SecurityScorecard Blog

Recently, we explained how the SecurityScorecard platform meets the US Chamber of Commerce’s Principles for Fair and Accurate Security Ratings directive to provide accurate and validated ratings. This week we’re continuing our o... Keep Reading

This week's Security Roundup brought to you by Or Rikon and Sean Smith. Forms over HTTP to be considered insecure. Reminder that Google is planning to show pages as insecure if they contain forms that get posted over HTTP, rather... Keep Reading

For those companies who have been following the New York Department of Financial Services Cybersecurity Requirements and have educated themselves on everything about the regulation, it was easy to jump right into the substance of ... Keep Reading

Although not a regulatory framework, the U.S. National Institute of Standards and Technology (NIST) framework is considered an industry best practice for to identifying, measuring, and managing cybersecurity risk. In the 2016 Ten... Keep Reading

This week's SecurityRoundup brought to you by Sean Smith and Scott Walsh. Neutrino to Jimmy, a Malware Evolution. A few months ago, Kaspersky provided an analysis of a banking trojan calledNeutrino, and this week they dive into i... Keep Reading

The Federal Financial Institution Examination Council (FFIEC) recently issued the Cybersecurity Assessment Tool (CAT). For U.S. financial institutions that fall under the FFIEC’s purview, this is a framework that can facilitate di... Keep Reading

Our initiative with the the US Chamber of Commerce to release the Principles for Fair and Accurate Security Ratings started with defining and publishing the principles, and now SecurityScorecard is fostering this initiative by con... Keep Reading

For those of you who used to avidly read our security roundups on this blog and have been asking where our roundups went, we’re happy to announce that SecurityScorecard is bringing them back! For newcomers to our blog, a security ... Keep Reading

As the number of cyber-attacks has increased, companies in the healthcare industry are working to keep up with the dynamic cybersecurity landscape. But with an estimated 4.5 million records healthcare records exposed last year, th... Keep Reading

IoT Threat Advisory: CVE-2017-7577 CVSSv2 Score: 5.0 - 10 (conditional) SecurityScorecard Research and Development Department August 9, 2017 Overview As of July 31, 2017, SecurityScorecard has identified 205,390 IoT devices... Keep Reading