SecurityScorecard Blog
Read the latest blog posts published weekly.
-
BlogOperation Phantom Circuit: North Korea’s Global Data Exfiltration Campaign
January 29, 2025In December 2024, a routine software update concealed a global threat. Attackers from the Lazarus Group, based in North Korea, infiltrated trusted development tools, compromising hundreds of victims worldwide. This sophisticated campaign, code-named "Phantom Circuit," targeted cryptocurrency and technology developers, employing advanced obfuscation techniques through proxy servers in Hasan, Russia.
More DetailsSTRIKE Team -
Blog, Learning CenterImplementing Non-Repudiation in Your Security Strategy: Best Practices and Techniques
Explore best practices for implementing non-repudiation in security strategies to ensure transaction authenticity and protect against fraud.
More DetailsTech Center -
Blog5 Reasons to Integrate Continuous Monitoring into Your TPRM Program
January 21, 2025Learn 5 reasons your organization should integrate continuous monitoring into their third-party risk management program. Read SecurityScorecard's blog
More Details -
BlogWhat is the Threat Landscape?
January 17, 2025Discover the current threat landscape and learn how to identify, assess, and mitigate evolving cyber risks to protect your organization from potential attacks.
More Details -
Blog, ResearchOperation 99: North Korea’s Cyber Assault on Software Developers
January 15, 2025On January 9, the SecurityScorecard STRIKE team uncovered Operation 99, a cyberattack by the Lazarus Group, North Korea’s state-sponsored hacking unit.
More DetailsRyan Sherstobitoff, SVP, Threat Research & Intelligence in Threat Intelligence
STRIKE Team -
BlogHow Security Ratings Help Build Strong Business Relationships
January 14, 2025See how security ratings allow you to strengthen business relationships by giving you the information you need to enable stronger business outcomes. Learn more about security ratings for business.
More Details -
BlogSecuring Patient Data: A Guide to Managed Services for Supply Chain Detection and Response in Healthcare
January 14, 2025Patient data is among the most sensitive and valuable information in the healthcare industry. A single breach can have devastating consequences. Learn how a managed service for SCDR can help.
More DetailsSCDR -
BlogSecuring Your Financial Ecosystem: A Guide to Managed Services for Supply Chain Detection and Response
January 10, 2025This blog explores the critical role of Managed Services for Supply Chain Detection and Response (SCDR) in securing your financial institution.
More DetailsSCDR -
BlogDay in the Life of a CISO: A Vendor Breach: Assessing Our Exposure
December 19, 2024Day in the Life of a CISO: A Vendor Breach: Assessing Our Exposure
More Details -
BlogSecuring Your Healthcare Supply Chain: A Guide to Supply Chain Detection and Response
December 17, 2024In today's interconnected healthcare landscape, supply chain security has emerged as a critical concern. Cyber threats are becoming increasingly sophisticated, targeting vulnerable points in the supply chain to infiltrate networks and steal sensitive patient data. As a result, healthcare organizations must prioritize the security of their vendors and partners to protect their own operations and patient information.
More DetailsHealthcare, SCDR -
BlogScorecarder Spotlight: Portia Phillips
December 17, 2024Our series “Scorecarder Spotlight” showcases our talented employees and the incredible work they do. Meet Portia Phillips!
More DetailsScorecarder Spotlight -
BlogDay in the Life of a CISO: Evaluating a Plugin Vendor
December 13, 2024Day in the Life of a CISO: Evaluating a Plugin Vendor
More Details
