ReliaQuest
Company Details
Linkedin ID:
reliaquest
Website:
Employees number:
1,126
Number of followers:
52,576
NAICS:
541514
Industry Type:
Homepage:
reliaquest.com
IP Addresses:
0
Company ID:
REL_1276009
Scan Status:
In-progress
ReliaQuest Company CyberSecurity Posture
reliaquest.com
ReliaQuest is the world's leading Agentic AI cybersecurity company. We exist to Make Security Possible. Our Agentic AI security operations platform, GreyMatter, allows security teams to detect threats at the source, contain, investigate and respond in less than 5 minutes – eliminating Tier 1 and Tier 2 security operations work. GreyMatter uses our Universal Translator, detection-at-source, and Agentic AI to seamlessly connect telemetry from across cloud, multi-cloud and on-premises technologies. ReliaQuest is the only cybersecurity technology company that delivers outcomes specific to each organization's unique architecture, technology and business needs. With over 1,000 customers and 1,200 teammates across six global operating centers, ReliaQuest Makes Security Possible for the most trusted enterprise brands in the world. Learn more at www.reliaquest.com.
ReliaQuest A.I CyberSecurity Scoring
ReliaQuest Risk Score (AI oriented)Between 750 and 799
ReliaQuest
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
ReliaQuest Global Score (TPRM)XXXX
ReliaQuest
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
ReliaQuest Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
BreachForums
Vulnerability
Rankiteo Explanation
Attack without any consequences
Description: BreachForums, a notorious cybercrime marketplace and successor to RaidForums, experienced a sudden outage on April 15, 2025, after law enforcement leveraged an undisclosed 0-day vulnerability in the MyBB forum software to infiltrate its infrastructure. Although administrators assert that no data was compromised or exfiltrated, the operation disrupted platform availability and triggered a comprehensive internal review. Users were unable to access forums or exchange illicit services throughout the shutdown period, resulting in significant community unrest and reputational damage. Despite the absence of a confirmed data breach, the incident exposed critical weaknesses in the unpatched MyBB codebase and underscored the persistent threat posed by advanced law enforcement tactics. Administrators have since completed a detailed audit, identified the PHP exploit responsible, and initiated a full back-end rewrite to mitigate any future exploits. This unplanned interruption not only affected transaction flows and forum governance but also prompted members to temporarily migrate to alternative platforms, fragmenting the user base and diluting centralized control. The downtime incurred indirect costs associated with incident response efforts and technical remediation, leaving administrators with the dual challenge of restoring service and rebuilding confidence.
ReliaQuest Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for ReliaQuest
Incidents vs Computer and Network Security Industry Average (This Year)
ReliaQuest has 47.06% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
ReliaQuest has 28.21% more incidents than the average of all companies with at least one recorded incident.
Incident Types ReliaQuest vs Computer and Network Security Industry Avg (This Year)
ReliaQuest reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 1 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — ReliaQuest (X = Date, Y = Severity)
ReliaQuest cyber incidents detection timeline including parent company and subsidiaries
ReliaQuest Company Subsidiaries
ReliaQuest is the world's leading Agentic AI cybersecurity company. We exist to Make Security Possible. Our Agentic AI security operations platform, GreyMatter, allows security teams to detect threats at the source, contain, investigate and respond in less than 5 minutes – eliminating Tier 1 and Tier 2 security operations work. GreyMatter uses our Universal Translator, detection-at-source, and Agentic AI to seamlessly connect telemetry from across cloud, multi-cloud and on-premises technologies. ReliaQuest is the only cybersecurity technology company that delivers outcomes specific to each organization's unique architecture, technology and business needs. With over 1,000 customers and 1,200 teammates across six global operating centers, ReliaQuest Makes Security Possible for the most trusted enterprise brands in the world. Learn more at www.reliaquest.com.
Loading...
