Electronic Voting; an Old but Looming Threat

April 26, 2016 By Risk Based Security

To date, Risk Based Security has cataloged over 260 vulnerabilities in electronic voting machines.

Filed Under: Research, Vulnerabilities, News, evoting

PC Matic… Is It As Amazing As Seen on TV?

March 02, 2016 By Risk Based Security

If you have ever been up late at night, you might have seen an infomercial about a product called PC Matic and been intrigued by the exceptional claims being made about the capabilities of their security solutions.

Filed Under: Research, News

Hardcoded Root Credentials In Multiple DVRs

February 17, 2016 By Risk Based Security

Zhuhai RaySharp Technology is a Chinese manufacturer of CCTV systems including stand-alone DVRs. While based in China, the company’s products are available worldwide. Supposedly, “more than 60,000 DVR units are exported every month & delivered to all over the world”. Furthermore, the firmware used in the company’s own DVR product line is also sold to a large number of DVR OEM vendors located[...]

Filed Under: Research, Vulnerabilities, News

TRENDnet Devices Bundle Infamous scfgmgr Service

January 11, 2016 By Risk Based Security

Earlier this month, we encountered an older TRENDnet N300 Wireless Hot Spot Access Point (TEW-636APB) and decided to extract the firmware to take a closer look at it. For those, who do not recall, TRENDnet is the vendor that was slapped by the FTC in 2014.

Filed Under: Research, Vulnerabilities, News

Risk Based Security Finds Vulnerabilities In Moxa SoftCMS

December 30, 2015 By Risk Based Security
Risk Based Security is well-known for aggregating vulnerability data and our VulnDB solution that provides vendor and software ratings as well as alerts when new vulnerabilities are released. However, the RBS Research Team also performs in-depth security assessments of software and devices to uncover new vulnerabilities and evaluate secure coding efforts. Assessments may either be requested[...]

Filed Under: Research, Vulnerabilities, News

Data Breach QuickView Released - First Nine Months Of 2014

November 19, 2014 By Risk Based Security

We have been so busy here at Risk Based Security recently that we neglected to release our latest Data Breach QuickView report to the public last month! The report already shows that 2014 is the highest year ever for exposed records. The 1,922 incidents reported during the first nine months of 2014 exposed over 904 million records. While 60.2% of breaches exposed only between 1 and 1,000 records,[...]

Filed Under: Research, RBS, Data Breaches, News

Carsten Eiram Acknowledged By ICS-CERT

June 04, 2014 By Risk Based Security

Industrial Control Systems (ICS/SCADA) have been increasingly in the news for all the wrong reasons, ranging from reports that show they are generally insecure to details about a public utility in the U.S. being compromised. These devices are now perceived to be considerably more vulnerable to a computer-based attack than ever before. While many would argue that ICS/SCADA devices have always been[...]

Filed Under: Research, Vulnerabilities, News

Nullcrew Compromises 9 Sites Including Spokeo and University of Virginia

April 20, 2014 By Risk Based Security

On April 20th, the hacker group NullCrew announced the release of an electronic text-based magazine (e-zine) called “FTS Zine 5” which is a compilation of database information taken from nine different organizations, several that were already targeted in August 2013.

Filed Under: Research, Data Breaches, News

SQL Injection Leads To BigMoneyJobs.com Leak

April 02, 2014 By Risk Based Security

Earlier today, a hacker identified as ProbablyOnion (who recently breached Boxee.tv) has posted data from a large job seeker website resulting in over 36,000 accounts being published online.

Filed Under: Research, Data Breaches, News

2013 Exposed Records Sets the Stage for Massive Identity Theft

February 18, 2014 By Risk Based Security

2013 Data breaches exposed over 822 million records nearly doubling the previous record high, according to Risk Based Security

We are pleased to release our Data Breach Quick view report that shows 2013 broke the previous all-time record for the number of exposed records caused by reported data breach incidents. The 2,164 incidents reported during 2013 exposed over 822 million records, nearly[...]

Filed Under: Research, Data Breaches, News

Subscribe to Email Updates