RIFFSEC is like Google Alerts but for cybersecurity

Cyber Threat Intelligence. Without the noise.

Get early warning on attacks, phishing, or leaked data — with the only system built for CEE. Monitor your exposure, detect fraud, and analyze threat actors.

Contact us

Trusted Us

CERT
Raben
DC9
Fundacja Batorego
BFG
CERT
Raben
DC9
Fundacja Batorego
BFG

Threat Monitor

We monitor mentions of your brand, domains, and systems across dark/deep web and closed communication channels.

Criminal forums and darkweb marketplaces

Criminal forums and darkweb marketplaces

Telegram groups and local-language chats

Telegram groups and local-language chats

Regional context and CEE-specific threat intel

Regional context and CEE-specific threat intel

Contact us
Threat Monitor Threat Monitor Threat Monitor

Domain Monitor

We detect domains impersonating your brand or registered for phishing.

Typo-squatting and brand impersonation

Typo-squatting and brand impersonation

Mirror and subdomain tracking

Mirror and subdomain tracking

SSL certificate monitoring for suspicious records

SSL certificate monitoring for suspicious records

Contact us
Threat Monitor Domain Monitor Domain Monitor

Anti-Fraud

We identify financial data tied to your brand that could be exploited by cybercriminals.

BINs, credit cards, crypto wallets

BINs, credit cards, crypto wallets

Session cookies leaked from browsers

Session cookies leaked from browsers

Exposed authentication cookies

Exposed authentication cookies

Contact us
Threat Monitor Anti-Fraud Anti-Fraud

Anti-Phishing

We detect phishing infrastructure before links reach your users.

Detection up to 72h before attack launch

Detection up to 72h before attack launch

Automated takedown of malicious domains

Automated takedown of malicious domains

Infrastructure fingerprinting and analysis

Infrastructure fingerprinting and analysis

Contact us
Threat Monitor Anti-Phishing Anti-Phishing

Attack Surface

We show what’s truly exposed from your IT infrastructure.

IP/AS scans, open ports and services

IP/AS scans, open ports and services

Technology fingerprinting (e.g. Apache, Mikrotik, nginx)

Technology fingerprinting
(e.g. Apache, Mikrotik, nginx)

CVE-matching and exploit exposure

CVE-matching and exploit exposure

Contact us
Attack Surface Attack Surface Attack Surface

Threatpedia

Intelligence database of cybercriminal groups and threat trends.

APT profiles and ransomware gang intel

APT profiles and ransomware gang intel

TTPs, indicators of compromise (IOCs), malware

TTPs, indicators of compromise (IOCs), malware

Weekly digest: CTI Highlights

Weekly digest: CTI Highlights

Contact us
Threatpedia Threatpedia Threatpedia
Partners & Trust

Partners & Trust

Adam Haertle

Adam Haertle

Zaufana Trzecia Strona

Companies that have fallen victim to such attacks ask me what I recommend to avoid similar incidents in the future. Until now, I didn't have a simple answer to this question.
Natalia Łuczak

Natalia Łuczak

4Prime

RIFFSEC are true cybersecurity practitioners. They explain complex issues clearly and deliver valuable, relevant data instead of noise.
Robert Grabowski

Robert Grabowski

CERT Orange Poland

Data from the RIFFSEC is a valuable external source of power for our Cyber Shield and influences the effectiveness of its operation
Maciej Broniarz

Maciej Broniarz

DC9 Group

Every year at DC9 Group we handle incidents that might not have occurred if password compromise had been detected early. RIFFSEC solution supports cyber hygiene.
We should have nice header here

Come to the dark… web.
We have cookies.
Gigabytes of cookies!

Request your first Report