Plain English over jargon
If a business owner can't read our report and decide what to do, we've failed. Every finding includes a recommended fix in language a non-security team can act on.
AboutWebsite security for the businesses
Website security for the businesses
that need it most.
Most security tools are sold to security teams. RiskMeter brings serious website security scanning to small and mid-sized businesses that don't have one — yet still rely on their site every day to operate.
Why we exist
Make it accessible.
Small and mid-sized businesses are now the primary target of most opportunistic web attacks. The tools to defend them exist — but they're typically priced, packaged, and written for enterprises with full-time security staff.
RiskMeter exists to close that gap. We perform careful, focused scans against the assets you authorize, and deliver a report your team can act on without translation. No security degree required.
Principles
How we work.
Four commitments that shape every engagement.
Responsibility before completeness
We'd rather skip a check than risk taking your site down. Scans are throttled, scoped, and authorized in writing before they begin.
The minimum data, well protected
We collect only what we need to perform and report on a scan. We never collect customer passwords on this website, and we don't sell or share your data.
Honest about uncertainty
Some findings will be high-confidence. Others will be marked as worth checking. We tell you which is which — and we don't manufacture severity to look thorough.
Founder note
“Every small business I've worked with has had at least one quiet, fixable security issue on their website. RiskMeter is the version of that conversation I wish more business owners could have — without the consulting markup or the jargon.”
— RiskMeter founder. A more detailed bio will be published soon.