NetRise
Company Details
Linkedin ID:
netriseinc
Website:
Employees number:
39
Number of followers:
7,022
NAICS:
541514
Industry Type:
Homepage:
netrise.io
IP Addresses:
0
Company ID:
NET_3354786
Scan Status:
In-progress
NetRise Company CyberSecurity Posture
netrise.io
The NetRise Platform is a next-generation product security solution for XIoT devices. Through ML-driven binary analysis, our platform generates industry-best Software Bills of Material (SBOMs), identifies and prioritizes vulnerabilities, and uncovers non-CVE risk that would otherwise go undetected. NetRise is here to help you ship more secure products and simplify your product security strategy.
NetRise A.I CyberSecurity Scoring
NetRise Risk Score (AI oriented)Between 700 and 749
NetRise
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
NetRise Global Score (TPRM)XXXX
NetRise
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
NetRise Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
AVTECH and Huawei
Vulnerability
Rankiteo Explanation
Attack threatening the economy of geographical region
Description: The Murdoc Botnet, a new variant of the Mirai malware, has been actively exploiting vulnerabilities in AVTECH IP cameras and Huawei HG532 routers. Infecting over 1300 systems, with a notable presence in Malaysia, Thailand, Mexico, and Indonesia, the botnet uses older exploits like CVE-2024-7029 and CVE-2017-17215. The campaign is significant, with 100 servers found distributing malware and compromising IP communication. It employs command-line injections to load malicious ShellScripts on IoT devices, enlarging its network through C2 servers.
NetRise Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for NetRise
Incidents vs Computer and Network Security Industry Average (This Year)
No incidents recorded for NetRise in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for NetRise in 2025.
Incident Types NetRise vs Computer and Network Security Industry Avg (This Year)
No incidents recorded for NetRise in 2025.
Incident History — NetRise (X = Date, Y = Severity)
NetRise cyber incidents detection timeline including parent company and subsidiaries
NetRise Company Subsidiaries
The NetRise Platform is a next-generation product security solution for XIoT devices. Through ML-driven binary analysis, our platform generates industry-best Software Bills of Material (SBOMs), identifies and prioritizes vulnerabilities, and uncovers non-CVE risk that would otherwise go undetected. NetRise is here to help you ship more secure products and simplify your product security strategy.
Loading...
NetRise Similar Companies
CrowdStrike
CrowdStrike (Nasdaq: CRWD), a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity and data. Powered by the CrowdStrike Security Cloud and world-clas
NETWORK-SECURITY-SOLUTIONS
## Our core business We manage linux / unix server infrastructures and build the efficient and secure networking environments using hardware cutting edge technologies suited to the needs of the project and the client. We believe in quality, opposed to quantity. Our company consists of highly
Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world's greatest s
.png)
NetRise CyberSecurity News
November 12, 2025 08:00 AM
Manifest and NetRise Partner to Deliver End-to-End Software Supply Chain Visibility From Source Code to Firmware
PRNewswire/ -- Manifest, the leading platform for software and AI supply chain security, today announced a strategic partnership with...
November 12, 2025 08:00 AM
TP-Link Routers Could Soon Be Banned. Here's What Cybersecurity Experts Say About the Risk
The company has been under investigation by the US government over the past year for alleged ties to Chinese cyberattacks.
October 22, 2025 07:00 AM
Veeam to acquire Securiti AI for $1.7 billion.
Seattle-headquartered data resilience company Veeam has signed a definitive agreement to acquire San Jose, California-based data security...
October 21, 2025 07:00 AM
NetRise taps SBOM pioneer Allan Friedman as strategic advisor to advance software transparency and cyber resilience
NetRise has appointed Allan Friedman, former senior advisor and strategist at the U.S. Cybersecurity and Infrastructure Security Agency...
October 21, 2025 07:00 AM
SBOM Pioneer Allan Friedman Joins NetRise to Advance Supply Chain Visibility
Dr. Allan Friedman, often described as the Father of SBOMs while working for CISA, is joining NetRise as a strategic advisor.
September 29, 2025 07:00 AM
TP-Link and other products vulnerable to Pixie Dust threat: research
TP-Link (a provider for networking equipment and smart home devices) accounted for almost half of the affected devices.
September 21, 2025 07:00 AM
Week in review: Chrome 0-day fixed, npm supply chain attack, LinkedIn data used for AI
Here's an overview of some of last week's most interesting news, articles, interviews and videos: Most enterprise AI use is invisible to...
September 19, 2025 07:00 AM
Pixie Dust vulnerability persists a decade on, exposing systemic IoT and networking risks
NetRise has found that more than 80 percent of consumer and SMB networking devices remain vulnerable to the 'Pixie Dust' exploit more than a...
September 18, 2025 07:00 AM
Study: Vulnerabilty to old Pixie Dust Wi-Fi attack persists
Only four of two dozen networking devices currently in use have been remediated against the Pixie Dust attack involving the exploitation of...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
NetRise CyberSecurity History Information
Official Website of NetRise
The official website of NetRise is https://www.netrise.io/.
NetRise’s AI-Generated Cybersecurity Score
According to Rankiteo, NetRise’s AI-generated cybersecurity score is 749, reflecting their Moderate security posture.
How many security badges does NetRise’ have ?
According to Rankiteo, NetRise currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does NetRise have SOC 2 Type 1 certification ?
According to Rankiteo, NetRise is not certified under SOC 2 Type 1.
Does NetRise have SOC 2 Type 2 certification ?
According to Rankiteo, NetRise does not hold a SOC 2 Type 2 certification.
Does NetRise comply with GDPR ?
According to Rankiteo, NetRise is not listed as GDPR compliant.
Does NetRise have PCI DSS certification ?
According to Rankiteo, NetRise does not currently maintain PCI DSS compliance.
Does NetRise comply with HIPAA ?
According to Rankiteo, NetRise is not compliant with HIPAA regulations.
Does NetRise have ISO 27001 certification ?
According to Rankiteo,NetRise is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of NetRise
NetRise operates primarily in the Computer and Network Security industry.
Number of Employees at NetRise
NetRise employs approximately 39 people worldwide.
Subsidiaries Owned by NetRise
NetRise presently has no subsidiaries across any sectors.
NetRise’s LinkedIn Followers
NetRise’s official LinkedIn profile has approximately 7,022 followers.
NAICS Classification of NetRise
NetRise is classified under the NAICS code 541514, which corresponds to Others.
NetRise’s Presence on Crunchbase
Yes, NetRise has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/netrise-inc.
NetRise’s Presence on LinkedIn
Yes, NetRise maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/netriseinc.
Cybersecurity Incidents Involving NetRise
As of December 18, 2025, Rankiteo reports that NetRise has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
NetRise has an estimated 3,155 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at NetRise ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
Incident Details
Can you provide details on each incident ?
Title: Murdoc Botnet Exploits AVTECH IP Cameras and Huawei Routers
Description: The Murdoc Botnet, a new variant of the Mirai malware, has been actively exploiting vulnerabilities in AVTECH IP cameras and Huawei HG532 routers. Infecting over 1300 systems, with a notable presence in Malaysia, Thailand, Mexico, and Indonesia, the botnet uses older exploits like CVE-2024-7029 and CVE-2017-17215. The campaign is significant, with 100 servers found distributing malware and compromising IP communication. It employs command-line injections to load malicious ShellScripts on IoT devices, enlarging its network through C2 servers.
Type: Malware
Attack Vector: Exploiting vulnerabilities in IoT devices
Vulnerability Exploited: CVE-2024-7029CVE-2017-17215
Threat Actor: Murdoc Botnet
Motivation: Distribute malware and compromise IP communication
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Vulnerabilities in AVTECH IP cameras and Huawei HG532 routers.
Impact of the Incidents
What was the impact of each incident ?
Incident : Malware NET000012525
Systems Affected: Over 1300 systems
Which entities were affected by each incident ?
Incident : Malware NET000012525
Entity Type: IoT Devices
Industry: Technology
Location: MalaysiaThailandMexicoIndonesia
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Malware NET000012525
Entry Point: Vulnerabilities in AVTECH IP cameras and Huawei HG532 routers
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Malware NET000012525
Root Causes: Exploitation of vulnerabilities in IoT devices
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Murdoc Botnet.
Impact of the Incidents
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Vulnerabilities in AVTECH IP cameras and Huawei HG532 routers.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe interaction between sudo permissions and application file permissions. A user‑accessible maintenance script may be executed as root via sudo and includes an application file that is writable by a lower‑privileged user. A local attacker with access to the application account can modify this file to introduce malicious code, which is then executed with elevated privileges when the script is run. Successful exploitation results in arbitrary code execution as the root user.
Risk Information
cvss4
Base: 8.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Description
Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Description
SIPGO is a library for writing SIP services in the GO language. Starting in version 0.3.0 and prior to version 1.0.0-alpha-1, a nil pointer dereference vulnerability is in the SIPGO library's `NewResponseFromRequest` function that affects all normal SIP operations. The vulnerability allows remote attackers to crash any SIP application by sending a single malformed SIP request without a To header. The vulnerability occurs when SIP message parsing succeeds for a request missing the To header, but the response creation code assumes the To header exists without proper nil checks. This affects routine operations like call setup, authentication, and message handling - not just error cases. This vulnerability affects all SIP applications using the sipgo library, not just specific configurations or edge cases, as long as they make use of the `NewResponseFromRequest` function. Version 1.0.0-alpha-1 contains a patch for the issue.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
GLPI is a free asset and IT management software package. Starting in version 9.1.0 and prior to version 10.0.21, an unauthorized user with an API access can read all knowledge base entries. Users should upgrade to 10.0.21 to receive a patch.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=netriseinc' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
