Unveiling TITAN AI: A New Era of Threat-Informed Third-Party Risk Management
Request a demo Get started for free

Resources

Cybersecurity white papers, data sheets, webinars, videos and more

Resource Library

Clear filters

The Botnet is Back: SSC STRIKE Team Uncovers a Renewed Cyber Threat

November 12, 2024

The Botnet is Back: SSC STRIKE Team Uncovers a Renewed Cyber Threat
Discover the resurgence of Volt Typhoon, a state-sponsored cyber-espionage group targeting the energy sector. Learn how they exploit legacy systems and outdated devices to embed themselves within critical infrastructure, posing a silent yet significant threat. Stay informed about the evolving tactics, global reach, and implications for national security.
STRIKE Team
What Is Port 445 (SMB)? Strategies for Secure Network Communication

November 7, 2024

What Is Port 445 (SMB)? Strategies for Secure Network Communication
Port 445 enables SMB traffic but is a prime target for ransomware and wormable exploits. Learn what it is, why it’s risky, and how to secure it.
Tech Center
Securing Port 139: Strategies to Prevent Unauthorized Access and Cyber Threats

November 7, 2024

Securing Port 139: Strategies to Prevent Unauthorized Access and Cyber Threats
Discover how to secure Port 139 against cyber threats with SMB protocol security, preventing unauthorized access and ensuring network safety.
Tech Center
Inside a North Korean Phishing Operation Targeting DevOps Employees

October 29, 2024

Inside a North Korean Phishing Operation Targeting DevOps Employees
Uncover how SecurityScorecard thwarted a sophisticated phishing attack targeting our DevOps team. This blog details a North Korean state actor’s attempt to deploy a malicious backdoor through a fake job offer on social media. Learn about the evolving tactics of threat actors and how our swift response blocked potential damage. Stay informed and strengthen your defenses against these persistent cyber threats.
Nation State Actors
Phishing
STRIKE Team
The Job Offer That Wasn’t: How We Stopped an Espionage Plot

October 29, 2024

The Job Offer That Wasn’t: How We Stopped an Espionage Plot
Discover how SecurityScorecard thwarted a sophisticated cyber-espionage plot disguised as a job offer. Learn about the ‘Contagious Interview’ campaign, the tactics used by the Famous Chollima group, and essential strategies to protect your organization from targeted attacks. Don’t let your next career move become a trap—stay informed and secure!
STRIKE Team
Healthcare IT Security and Compliance in 2024 and Beyond: A Comprehensive Guide

October 17, 2024

Healthcare IT Security and Compliance in 2024 and Beyond: A Comprehensive Guide
The healthcare industry remains a prime target for cyberattacks. As the industry navigates the digital landscape, ensuring cybersecurity compliance is paramount to protecting patient privacy and maintaining operational integrity.
Healthcare
Services
Tech Center
Complete Third-Party Risk Management (TPRM) Guide for 2025

October 16, 2024

Complete Third-Party Risk Management (TPRM) Guide for 2025
Learn effective third-party risk management strategies for 2025 to protect your business from cyber threats, ensure compliance, and secure vendor networks.
Third-Party Risk Management
Scorecarder Spotlight: Segev Eliezer & David Mound

October 11, 2024

Scorecarder Spotlight: Segev Eliezer & David Mound
Our series “Scorecarder Spotlight” showcases our talented employees and the incredible work they do. Meet Segev Eliezer & David Mound!
The Road Taken: Pathways to Better Compliance

September 30, 2024

The Road Taken: Pathways to Better Compliance
Consider SecurityScorecard’s market-leading security solutions to secure your supply chain and help you in your compliance journey.
How the U.S. Department of Justice Can Improve Its Approach to Combat Ransomware Attacks

