Dear colleagues, A security issue in the RIPE NCC LIR Portal was reported to us on Monday, 19 January 2015. This issue allowed authenticated LIR Portal users to potentially access the invoices of other RIPE NCC members. Our investigation has shown that the issue was introduced on Monday morning, the same day it was discovered. A fix for this issue was deployed on Wednesday, 21 January 2015. We found no evidence that the issue was abused. No action is required from LIR Portal users. Measures have been taken to improve our internal software development processes with regard to security. We would like to thank Marco Näf, the RIPE NCC member who reported this issue, allowing us to resolve this issue quickly. Kind regards, Ivo Dijkhuis Information Security Officer RIPE NCC