ReliaQuest Similar Companies
Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. Our mission is to be the cybersecurity partner of choice, protecting our digital way of life. We help address the world's greatest s
CrowdStrike
CrowdStrike (Nasdaq: CRWD), a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk — endpoints and cloud workloads, identity and data. Powered by the CrowdStrike Security Cloud and world-clas
NETWORK-SECURITY-SOLUTIONS
## Our core business We manage linux / unix server infrastructures and build the efficient and secure networking environments using hardware cutting edge technologies suited to the needs of the project and the client. We believe in quality, opposed to quantity. Our company consists of highly
.png)
ReliaQuest CyberSecurity News
December 01, 2025 08:00 AM
Hackers ready threat campaign aimed at Zendesk environments
Researchers warn that hackers linked to recent social engineering attacks are targeting customer-service platforms.
November 27, 2025 03:24 PM
Scattered Lapsus$ Actors Register Over 40 Zendesk-Impersonating Domains
Lapsus$ Zendesk impersonation - ReliaQuest researchers have uncovered a new campaign believed to be linked to the threat group.
November 27, 2025 08:00 AM
Scattered Lapsus$ Hunters Eye Zendesk Users In New Access Campaign, ReliaQuest Warns
ReliaQuest has uncovered what appears to be a coordinated campaign by the threat group Scattered Lapsus$ Hunters (SLSH) to target...
November 27, 2025 08:00 AM
The Scattered Lapsus$ Hunters group is targeting Zendesk customers – here’s what you need to know
The Scattered Lapsus$ Hunters threat group appears to be targeting Zendesk users in a new phishing campaign, according to analysis from...
November 04, 2025 08:00 AM
Identity-based attacks need more attention in cloud security strategies
Companies should lock down user accounts and scan for compromised credentials, according to a new report.
October 23, 2025 07:00 AM
Ransomware groups surge as automation cuts attack time to 18 mins
Automation and AI slash ransomware attack times to 18 minutes, challenging defenders to match speed with automated defences, says ReliaQuest...
October 21, 2025 07:00 AM
AI-fueled automation helps ransomware-as-a-service groups stand out from the crowd
Ransomware gangs that offer their affiliates customization and automation are growing faster than those that don't, a new report finds.
October 15, 2025 08:01 PM
ReliaQuest — Latest News, Reports & Analysis
Explore the latest news, real-world incidents, expert analysis, and trends in ReliaQuest — only on The Hacker News, the leading cybersecurity and IT news...
October 15, 2025 07:00 AM
Chinese Hackers Leverage Geo-Mapping Tool to Maintain Year-Long Persistence
Chinese threat actors use geo-mapping tech and custom RATs to infiltrate critical infrastructure across Asia and North America.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
ReliaQuest CyberSecurity History Information
Official Website of ReliaQuest
The official website of ReliaQuest is https://www.ReliaQuest.com/.
ReliaQuest’s AI-Generated Cybersecurity Score
According to Rankiteo, ReliaQuest’s AI-generated cybersecurity score is 758, reflecting their Fair security posture.
How many security badges does ReliaQuest’ have ?
According to Rankiteo, ReliaQuest currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does ReliaQuest have SOC 2 Type 1 certification ?
According to Rankiteo, ReliaQuest is not certified under SOC 2 Type 1.
Does ReliaQuest have SOC 2 Type 2 certification ?
According to Rankiteo, ReliaQuest does not hold a SOC 2 Type 2 certification.
Does ReliaQuest comply with GDPR ?
According to Rankiteo, ReliaQuest is not listed as GDPR compliant.
Does ReliaQuest have PCI DSS certification ?
According to Rankiteo, ReliaQuest does not currently maintain PCI DSS compliance.
Does ReliaQuest comply with HIPAA ?
According to Rankiteo, ReliaQuest is not compliant with HIPAA regulations.
Does ReliaQuest have ISO 27001 certification ?
According to Rankiteo,ReliaQuest is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of ReliaQuest
ReliaQuest operates primarily in the Computer and Network Security industry.
Number of Employees at ReliaQuest
ReliaQuest employs approximately 1,126 people worldwide.
Subsidiaries Owned by ReliaQuest
ReliaQuest presently has no subsidiaries across any sectors.
ReliaQuest’s LinkedIn Followers
ReliaQuest’s official LinkedIn profile has approximately 52,576 followers.
NAICS Classification of ReliaQuest
ReliaQuest is classified under the NAICS code 541514, which corresponds to Others.
ReliaQuest’s Presence on Crunchbase
No, ReliaQuest does not have a profile on Crunchbase.
ReliaQuest’s Presence on LinkedIn
Yes, ReliaQuest maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/reliaquest.
Cybersecurity Incidents Involving ReliaQuest
As of December 25, 2025, Rankiteo reports that ReliaQuest has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
ReliaQuest has an estimated 3,183 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at ReliaQuest ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
How does ReliaQuest detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with comprehensive internal review, and remediation measures with detailed audit and back-end rewrite, and recovery measures with technical remediation and service restoration..
Incident Details
Can you provide details on each incident ?
Title: BreachForums Disruption
Description: BreachForums, a notorious cybercrime marketplace and successor to RaidForums, experienced a sudden outage on April 15, 2025, after law enforcement leveraged an undisclosed 0-day vulnerability in the MyBB forum software to infiltrate its infrastructure. Although administrators assert that no data was compromised or exfiltrated, the operation disrupted platform availability and triggered a comprehensive internal review. Users were unable to access forums or exchange illicit services throughout the shutdown period, resulting in significant community unrest and reputational damage. Despite the absence of a confirmed data breach, the incident exposed critical weaknesses in the unpatched MyBB codebase and underscored the persistent threat posed by advanced law enforcement tactics. Administrators have since completed a detailed audit, identified the PHP exploit responsible, and initiated a full back-end rewrite to mitigate any future exploits. This unplanned interruption not only affected transaction flows and forum governance but also prompted members to temporarily migrate to alternative platforms, fragmenting the user base and diluting centralized control. The downtime incurred indirect costs associated with incident response efforts and technical remediation, leaving administrators with the dual challenge of restoring service and rebuilding confidence.
Date Detected: 2025-04-15
Type: Infrastructure Disruption
Attack Vector: 0-day Vulnerability in MyBB Forum Software
Vulnerability Exploited: PHP Exploit in MyBB Codebase
Threat Actor: Law Enforcement
Motivation: Disruption of Cybercrime Activities
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through 0-day Vulnerability in MyBB Forum Software.
Impact of the Incidents
What was the impact of each incident ?
Incident : Infrastructure Disruption REL716042825
Data Compromised: None
Systems Affected: Entire Forum Infrastructure
Downtime: Significant
Operational Impact: Community Unrest and Reputational Damage
Brand Reputation Impact: Significant Damage
Which entities were affected by each incident ?
Incident : Infrastructure Disruption REL716042825
Entity Name: BreachForums
Entity Type: Cybercrime Marketplace
Industry: Illicit Services
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Infrastructure Disruption REL716042825
Containment Measures: Comprehensive Internal Review
Remediation Measures: Detailed Audit and Back-end Rewrite
Recovery Measures: Technical Remediation and Service Restoration
Data Breach Information
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Detailed Audit and Back-end Rewrite.
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by comprehensive internal review.
Ransomware Information
How does the company recover data encrypted by ransomware ?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through Technical Remediation and Service Restoration.
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Infrastructure Disruption REL716042825
Lessons Learned: Critical Weaknesses in Unpatched MyBB Codebase, Advanced Law Enforcement Tactics
What recommendations were made to prevent future incidents ?
Incident : Infrastructure Disruption REL716042825
Recommendations: Mitigate Future Exploits with Full Back-end Rewrite
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Critical Weaknesses in Unpatched MyBB Codebase, Advanced Law Enforcement Tactics.
What recommendations has the company implemented to improve cybersecurity ?
Implemented Recommendations: The company has implemented the following recommendations to improve cybersecurity: Mitigate Future Exploits with Full Back-end Rewrite.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Infrastructure Disruption REL716042825
Investigation Status: Completed Audit
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Infrastructure Disruption REL716042825
Entry Point: 0-day Vulnerability in MyBB Forum Software
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Infrastructure Disruption REL716042825
Root Causes: PHP Exploit in MyBB Codebase
Corrective Actions: Full Back-end Rewrite
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Full Back-end Rewrite.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Law Enforcement.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2025-04-15.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident was None.