September 30, 2024

How the U.S. Department of Justice Can Improve Its Approach to Combat Ransomware Attacks
How nations can work with industry to identify meaningful metrics, standards, and KPIs to help governments improve their cybersecurity posture and build deeper supply chain resilience.
Public Sector
Supply Chain Cyber Risk
Women in Cyber 2024: Key Themes from AT&T’s Inaugural Conference

September 26, 2024

Women in Cyber 2024: Key Themes from AT&T’s Inaugural Conference
Earlier this week, SecurityScorecard had the pleasure of sponsoring AT&T’s inaugural Women in Cyber conference. From folks earlier on in their career to more seasoned professionals with 20+ years under their belt, there was a diverse group of 750+ attendees who were all interested in learning more about… Read More
Risk Management in Healthcare: Definition & It’s Importance

September 23, 2024

Risk Management in Healthcare: Definition & It’s Importance
Healthcare risk management is the process of identifying, analyzing, and implementing systems and processes to protect critical assets from potential risks. Learn more.
Healthcare
Tech Center
Scorecarder Spotlight: David Mound

September 18, 2024

Scorecarder Spotlight: David Mound
Our series “Scorecarder Spotlight” showcases our talented employees and the incredible work they do.
Scorecarder Spotlight: Anna Livingston

September 11, 2024

Scorecarder Spotlight: Anna Livingston
Our series “Scorecarder Spotlight” showcases our talented employees and the incredible work they do. Meet Anna Livingston!
Billington 2024: Key Cybersecurity Takeaways from the AI Age

September 9, 2024

Billington 2024: Key Cybersecurity Takeaways from the AI Age
SecurityScorecard had the pleasure of participating in the 15th Annual Billington CyberSecurity Conference – a key convening of policymakers and industry thought leaders in our Nation’s Capital.
Public Sector
Supply Chain Cyber Risk
CISA’s Secure By Design: A Year Later

September 6, 2024

CISA’s Secure By Design: A Year Later
In April this year, the CISA Secure By Design initiative turned one. The initiative calls for the public and private sectors to work together to challenge and encourage software manufacturing companies to adopt principles to ensure their software is developed and produced as securely as possible.
Supply Chain Cyber Risk
Reimagining Supply Chain Cybersecurity

August 28, 2024

Reimagining Supply Chain Cybersecurity
Many security teams aren’t aware of the various supply chain cyber risks lurking within their network, most of which are difficult to detect, manage, and mitigate. Let’s explore how to achieve a more secure and resilient supply chain.
Supply Chain Cyber Risk
Third-Party Risk Management
Building a Resilient Supply Chain in the Face of Cyber Threats

August 27, 2024

Building a Resilient Supply Chain in the Face of Cyber Threats
Explore lessons learned from recent cyber outages and actionable insights for enhancing supply chain resilience.
Professional Services
Supply Chain Cyber Risk
Third-Party Risk Management
Continuous Accountability: Leveraging Contracts to Secure your Supply Chain

August 14, 2024

Continuous Accountability: Leveraging Contracts to Secure your Supply Chain
A critical problem for security and legal professionals who manage supply chain risk is that cybersecurity risks are dynamic and always shifting.
SecurityScorecard is now part of AWS OMNIA

August 14, 2024

SecurityScorecard is now part of AWS OMNIA
SecurityScorecard is excited to announce that we are now an AWS OMNIA partner. This unlocks a critical opportunity for the 90,000 buying organizations that make up the OMNIA partner network to reduce and manage Supply Chain Cyber Risks.
AWS
SecurityScorecard and ServiceNow Expand Partnership with New Capabilities for TPRM and Security Incident Response (SIR)

August 8, 2024

SecurityScorecard and ServiceNow Expand Partnership with New Capabilities for TPRM and Security Incident Response (SIR)
ServiceNow and SecurityScorecard have been longtime strategic partners, helping mutual customers measure and manage cyber risk. Today we’re highlighting the next phase of our partnership and innovation to help customers tackle the complex challenges associated with managing cyber risk in the third party ecosystem.