises, startups, and tech-savvy SMEs from healthcare, embedded financing, traditional and unbundled banking, modern and traditional fintech, critical infrastructures, and other industries.
Who we are. We are risk-driven, not hype-driven, follow British business culture and traditions. We innovate in applied cryptography, and solve customers’ real-life problems, cutting through complexity.

Julian Swallow
Julian has founded, built, managed, and led multiple software companies over four decades. Having previously raised tens of millions of dollars of equity finance, he managed three successful disposals, two to publicly-quoted companies, yielding above-average returns to shareholders. His operational focus is on finance, financial strategy, and legal.

Eugene Pilyankevich
Eugene has managed software development with high security and performance demands for over 15 years. His extensive experience and research enable him to focus on the challenges that large and small companies experience when seeking to make data security central to their operations, especially in the face of external pressures and uncertainties.

Chris Hennings
Chris originally trained as an economist but has coded, designed, and invested in a diverse range of software systems and companies for over 40 years. Elegant, appropriate, and useful code continues to delight. Chris sees effort spent to make world-class data security available to all as central to advancing the common good both now and into the future.

Anastasiia Voitova
Anastasiia is a software engineer and manager with a wide technological background spanning mobile app development to security engineering. Her current focus is cryptography and applied security, helping companies to build secure yet usable systems. Anastasiia is a frequent contributor to international conferences and co-organiser of cyber-security events.
Products and product sheets
Acra, a database security suite
Acra provides 9 security controls in one suite, pluggable as proxy, API or SDK in your architecture. Features include transparent field-level encryption, searchable encryption, data masking and firewalling.
Themis, a cross-platform crypto library
Themis provides cryptosystems for securing data at rest and data in transit. Solves 90% use cases for protecting data in mobile, web and server-side apps.
Hermes, end-to-end secure data storage
End-to-end secure data storage, processing, and sharing framework with zero trust to storage/exchange infrastructure.
Facts & dates
What’s new

Digital wallets security: Overcoming paradoxes and contradictions
Building secure digital wallets is a challenge when it comes to balancing between convenience and security while fighting the threats. How to build a reliable user-friendly product that ...

How to prevent digital wallet fraud
Understanding digital wallet fraud is critical for designing and integrating an effective anti-fraud solution. Read about security events, risk models, remote device attestation, user au...

Exploring security vulnerabilities in NFC digital wallets
NFC-based devices, such as mobile digital wallets, contactless smart cards, and security keys (hardware authentication devices), are exposing users to NFC vulnerabilities in encryption, ...
Past events

Panel Discussion: Secure Our Future
Anastasiia Voitova @ Devoxx Ukraine 2022

Demystifying myths about women in IT
Julia Mezher @ What's wrong with IT, charitable live stream

Charitable live stream: Cybersecurity in wartime
Anastasiia Voitova @ fwdays 2022
The war in Ukraine: Cyberfront
Anastasiia Voitova @ May Contain Hackers 2022

The secret life of Android apps
Artur Hil @ OWASP Zhytomyr 2021 Meetup

Keynote: Data is a new security boundary
Anastasiia Voitova @ OWASP Global AppSec US 2021 Conference
The art of secure architecture
Julia Mezher @ Craft
Designing secure architectures the modern way, regardless of stack
Eugene Pilyankevich @ QCon London 2020
Maintaining cryptographic library for 12 languages
Anastasiia Voitova @ BlackAlps

Search over encrypted records: from academic dreams to production-ready tool
Artem Storozhuk @ NoNameCon
Media coverage
In the media
Cybersecurity in wartime: how Ukraine's infosec community is coping
Volunteers patrol Ukraine's cyber front during war
Encryption in the Ukrainian War
Anastasiia Voitova: WTF is Cloud Native Data Security?
Eugene Pilyankevich's interview: Cutting-edge cryptography & data protection solutions at your fingertips
Eugene Pilyankevich: Empowering developers to easily build secure applications that treat sensitive data responsibly
Acra: Open-source database protection with field-level encryption and intrusion detection
WWDC21’s principal security and privacy announcements
Bear: Einblick in die außergewöhnliche Notizen-App mit Apple Design Award!
Application level encryption for software architects
Security Logs: cryptographically signed audit logging for data protection
Computers Are Hard: security and cryptography with Anastasiia Voitova
iOS 14’s Best Privacy Feature? Catching Data-Grabbing Apps
WWDC20’s major security and privacy announcements
Secure development is dead, long live secure development
Video
Keynote: Data is a new security boundary — Anastasiia Voitova
Never store secrets in the resources of your app! (feat. Anastasiia Voitova)
Cryptographic protection of ML models — Anastasiia Voitova
Why can't developers make it secure? — Julia Mezher
End-to-end encrypted doesn't mean secure — Anastasiia Voitova
Maintaining cryptographic library for 12 languages — Anastasiia Voitova
Use cryptography, don’t learn it — Anastasiia Voitova
Building reliable mobile app security
Secure Authentication. Are you sure you do it right? — Julia Mezher
Designing secure architectures the modern way, regardless of stack — Eugene Pilyankevich
Podcasts
Security in Java, what do we need to know and how to keep our applications secure
Anastasiia Voitova—Encryption is easy, key management is hard
Mobile App security: a money game with Anastasiia Voitova
Security for developers
Anastasiia Voitova: security software engineer journey
Build secure mobile applications with Anastasiia Voitova
Anastasiia Voitova—Use cryptography; don’t learn it
Discussing Apple’s new privacy-related features with Anastasiia Voitova
Developer interview: Anastasiia Voitova on WWDC expectations from a security and privacy perspective
Talking with the server it’s supposed to, with special guests Anastasiia Voitova and Marcin Krzyzanowski
Assets
Please don't modify these logos or use them in a way that confuses Cossack Labs with another brand.
Browse press kit on Google Drive.
Contact us
We’ll be happy to share our story and discuss all the fancy words like cryptography and security with you.
HQ, United Kingdom
190 Clarence Gate Gardens
Glentworth Street
London NW1 6AD
United Kingdom
Any thoughts?
Media related questions here: