Successes and Testimonials from Some of Razorpoint’s Clients.
NYC FINANCIAL BROKER/DEALER
Discovered flaws in large fintech vendor technology. Documented issues and remedies through additional analysis. Uncovered client data exposure and unnecessary billing for client services. Saved client $2.5 million annually and secured company data from dangerous compromise.
U.S. INTELLIGENCE CONTRACTOR
During first day of company-wide security assessment, uncovered huge vulnerabilities and compromise by adversarial nation state. Designed and implemented complete company technology and cybersecurity rearchitecture. Through further reconnaissance and forensics, gathered evidence enabling pursuit by appropriate counterintelligence teams.
BOSTON WEALTH MANAGEMENT COMPANY
Razorpoint gained complete control of client’s data center systems as well as their cloud environment. This included their newly purchased firewall. The cybersecurity was found to be so deficient, a “shadow network” was created within the client’s network completely undetected. Among other things, this network allowed Razorpoint to move money. One example in Razorpoint’s final deliverable included a screen shot of the client’s bank account set to wire $5 million into Razorpoint’s account.
GLOBAL NEWS ORGANIZATION
As part of a larger engagement, Razorpoint was retained by this client to test the physical security of their “high end, secure” building. Razorpoint teams successfully breached the physical security of this office building on numerous occasions. Both the physical security processes as well as their related technologies were defeated. In addition to creating fake access badges and using social engineering techniques, Razorpoint successfully used a folded cocktail napkin to gain entry. After Razorpoint presented its detailed findings, building management razed the lobby and redesigned it with better security practices and technologies.
MAJOR METROPOLITAN POLICE DEPARTMENT
Razorpoint was tasked to assess the security of a recently deployed cloud-based database of ongoing criminal prosecutions. As this was the client’s first exposure to cloud technology, no real expertise nor best practices were present. Using only a web browser, Razorpoint demonstrated how easily an unauthorized user could gain access to the entire database without valid login credentials and without any required encryption. The potential exposure of law case data could have had catastrophic consequences on a multitude of ongoing criminal prosecutions. Razorpoint quickly recommended shutting down the existing system and designed a project plan that included advanced software development, a secure cloud network architecture, thorough testing procedures, and an ongoing management program for the project. Within 3 weeks the new system went live without issue.
SECURE BIOMETRIC DEVICE MANUFACTURER
Razorpoint conducted an initial call with a leading manufacturer of biometric sensors and secure door access technologies. Razorpoint asked detailed, methodical questions regarding the design and functionality of their access devices. In less than one hour, Razorpoint had identified at least one critical vulnerability with the biometric and secure lock technologies – over the phone. The client was able to test Razorpoint’s discovery and was stunned to see that it was in fact true. Razorpoint was retained to perform a deeper analysis of the entire product line as well as assist in the development of fixes for the thousands of already-deployed units.
MAJOR 401(k) PROVIDER
After this client achieved all of their necessary compliance standards (PCI DSS, SOX, SSAE-16, HIPAA, etc.), Razorpoint was hired to perform a cybersecurity assessment. Within 48 hours of commencing the project, Razorpoint had access to all company data including names, addresses, social security numbers, bank account information, staff payroll, remote access credentials, etc. Razorpoint assisted client in designing a new network architecture and employee cybersecurity code of conduct procedures.
DIRECTOR, CYBERSECURITY — MAJOR INSURANCE COMPANY
“It was really unbelievable what the Razorpoint team showed us. And this was after three other security firms had been in here. It was scary and enlightening at the same time. Thank goodness we have them.”
CISO — LARGE FINANCIAL BROKER/DEALER
“Razorpoint demonstrated — quite clearly — how buying countless security products can be worthless. They’ve put us in a much better place now.”
VP, TECHNOLOGY — INTERNATIONAL MEDIA FIRM
“One of the many Razorpoint differences is they approach things from their vast expertise and not a sales pitch. They are skilled professionals, not sales people.”
CISO — INTERNATIONAL RETAIL & ONLINE COMPANY
“Razorpoint has been working with us since the beginning. From design, implementation, and ongoing management they lead the entire way making cybersecurity a key component at every stage and not just trying to bolt it on at the end.”
CTO — MAJOR LAW FIRM
“We had no idea what we didn’t know. Razorpoint’s analysis not only showed us how bad things really were, but also how we could correct things quickly. We learned a tremendous amount from them, and continue to do so. ‘Conventional wisdom’ in cybersecurity is usually dead wrong. Razorpoint’s revelations really woke us up, and we’re much better for it.”