Resources
Cybersecurity white papers, data sheets, webinars, videos and more
Resource Library
Data Sheet
Security Scorecard Esg Data
Get critical data for evaluating Environmental, Social, and Corporate Governance (ESG) risk
Cyber Insurance
Supply Chain Cyber Risk
Data Sheet
Breach Details
Learn more in this resource.
Cyber Insurance
Supply Chain Cyber Risk
Data Sheet
Breach Details
Learn more in this resource.
Cyber Insurance
Supply Chain Cyber Risk
Data Sheet
Automate Your Third Party Risk Assessment Process With Atlas
Learn more in this resource.
Supply Chain Cyber Risk
White Papers
Cactus Ransomware
Learn more in this resource.
Attack Surface Management
Cyber Insurance
Cyber Threat Intelligence
White Papers
Cactus Ransomware
Learn more in this resource.
Attack Surface Management
Cyber Insurance
Cyber Threat Intelligence
Research
A Deep Dive into Cactus Ransomware
Executive summary Cactus ransomware was discovered in March 2023. The malware creates a mutex called “b4kr-xr7h-qcps-omu3cAcTuS” to ensure that only one copy is running at a time. Persistence is achieved by creating a scheduled task named “Updates Check Task”. The ransomware requires an AES key to decrypt the encrypted public… Read More
Research
New Deep and Dark Web Collections Regarding the Israel-Hamas War
Executive Summary With the outbreak of the ongoing war between Israel and Hamas, SecurityScorecard rapidly expanded its deep and dark web (DDW) collections to include messaging channels affiliated with Hamas and other militant groups. The SecurityScorecard Threat Research, Intelligence, Knowledge, and Engagement (STRIKE) Team combined automated analysis of these collections… Read More
Webinars
Expect the Unexpected: Building a Resilient Security Program
Learn more in this resource.
Webinars
What does it mean to “expect the Unexpected” in third-party cyber risk?
Learn more in this resource.
Research
Cyber Risk Intelligence: Cyber Activity, Israeli Industrial Control Systems, and the Israel-Hamas War
Executive Summary Following the outbreak of war between Israel and Hamas on October 7, 2023, a wide variety of threat actors began claiming responsibility for cyberattacks against entities linked to both sides of the conflict. Thus far, the attacks claimed by hacktivist groups have been relatively weak in both… Read More
Cyber Threat Intelligence
Blog
SecurityScorecard Cybersecurity Data Incorporated into S&P Global Market Intelligence’s Newly Launched Supplier Risk Indicator™
Discover how S&P Global Market Intelligence’s Supplier Risk Indicator™ revolutionizes business relationships by assessing financial resilience, conduct, and information security. Secure your supply chain now.
Services
Blog
Zero‑Day Attack Prevention: How to Prepare
Learn how to prevent zero‑day attacks with hardening, detection prep, virtual patching, and a 24–72 hour response checklist, even before a patch exists.
Tech Center
Learning Center
Zero‑Day Attack Prevention: How to Prepare
Learn how to prevent zero‑day attacks with hardening, detection prep, virtual patching, and a 24–72 hour response checklist, even before a patch exists.
Tech Center
Webinars
Insights from the front lines: How to evaluate a partner you can trust [#1]
Learn more in this resource.
Webinars
Threat Talk Thursday E04
Learn more in this resource.
Research
Attack Surface Intelligence Identifies Additional Cuba Ransomware-Linked Indicators of Compromise
Executive Summary Following the publication of a report regarding the Cuba ransomware group’s recent activities, the SecurityScorecard Threat Research, Intelligence, Knowledge, and Engagement (STRIKE) Team leveraged SecurityScorecard’s unique data to enrich the indicators of compromise (IoCs) linked to this activity. STRIKE Team researchers identified additional IoCs not explicitly linked… Read More
Blog
Qualitative vs. Quantitative Cybersecurity Risk Assessment: What’s the Difference?
Formulating a cybersecurity risk assessment methodology is an essential part of building a robust information security program to identify key information assets and their value to the organization. By using this data, it is then possible for management to determine whether their existing security measures are adequate and investigate its risk profile.\r\n\r\nThere are two primary risk assessment methodologies: qualitative and quantitative risk assessments. But to build an effective IT security risk assessment methodology, you will need to incorporate both quantitative and qualitative approaches to paint an accurate picture of risk. Let’s take a closer look.
Tech Center
Case Studies
Private Equity Firm
Private Equity Firm focused on the partner aspect of cybersecurity services.
Blog
What is the Cost of Cyber Liability Insurance?
The cost of cyber liability insurance can vary based on factors such as business size, industry, risk profile, and coverage needs.
Cyber Insurance
Executive Viewpoint
Tech Center
Blog
What is the Cost of Cyber Liability Insurance?
The cost of cyber liability insurance can vary based on factors such as business size, industry, risk profile, and coverage needs.
Cyber Insurance
Executive Viewpoint
Tech Center