Security Research

What is security research?

Security research is targeted investigation into a specific security question. We regularly see organisations where cybercriminals have methods to carry out criminal activities via their platform. We find out how they do it, so you can solve the problem and limit the damage.

We monitor known criminal networks to map whether your organisation is mentioned there. If so, we dive into the shared information to find out exactly which method they apply to your organisation. We share the results with you, so you can take action to counter the abuse.

When is security research relevant?

• Complex business logic: abuse of payment flows, ordering processes, loyalty programmes, pricing engines.
• Platform abuse: how can malicious actors abuse your platform? Fake accounts, fraud, scraping?
• Responsible disclosure: you received a report and want to understand the impact.
• Incident analysis: after an incident, understanding exactly how it happened.

Our approach

Research is by definition custom work. The approach depends on the question:

1. Formulate research question - what do we want to know? Which scenarios are most relevant? Direct conversation with the researcher who will do the work.
2. Dark Web research - we search the dark web for information about your organisation or services.
3. Investigate findings - thoroughly examining found information, building a PoC.
4. Reporting - detailed report with PoC and recommendations.

What does security research cost?

Hourly rate €175 per hour. We align scope and budget upfront. We report on progress along the way.