Unveiling TITAN AI: A New Era of Threat-Informed Third-Party Risk Management
Request a demo Get started for free

Resources

Cybersecurity white papers, data sheets, webinars, videos and more

Resource Library

Introducing Security Ratings for Telecommunications, Internet Service Providers, and Cloud Providers: Collaborating on enhancements with industry leaders

Blog

Introducing Security Ratings for Telecommunications, Internet Service Providers, and Cloud Providers: Collaborating on enhancements with industry leaders
Telecommunications, Internet Service Providers, and Cloud Providers are some of the most critical sectors on the planet. But they are also prime targets for nation-state attacks and other threat actor groups. And their reliance on vast networks of third-party vendors, partners, and service providers creates a need for a comprehensive cybersecurity approach tailored specifically to the sector.
Security Ratings
Security Ratings: A New Horizon

White Papers

Security Ratings: A New Horizon
Unveiling a new Security Ratings methodology for Telecommunications, Internet Service Providers, and Cloud Providers
Attack Surface Management
Cyber Threat Intelligence
Enterprise Cyber Risk
SecurityScorecard Reinforces Commitment to Free Security Ratings for All Organizations

Press

SecurityScorecard Reinforces Commitment to Free Security Ratings for All Organizations
SecurityScorecard today unveiled new capabilities to strengthen cybersecurity trust and transparency across the digital ecosystem. Building on a decade-long commitment to providing free security ratings for all organizations, SecurityScorecard innovations advance the industry’s most transparent, trusted, and accurate security ratings.
Security Ratings
8 Types of Vendor Risks That Are Important to Monitor in 2025

Blog

8 Types of Vendor Risks That Are Important to Monitor in 2025
Discover how to manage vendor risk by understanding and monitoring various threats, ensuring your business stays secure from third-party vulnerabilities.
Tech Center
The Increase in Ransomware Attacks on Local Governments

Research

The Increase in Ransomware Attacks on Local Governments
What makes organizations in the public sector vulnerable to ransomware?
Public Sector
STRIKE Team
Third-Party Data Breaches in the Energy Sector

Research

Third-Party Data Breaches in the Energy Sector
Learn more in this resource.
School District Attack Illustrates Ongoing Threat of Ransomware to Public Education

Research

School District Attack Illustrates Ongoing Threat of Ransomware to Public Education
Interested in reading the report later? Download it. Download Now Executive Summary After a large U.S. school district recently announced that it had suffered a ransomware attack, SecurityScorecard consulted in-house data and strategic partnership sources to enrich the public reporting on the incident. Many of… Read More
Public Sector
A detailed analysis of the Menorah malware used by APT34

Research

A detailed analysis of the Menorah malware used by APT34
Executive summary Menorah malware was used by the APT34 group, which targeted organizations in the Middle East and was discovered by Trend Micro in August this year. The malware creates a mutex to ensure that only one copy is running at a single time. It extracts the hostname and… Read More
Cyber Risk Intelligence Update: Hacktivist Involvement in Israel-Hamas War Reflects Possible Shift in Threat Actor Focus

Research

Cyber Risk Intelligence Update: Hacktivist Involvement in Israel-Hamas War Reflects Possible Shift in Threat Actor Focus
The SecurityScorecard Threat Research, Intelligence, Knowledge, and Engagement (STRIKE) Team has continued its monitoring of threat actors involved in the war between Israel and Hamas and has integrated this monitoring into its ongoing deep and dark web (DDW) collections. Key takeaways Analysis of these collections appears, as of… Read More
A Deep Dive Into ALPHV/BlackCat Ransomware

Research

A Deep Dive Into ALPHV/BlackCat Ransomware
Executive summary ALPHV/BlackCat is the first widely known ransomware written in Rust. The malware must run with an access token consisting of a 32-byte value (–access-token parameter), and other parameters can be specified. The ransomware comes with an encrypted configuration that contains a list of services/processes to be stopped,… Read More
STRIKE Team
Brute Force Attempts May Have Preceded Ransomware Attack on School District

Research

Brute Force Attempts May Have Preceded Ransomware Attack on School District
Executive Summary: Vice Society Ransomware Group Attack Following reports that an attack by the Vice Society ransomware group was responsible for disrupting a US school district’s operations, SecurityScorecard researchers reviewed available data from internal sources and strategic partnerships. SecurityScorecard’s platform revealed that the school district suffered from issues that our… Read More
Public Sector
STRIKE Team
What Is Cybersecurity Risk and How Do You Manage It in 2025?

Blog

What Is Cybersecurity Risk and How Do You Manage It in 2025?
Explore what cybersecurity risk means in 2025 and how organizations can effectively assess, mitigate, and monitor cyber threats across their digital and third-party ecosystems
Tech Center
2025 Third-Party Vendor Risk Management in the Financial Industry

Blog

2025 Third-Party Vendor Risk Management in the Financial Industry
With an established third-party risk management program, financial organizations are better able to identify and address vendor cyber risk. Learn more.
Tech Center
What is Cyber Attack Insurance? Best Practices for Protection

Blog

What is Cyber Attack Insurance? Best Practices for Protection
Cyber attack insurance is increasingly essential to protect your organization from cyber threats and their consequences. Learn more.
Cyber Insurance
Executive Viewpoint
Tech Center
What is Cyber Attack Insurance? Best Practices for Protection

Blog

What is Cyber Attack Insurance? Best Practices for Protection
Cyber attack insurance is increasingly essential to protect your organization from cyber threats and their consequences. Learn more.
Cyber Insurance
Executive Viewpoint
Tech Center
ZDNET: 2024年のサイバーセキュリティ予測–AI、クラウド、CISOの変化など

メディア掲載

ZDNET: 2024年のサイバーセキュリティ予測–AI、クラウド、CISOの変化など
サイバーセキュリティ各社が2024年のセキュリティ動向を予想している。2023年にブームとなったAIやクラウドなどのテクノロジートレンド、また、社会情勢や企業・組織の体制を踏まえた興味深い示唆が目立つ。各社の予想を主要なトピックスで紹介する。
Japanese
The Most Important Security Metrics to Maintain Compliance: Best Practices for Prioritizing Cyber Resilience

Blog

The Most Important Security Metrics to Maintain Compliance: Best Practices for Prioritizing Cyber Resilience
Security metrics are a great way to ensure your organization is meeting industry standards. Here are a few key performance indicators to track for maintaining compliance.
Security Ratings
Tech Center
What is a Cybersecurity Assessment?

Blog

What is a Cybersecurity Assessment?
A cybersecurity assessment helps security teams determine whether or not an organization is properly prepared to protect its assets against a range of threats. Learn more.
Tech Center
20 Cybersecurity Metrics & KPIs to Track in 2025

Blog

20 Cybersecurity Metrics & KPIs to Track in 2025
Explore the top cybersecurity metrics for 2025. Learn how to measure risk, performance, and vendor exposure across your organization and supply chain.\r\n
Security Ratings
Tech Center
How to Perform A Cybersecurity Risk Analysis in 2024

Blog

How to Perform A Cybersecurity Risk Analysis in 2024
Identify, manage, and safeguard data, and assets that could be vulnerable to a cyberattack. Learn how to perform a cyber security risk analysis.
Tech Center
エネルギー業界に関するサイバーリスク調査レポートを発表:90%がサードパーティによるデータ侵害を経験

Press

エネルギー業界に関するサイバーリスク調査レポートを発表:90%がサードパーティによるデータ侵害を経験
Learn more in this resource.
Japanese