Risk Based Security

Recent Posts

Electronic Voting; an Old but Looming Threat

April 26, 2016 By Risk Based Security

To date, Risk Based Security has cataloged over 260 vulnerabilities in electronic voting machines.

Filed Under: Research, Vulnerabilities, News, evoting

Anonymous Italy Targets Web Agency Engitel; Several Organizations Compromised

April 09, 2016 By Risk Based Security

We have previously talked about the systemic risk that exists with cloud providers and hosting solutions. While on the surface, it may appear to be a compromise of a single company, a hosting provider breach represents a much larger issue with possible far-reaching catastrophic impact.

Filed Under: Data Breaches, News

Cyber Justice Team Makes A Statement With Massive Data Leak

April 08, 2016 By Risk Based Security

On April 6th, a twitter account using the name Cyber Justice Team posted a tweet suggesting a major hack of a Syrian governmental server had taken place and 10GB of data had been leaked as a result.

Filed Under: Data Breaches, News

Two Year Anniversary for Heartbleed: Still Many Vulnerable Devices

April 08, 2016 By Risk Based Security

Yesterday was the two year anniversary for Heartbleed, the 'named' vulnerability that received a huge amount of attention. While not the first to be named, it started the now (in)famous trend of researchers naming their vulnerability discoveries to get attention, and it also lead to a positive change: Vendors and enterprises started focusing more on vulnerabilities in 3rd party libraries.

Filed Under: Vulnerabilities, News

Déjà vu Data Leaks

April 05, 2016 By Risk Based Security

On June 4th, 2016, there were new reports that the personal details of nearly 50 Million Turkish citizens had been compromised and posted online in a massive security breach. The news appears to be triggered from a Tweet that received quite a bit of attention:

Filed Under: Data Breaches, News

Data Breach Highlight: Leading Law Firms Take A Hit

April 01, 2016 By Risk Based Security


Filed Under: Data Breaches, News, Data Breach Highlight

Bad Luck Over The Upcoming Badlock Vulnerability?

March 22, 2016 By Risk Based Security

The Beginning (March 22) Badlock: The Day After (March 23) All Quiet on the Disclosure Front (April 5) The Day of Reckoning (April 12)

Filed Under: Vulnerabilities, News, Badlock

Installed Faster Than You Can Say Skimmer!

March 22, 2016 By Risk Based Security

As first reported in the Q3 2015 Data Breach QuickView Report, researchers at RBS have been tracking some interesting trends this year regarding skimming. While hacking has consistently taken the top spot as the leading cause of data breaches and fraud has usually occupied second place, skimming made an unexpected appearance in the number 2 position in the third quarter of 2015. Several[...]

Filed Under: News

HR Departments Part 2: Still Out Phishing?

March 17, 2016 By Risk Based Security

On March 7th, we reported on a warning issued by the IRS alerting HR and payroll processing departments to be on the lookout for phishing attempts targeting W-2 information. At the time our research identified twelve companies that had fallen for the scam. Now, just one week later, we can report on another twelve organizations that join the ranks of those impacted.

Filed Under: Data Breaches, News

2015, A Record Year For Vulnerabilities

March 15, 2016 By Risk Based Security

2015 sets all time high for the number of disclosed vulnerabilities, according to Risk Based Security

We are pleased to release our VulnDB QuickView report that shows 2015 broke the previous all-time record for the highest number of reported vulnerabilities. The 14,185 vulnerabilities cataloged during 2015 by Risk Based Security eclipsed the total covered by the National Vulnerability[...]

Filed Under: Vulnerabilities, News

Subscribe to Email Updates