Cybersecurity white papers, data sheets, webinars, videos and more

June 23, 2025

Unmasking A New China-Linked Covert ORB Network: Inside the LapDogs Campaign

LapDogs: China-Linked ORB Network Revealed in Global Espionage Campaign   SecurityScorecard’s STRIKE team has identified a previously unreported Operational Relay Box (ORB) Network—LapDogs—a novel and prolonged espionage infrastructure campaign that marks yet another instance of China-Nexus cyber actors leveraging ORB Networks.   Key Takeaways… Read More

STRIKE Team

June 2, 2025

Securing the Supply Chain, One API Call at a Time: Inside the SecurityScorecard API Hackathon

Earlier this month, SecurityScorecard hosted its first-ever API Hackathon, bringing together developers, cybersecurity professionals, and third-party risk managers from around the world to solve real-world security challenges, one API call at a time. This wasn’t just about writing code. It was about… Read More

June 2, 2025

Scorecarder Spotlight: Guillermo Garcia Granda

Our “Scorecarder Learning & Development Spotlight” series showcases our talented, driven employees, the incredible work they do, and their quest to continue their development as lifelong learners.   Name: Guillermo Garcia Granda… Read More

Scorecarder Spotlight

May 23, 2025

How STRIKE Helped Identify Qakbot’s Alleged Operator and Support a $24M Asset Seizure

SecurityScorecard’s STRIKE team supported U.S. law enforcement in an investigation into Qakbot, a malware platform linked to some of the most widespread ransomware activity in recent history. On May 22, 2025, the Department of Justice unsealed an indictment against Russian national… Read More

May 8, 2025

Guide to Developing a Business Continuity Plan

In today’s threat-heavy digital environment, having a Business Continuity Plan (BCP) isn’t just smart, it’s essential. Whether it’s a cyberattack, data breach, ransomware, or natural disaster, organizations need a strategy to mitigate risks, reduce downtime, and ensure continued operations. This guide walks you through how to develop a… Read More

May 8, 2025

Safeguarding Against Subdomain Takeover

Subdomain takeovers are a growing threat in today’s cloud-first ecosystem. As organizations rely on third-party services, continuously launch digital assets, and manage sprawling DNS configurations, they often leave behind vulnerable subdomains ripe for exploitation.  In this article, we explore subdomain takeovers, why they pose such a… Read More

May 8, 2025

What Is a Supply Chain Attack?

A supply chain attack does not start with your firewall. It starts with someone else’s. Instead of targeting your company directly, a cyber attacker looks for weak spots in your organization’s supply chain. That could be a trusted third-party vendor, a widely… Read More

Supply Chain Cyber Risk

Threat-Informed TPRM

May 5, 2025

Scorecarder Spotlight: Chandra Sekhar Betha

Our “Scorecarder Learning & Development Spotlight” series showcases our talented, driven employees, the incredible work they do, and their quest to continue their development as lifelong learners. Name: Chandra Sekhar Betha Role: Senior InfoSec Analyst,… Read More

Scorecarder Spotlight

April 17, 2025

How Much Do Healthcare Data Breaches Really Cost?

Explore how top healthcare data breaches exposed sensitive PII, disrupted patient care, and challenged HIPAA compliance across digital ecosystems. When a data breach occurs in the healthcare industry, the fallout isn’t just reputational—it can interrupt patient care, expose sensitive Personally Identifiable Information… Read More

Cyber Threat Intelligence

Enterprise Cyber Risk

Third-Party Risk Management

April 11, 2025

CISOs: The Perfect SCORE With Your Board

You’ve done the work—mapped the risks, built the roadmap, secured the right tools. But when it’s time to face the board, the conversation stalls. Not because you’re wrong. Because you’re speaking a different language. Boards don’t operate in threat models and tech stacks. They operate in risk, revenue, and accountability. Read More

Executive Viewpoint

April 9, 2025

Scorecarder Spotlight: Noor Al-Baker

Our “Scorecarder Learning & Development Spotlight” series showcases our talented, driven employees, the incredible work they do, and their quest to continue their development as lifelong learners. Name: Noor Al-Baker Role: Customer Success Manager   Tell us… Read More

Scorecarder Spotlight

March 25, 2025

SecurityScorecard’s Partnership with the TSA Helping to Secure the Nation’s Critical Infrastructure

As part of our continued commitment to making the world a safer place, SecurityScorecard recently partnered with the Transportation Security Administration (TSA). This partnership will enable the agency to more accurately monitor and assess the cyber health of the nation’s pipeline, rail, and aviation transportation systems. We will work closely… Read More

March 21, 2025

How Security Ratings Help Build Strong Business Relationships

Increasingly, companies are working with third-party vendors to streamline business operations. Whether it’s cloud migration to ease workload strains or using a Software-as-a-Service, adding new vendors to your network increases the number of people who interact with your data. It’s not just your vendors who gain access to your data:… Read More

March 21, 2025

5 Reasons to Integrate Continuous Monitoring into Your TPRM Program

In today’s business landscape, it is nearly impossible to work alone. You have to collaborate with clients, vendors, suppliers, specialists, and plenty of other partners all considered third parties to your organization. As a result, these organizations have access to sensitive and confidential data about your company, your customers, or support a… Read More

March 21, 2025

Automating Vendor Risk Management and Assessments

Third and fourth-party vendors have become paramount to many businesses’ operations, as they can help improve efficiency and expand the availability of services. However, these vendors often come with increased cybersecurity risks for your organization. According to Ponemon, the average cost of a data breach increases by… Read More

March 21, 2025

The Principles for Fair & Accurate Security Ratings: A Focus on Confidentiality

SecurityScorecard is actively engaged to ensure our Security ratings align with the Principles for Fair & Accurate Security Ratings, published by the US Chamber of Commerce. As part of this effort we strive to educate the cybersecurity community on how our products align with these important principles. This article is… Read More

March 21, 2025

3 Tangible Benefits of an A Rating

Security ratings are a standard in cybersecurity. Many organizations rely on them to manage their security programs and they create ROI for the organization. Despite the potential benefits, it can be challenging for organizations who are evaluating different security ratings options to determine the value they will get from them. When making… Read More

March 21, 2025

Third-Party Risk Management Regulations: What You Should Know

Without a doubt, partnering with third parties has many advantages, including boosting the functionalities and performance of an organization. But despite the benefits, third parties also introduce a host of risks to an organization, potentially disrupting operations, affecting financial standing, and harming reputation. An understanding of third-party risk management… Read More

March 21, 2025

Third-Party Risk Management Framework: How to Select the Right One

Third-party technology providers can confer huge strategic advantages to a business. It allows each organization to focus on their highest value activities, but there’s a downside; new cyber security risks come with each partnership. Third-party risk is now an integral part of business ecosystems. A solid risk management framework is required… Read More

March 5, 2025

Scorecarder Spotlight: Luciano Bargmann

Our “Scorecarder Learning & Development Spotlight” series showcases our talented, driven employees, the incredible work they do, and their quest to continue their development as lifelong learners. Name: Luciano Bargmann Role: Engineering Manager   Tell us a… Read More

Scorecarder Spotlight