Research & Insights Center

Research, White Paper
A technical analysis of the APT28’s backdoor called OCEANMAP
March 5, 2024
Late last year, the Computer Emergency Response Team of Ukraine (CERT-UA) released an advisory that reported cyberattacks targeting state organizations attributed to the Russian espionage group APT28, aka Fancy Bear/Sofacy. The advisory listed the use of a new backdoor named “OCEANMAP.” Download this whitepaper to explore a technical analysis of APT28’s tactics, techniques, and procedures.
More Details
Vlad Pasca
Cyber Threat Intelligence, Enterprise Cyber Risk, Supply Chain Cyber Risk
Research
Cyber Conflict And The Erosion Of Trust: Introducing the Cyber Resilience Scorecard
January 15, 2024
Our report explores the intricate dynamics between cyber threats, economic resilience, and the vital component of societal trust.
More Details
Cyber Threat Intelligence
Research
North Korean State-Sponsored Cyber Attack: Unveiling the Intricacies of Threat Actor Group Andariel
January 10, 2024
This SecurityScorecard threat research sheds light on a significant cyber attack attributed to North Koreans tate-sponsored actors known as Andariel, emphasizing the critical role that South Korea plays both as a target and a source of infrastructure for these threat actors.
More Details
Cyber Threat Intelligence
Research
Japan’s Nikkei 225 Index: The State of Cybersecurity in Japan
December 12, 2023
This research presents an analysis of the cybersecurity landscape of the Nikkei 225 index. Companies were ranked based on various factors, such as network security, potential malware exploits, and patching cadence.
More Details
Cyber Threat Intelligence, Security Ratings
Research
Energy Sector Cybersecurity Report: Navigating Third-Party Cyber Risk
December 5, 2023
SecurityScorecard threat researchers have identified that 90% of the world’s largest energy companies experienced a third party breach in the past 12 months. Fueling the global economy and daily life, reliance on the energy sector elevates it as a prime target for cyberattacks.
More Details
Cyber Threat Intelligence
Research
Cyber Risk Intelligence: Cyber Activity, Israeli Industrial Control Systems, and the Israel-Hamas War
October 16, 2023More Details
Cyber Threat Intelligence
Research
Managing Third-Party Risk In The Era Of Zero Trust
March 22, 2023
Given such a large expansion of attack surface, it is no surprise that 91%of respondents had experienced a security incident during the past 12months that tied back to one of those third parties. That ubiquitous threat is likely why respondents by and large expressed some level of concern with experiencing another breach or falling out of compliance due to a partner vulnerable to attacks
More Details
Attack Surface Management, Cyber Threat Intelligence, Supply Chain Cyber Risk
Research, White Paper
Expand Your Vendor Intelligence To Identify Active Threats
February 28, 2023
Research by Ponemon Institute reports that 59% of survey respondents haveconfirmed that their organization has experienced a data breach caused byone of their third parties, with 54% of the incidents occurring in the past12 months. What is more alarming is that only 34% of organizations areconfident their suppliers would notify them of a breach that couldput their business at risk. As the global attack surface continuesto expand, it’s more important than ever to tighten and matureThird- Party Risk Management (TPRM) programs, alsoreferred to as Vendor Risk Management. Staying ahead ofweaponized vulnerabilities and threat actors targetingyour vendors’ assets decreases the chances of acyber disruption to your organization.
More Details
Attack Surface Management, Cyber Threat Intelligence, Enterprise Cyber Risk, Security Ratings, Supply Chain Cyber Risk
Research
Ransomware Attack Against U.S. Public Housing Authority Linked to Previous Attacks
February 9, 2023More Details
Dr. Robert Ames, Staff Threat Researcher
Cyber Threat Intelligence, Public Sector
Research
ESXiArgs Ransomware Campaign Targets VMWare ESXi Vulnerability
February 9, 2023More Details
Cyber Threat Intelligence
Research
Cyber Risk Intelligence: LockBit 3.0 Ransomware Group Claims Defense Contractor Breach
January 12, 2023More Details
Dr. Robert Ames, Staff Threat Researcher
Attack Surface Management, Cyber Insurance, Cyber Threat Intelligence, Supply Chain Cyber Risk
Research
Iran-Attributed Exploitation of Log4Shell Vulnerability
January 6, 2023More Details
Dr. Robert Ames, Staff Threat Researcher
Cyber Threat Intelligence, STRIKE Team

1 2 Next »

Leverage unparalleled research to make smarter, faster business decisions

Filter by:

Leverage unparalleled research to make smarter, faster business decisions

Filter by:

A technical analysis of the APT28’s backdoor called OCEANMAP

Cyber Conflict And The Erosion Of Trust: Introducing the Cyber Resilience Scorecard

North Korean State-Sponsored Cyber Attack: Unveiling the Intricacies of Threat Actor Group Andariel

Japan’s Nikkei 225 Index: The State of Cybersecurity in Japan

Energy Sector Cybersecurity Report: Navigating Third-Party Cyber Risk

Cyber Risk Intelligence: Cyber Activity, Israeli Industrial Control Systems, and the Israel-Hamas War

Managing Third-Party Risk In The Era Of Zero Trust

Expand Your Vendor Intelligence To Identify Active Threats

Ransomware Attack Against U.S. Public Housing Authority Linked to Previous Attacks

ESXiArgs Ransomware Campaign Targets VMWare ESXi Vulnerability

Cyber Risk Intelligence: LockBit 3.0 Ransomware Group Claims Defense Contractor Breach

Iran-Attributed Exploitation of Log4Shell Vulnerability