Cybersecurity white papers, data sheets, webinars, videos and more

STRIKE

Latin America as a Proving Ground: Cybercriminal Innovation and Escalation

The Conti ransomware group, active since late 2019, quickly became one of the most aggressive forces in the world of cybercrime. Known for “big game hunting” and its double-extortion model: stealing data before encrypting systems, Conti targeted major institutions in healthcare, education, and infrastructure.

Blog

Critical Update: What Security Leaders Need to Know Right Now About the Future of CISA and Threat Sharing

Discover how the expiration of the Cybersecurity Information Sharing Act (CISA 2015) disrupted threat intelligence, weakened national security, and widened AI-driven attack gaps. SecurityScorecard’s Mike Centrella and Dr. Aleksandr Yampolskiy explain what’s at stake as the January 2026 deadline nears amid a potential government shutdown.

Blog

What is a Parked Domain?

Learn what is a parked domain, why people park domains, and the security risks they create. Discover how to protect your attack surface from hidden threats.

Blog

Cyber Resilience in 2026: Why Supply Chains Are the New Front Line

The World Economic Forum’s Global Cybersecurity Outlook 2026 delivers a clear message for leaders across government and industry: cyber risk no longer lives inside the firewall.

Research

How to Prepare for Hong Kong’s Protection of Critical Infrastructure Bill in 2026

Hong Kong’s Protection of Critical Infrastructures Bill, effective January 1, 2026, introduces a comprehensive cybersecurity framework to safeguard essential services and strengthen national resilience. The legislation mandates operator-level accountability for both internal systems and external dependencies, including cloud platforms, managed services, and third-party vendors. Non-compliance carries severe financial penalties, emphasizing the need for structured governance and continuous oversight.

Blog

What Is a Brute Force Attack and How to Prevent It

What is a brute force attack, how attackers use password cracking methods to gain access, and proven strategies to protect yourself.

Blog

What is SOX Compliance?

Discover how SOX compliance protects financial reporting through internal controls, audits, and cybersecurity measures for public companies.

Blog

What Is Data Leakage

Data leakage occurs when sensitive information escapes an organization’s control, whether due to employee mistakes, software vulnerabilities, or intentional theft.

Resources

Tens of thousands more ASUS routers pwned by suspected, evolving China operation

Learn more in this resource.

STRIKE News

Blog

What is API Security?

Learn what API security is, common vulnerabilities like broken authentication, and essential techniques to protect your APIs from evolving threats.

Resources

How to know if your Asus router is one of thousands hacked by China-state hackers

Learn more in this resource.

STRIKE News

Resources

Iranian hackers were more coordinated, aligned during Israel conflict than it seemed

Learn more in this resource.

STRIKE News

Blog

How Executive Order 14028 Is Strengthening Supply Chain Cybersecurity for the Public and Private Sector

Executive Order 14028 emphasizes Zero Trust, cloud adoption, and improved threat sharing across agencies and vendors. Learn how this EO reshapes supply chain defense and how SecurityScorecard supports continuous monitoring and risk intelligence.

Blog

SecurityScorecard Awards and Recognitions in 2025

SecurityScorecard is recognized as a leader in third-party risk management and supply chain security. Explore the awards and recognitions the company received in 2025 for supply chain cyber risk management, AI-driven security innovation, executive leadership, and third-party risk intelligence.

Blog

What Is Malware: Definition and Examples

What is malware? Learn how malicious software infiltrates networks, the types of threats your organization faces, and proven defenses to protect your business.

Blog

How to Automate Vendor Risk at Scale with the RSA Archer and SecurityScorecard Integration

Learn how the RSA Archer and SecurityScorecard integration automates vendor monitoring, triggers workflows on score changes, and scales GRC oversight in real time.

Blog

How to Automate Third-Party Risk with the LogicGate and SecurityScorecard Integration

Learn how GRC teams use LogicGate workflows and SecurityScorecard ratings together to automate vendor tiering, trigger remediation, and prove risk reduction.

Webinars

Cyber Risk Compliance Reimagined: Preparing for the UK Cyber Security and Resilience Bill

With 98% of the UK’s top companies linked to a breached vendor, and new requirements on supply chain assessments, breach disclosures, and critical supplier oversight, cybersecurity compliance is no longer optional, it is operational.\r\n

Webinars

A Security Assessment of Key Indian Suppliers: Third-Party Cyber Risks to Global Supply Chains

Over half (52.6%) of Indian vendors experienced a third-party breach in the last year, a signal that India’s globally embedded vendor ecosystem is both a powerhouse and a prime target.\r\n

Webinars

The Silent Spies Hiding in Thousands of Devices: Operation WrtHug

The STRIKE Threat Intelligence team at SecurityScorecard has just unveiled a new research report on a sweeping espionage operation weaponizing home routers into a global spying operation.\r\n

Blog

How to Outsmart Holiday Scammers This Shopping Season

Let’s break down why this time of year is so dangerous and how you can shop online without falling victim to holiday scams.