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was Comprehensive Internal Review.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was None.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Critical Weaknesses in Unpatched MyBB Codebase, Advanced Law Enforcement Tactics.
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Mitigate Future Exploits with Full Back-end Rewrite.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Completed Audit.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an 0-day Vulnerability in MyBB Forum Software.
.png)
Latest Global CVEs (Not Company-Specific)
Description
httparty is an API tool. In versions 0.23.2 and prior, httparty is vulnerable to SSRF. This issue can pose a risk of leaking API keys, and it can also allow third parties to issue requests to internal servers. This issue has been patched via commit 0529bcd.
Risk Information
cvss4
Base: 8.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. In versions 0.15.2 and prior, an RCE vulnerability exists in useMarkdown.ts, where the markdown-it-mermaid plugin is initialized with securityLevel: 'loose'. This configuration explicitly permits the rendering of HTML tags within Mermaid diagram nodes. This issue has not been patched at time of publication.
Risk Information
cvss3
Base: 9.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Description
continuwuity is a Matrix homeserver written in Rust. Prior to version 0.5.0, this vulnerability allows a remote, unauthenticated attacker to force the target server to cryptographically sign arbitrary membership events. The flaw exists because the server fails to validate the origin of a signing request, provided the event's state_key is a valid user ID belonging to the target server. This issue has been patched in version 0.5.0. A workaround for this issue involves blocking access to the PUT /_matrix/federation/v2/invite/{roomId}/{eventId} endpoint using the reverse proxy.
Risk Information
cvss4
Base: 9.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
LangChain is a framework for building LLM-powered applications. Prior to @langchain/core versions 0.3.80 and 1.1.8, and prior to langchain versions 0.3.37 and 1.2.3, a serialization injection vulnerability exists in LangChain JS's toJSON() method (and subsequently when string-ifying objects using JSON.stringify(). The method did not escape objects with 'lc' keys when serializing free-form data in kwargs. The 'lc' key is used internally by LangChain to mark serialized objects. When user-controlled data contains this key structure, it is treated as a legitimate LangChain object during deserialization rather than plain user data. This issue has been patched in @langchain/core versions 0.3.80 and 1.1.8, and langchain versions 0.3.37 and 1.2.3
Risk Information
cvss3
Base: 8.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
References
- https://github.com/langchain-ai/langchainjs/commit/e5063f9c6e9989ea067dfdff39262b9e7b6aba62
- https://github.com/langchain-ai/langchainjs/releases/tag/%40langchain%2Fcore%401.1.8
- https://github.com/langchain-ai/langchainjs/releases/tag/langchain%401.2.3
- https://github.com/langchain-ai/langchainjs/security/advisories/GHSA-r399-636x-v7f6
Description
LangChain is a framework for building agents and LLM-powered applications. Prior to versions 0.3.81 and 1.2.5, a serialization injection vulnerability exists in LangChain's dumps() and dumpd() functions. The functions do not escape dictionaries with 'lc' keys when serializing free-form dictionaries. The 'lc' key is used internally by LangChain to mark serialized objects. When user-controlled data contains this key structure, it is treated as a legitimate LangChain object during deserialization rather than plain user data. This issue has been patched in versions 0.3.81 and 1.2.5.
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
References
- https://github.com/langchain-ai/langchain/commit/5ec0fa69de31bbe3d76e4cf9cd65a6accb8466c8
- https://github.com/langchain-ai/langchain/commit/d9ec4c5cc78960abd37da79b0250f5642e6f0ce6
- https://github.com/langchain-ai/langchain/pull/34455
- https://github.com/langchain-ai/langchain/pull/34458
- https://github.com/langchain-ai/langchain/releases/tag/langchain-core%3D%3D0.3.81
- https://github.com/langchain-ai/langchain/releases/tag/langchain-core%3D%3D1.2.5
- https://github.com/langchain-ai/langchain/security/advisories/GHSA-c67j-w6g6-q2cm
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=reliaquest' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
