What we do

An online exposure assessment seeks to answer two big questions:

  1. How much information is there on your organisation in the public domain?
  2. How could attackers use that information to access your sensitive information?

We use a wide range of methods and sources to piece together your online exposure, from search engine results to social media used by employees. This generally enables us to gather:

  • Your organisation’s email addresses (for potential phishing attacks)
  • Corporate profile
  • Details of physical corporate locations (e.g. floor plans)
  • Technical information on your organisation’s IT infrastructure

You’ll receive comprehensive evidence on the information we collect, categorised into corporate, technical and employee information. We will also outline attack scenarios where this information could be exploited (e.g. spear phishing campaign or physical security attack on one of your offices).

Related

More articles

The latest from the security bureau

We are now Informer

It’s been a busy start to 2020. Behind the scenes, we’ve been enhancing our SaaS platform, rebuilding our website and rebranding to Informer. Since 2014, The Security Bureau has helped our customers identify vulnerabilities in their systems and applications with our penetration testing services. As the security landscape has changed, we’re now taking a SaaS […]

Why financial services need penetration testing in 2020

It’s that time of year again, where we try to shed the festive pounds and look to the year ahead. 2020 promises to be an interesting time for cybersecurity in financial services. Not least because of Brexit and the US presidential election. Here’s our essential cybersecurity in 2020 lowdown.