Exclusive interview with nullcrew about Klas Telecom breach


Recently it’s come to light that the well-known hacker collective NullCrew has taken sights to Klas Telecom breaching their legacy email help system which has resulted in Klas coming out a day later announcing the breach. We have had a chance to briefly interview NullCrew about the breach to find out a little bit more […]

Flight Centre Travel Group Data Leaked After Attempted “Extortion”

A hacker who goes by the handle ‘MrNervous’ or ‘WhiteHatMrNervous’ has been up to some questionable activities earlier this year which has resulted in data being leaked and a business being given a very short time to pay a “bounty” to fix a vulnerability. WhiteHatMrNervous has posted that the Flight Centre Travel Group had been […]

SQL Injection Leads To BigMoneyJobs.com Leak

Earlier today, a hacker identified as ProbablyOnion (who recently breached Boxee.tv) has posted data from a large job seeker website resulting in over 36,000 accounts being published online. The website BigMoneyJobs.com is a large hub for job seekers and employers looking to hire them. The breach was announced over Twitter and posted to the hacker’s […]

Threat Of The Month: Linksys Router Zero-day

Carsten Eiram provided SCMagazine with the Threat of the month for April.  He discusses a vulnerability in multiple Linksys routers that is currently being exploited by a worm known as “TheMoon.” You can read the full article here: http://www.scmagazine.com/threat-of-the-month-linksys-router-zero-day/article/338007/

Boxee.tv Database Leaked Online


A person known as ‘ProbablyOnion’ has taken credit for the upload of a complete customer database of the well-known web TV service Boxee.tv some time around the 10th of March. In some regards, it really couldn’t be a worse time for them as they have recently announced they are moving to Samsung after six years of […]

Risk Based Security To Exhibit At InfoSec World 2014

Risk Based Security will be exhibiting at InfoSec World 2014 in Orlando, Florida! When:  Monday, April 7, 2:30 PM – 7:15 PM Tuesday, April 8, 12:15 PM – 6:15 PM Come see Risk Based Security at Booth #315. Risk Based Security is the industry leading security and threat intelligence company.  We will be sharing with […]

Inga Goddijn To Present At AGRiP

We are pleased to announce that Inga Goddijn, our Executive Vice President, Managing Director of Insurance Services, is presenting this week at the AGRiP 2014 Governance and Leadership Conference in San Francisco. From the AGRiP conference material: We chose “bridging” as the theme for more than the obvious reasons. The bridges are what make San Francisco […]

2013 Exposed Records Sets the Stage for Massive Identity Theft

2013 Data breaches exposed over 822 million records nearly doubling the previous record high, according to Risk Based Security We are pleased to release our Data Breach Quick view report that shows 2013 broke the previous all-time record for the number of exposed records caused by reported data breach incidents.  The 2,164 incidents reported during […]

sIFR Vulnerability Still Impacts Major Organizations

It was brought to our attention today a new blog post about sIFR and the many sites affected by the XSS on Softpedia. However, there is actually an interesting twist to this post. The Iraqi researcher is hardly the first to discover this issue – in fact he’s not even the 2nd. It’s an old, known […]

Risk Based Security To Present At RSA

Risk Based Security will be attending and presenting at the 2014 RSA Conference in San Francisco, California!  If you will be attending RSA or in the area, let us know. We would love to meet with you or come hear us speak! Follow the Money: Security Researchers, Disclosure, Confidence and Profit Thursday, February 27, 2014 […]