Third-Party Data Breaches in the Energy Sector

SecurityScorecard threat researchers recently discovered 90% of the world’s largest energy companies have experienced a third-party breach in the past 12 months. MOVEit was the most prevalent third-party vulnerability in the last six months, affecting hundreds of companies globally.

SecurityScorecard identified these alarming statistics by examining the cybersecurity posture of the 48 largest energy companies across five key nations: the United States, United Kingdom, France, Germany, and Italy. Over 21,000 domains were investigated, reflecting a diverse range of third-party and fourth-party vendors that represent the complex supply chain dependencies of critical infrastructure.

Read the full report for more information on critical vulnerabilities in the energy sector’s cybersecurity landscape and actionable strategies to protect against third-party cyber risks.