Resources
Cybersecurity white papers, data sheets, webinars, videos and more
Resource Library
Blog
Enterprise Cybersecurity: What it is & Why it’s Important
Having effective enterprise cybersecurity is more than having your employees create a password that isn’t their pet’s name—unless perhaps their cat’s name is at least 12 characters long, and a combination of upper- and lower-case letters and symbols. Whether it’s well-researched spearphishing attempts or bypassing MFA, threat actors have only… Read More
Tech Center
![Live Attack Simulation: Uncover Ransomware in Real-Time [#1]](https://securityscorecard.com/wp-content/themes/securityscorecard/resources/images/resource-feature-image.webp)
Webinars
Live Attack Simulation: Uncover Ransomware in Real-Time [#1]
Learn more in this resource.
Webinars
Being Proactive with Security: Deep Dive into Tabletop Exercises
Learn more in this resource.
Research
Addressing the Trust Deficit in Critical Infrastructure
Global Cybersecurity Risk Measurement and Transparency are Key Despite a decade or more of increased focus on cybersecurity in boardrooms, legislatures, and the media, cyber resilience is getting worse, not better. Increasing cyberattacks and highly publicized breaches have undermined the public’s trust in the resilience of our societies, prompting business… Read More
Press
SecurityScorecard Research Finds 48% of Global Critical Manufacturing At Significant Risk of Breach
SecurityScorecard research finds 48% of global critical manufacturing is at a significant risk of breach; addressing trust deficit is key.
Cyber Threat Intelligence
Research
Cyber Risk Intelligence: LockBit 3.0 Ransomware Group Claims Defense Contractor Breach
Executive Summary On December 2, the LockBit 3.0 ransomware group claimed to have exfiltrated data from a major defense contractor, and threatened to leak stolen files; however, as of December 13, the supposed victim no longer appears on LockBit 3.0’s data leak site. Following the claim, the SecurityScorecard… Read More
Attack Surface Management
Cyber Insurance
Cyber Threat Intelligence
Research
Cyber Risk Intelligence: LockBit 3.0 Ransomware Group Claims Defense Contractor Breach
Executive Summary On December 2, the LockBit 3.0 ransomware group claimed to have exfiltrated data from a major defense contractor, and threatened to leak stolen files; however, as of December 13, the supposed victim no longer appears on LockBit 3.0’s data leak site. Following the claim, the SecurityScorecard… Read More
Attack Surface Management
Cyber Insurance
Cyber Threat Intelligence
Research
How to Analyze JavaScript Malware – A Case Study of Vjw0rm
Vjw0rm is a worm that spreads via USB drives and has RAT capabilities because it implements different commands transmitted by the C2 server. It establishes persistence on a machine by copying to the Startup folder and creating a Run registry entry. The malware drops a Java-based RAT called STRRAT, executed using the Java executable that can be found on the local computer or downloaded from a remote URL.
Research
Iran-Attributed Exploitation of Log4Shell Vulnerability
Executive Summary CISA and the FBI issued a joint advisory warning of ongoing exploitation of the Log4Shell vulnerability (CVE-2021-44228) on November 16. The advisory noted that an unspecified Iran-linked threat actor group had exploited the vulnerability during an intrusion into a Federal Civilian Executive Branch (FCEB) organization’s network earlier… Read More
Cyber Threat Intelligence
STRIKE Team
Webinars
Showcase your Strong Security Posture to be the Vendor of Choice
Learn more in this resource.
Press
SecurityScorecard Joins World Economic Forum Global Innovators Community
Recognized innovator will contribute to WEF’s Centre for Cybersecurity’s initiative to address systemic challenges, improve digital trust, and build cyber resilience.
Webinars
Show the Value of Your Security Program
Learn more in this resource.
メディア掲載
@IT Media: 一筋縄ではいかない「サプライチェーン攻撃」、専門家が語る4つの分類と対策
関連企業が攻撃されたり、ソフトウェアサプライチェーンの弱い部分が突かれたりする「サプライチェーン攻撃」が問題となっている昨今、企業はどんな対策を講じるべきなのか。サプライチェーン攻撃をはじめ、サイバーセキュリティ全般のコンサルティングを手掛けるニュートン・コンサルティングの内海良氏に話を聞いた。
Japanese
Webinars
Carve Through the Noise by Prioritizing the Most Critical Threats
Learn more in this resource.
Webinars
Taking Control of Your Security in Turbulent Times
Learn more in this resource.
Case Studies
Liquidnet Case Study
Liquidnet uses SecurityScorecard as a third-party management solution to quantify the security performance of their vendors, provide continuous monitoring and do both of those things without requiring an immense amount of manual time from Liquidnet’s team.
Infographic
CISO on the Shelf
It’s that time of year again! Be on the lookout for your organization’s CISO. This helpful security professional will be watching over every security move you make… so be on your best behavior because they’ll be reporting back to the CEO!
Webinars
A Deep Dive into Cyber Risk Quantification for Board Reporting
Learn more in this resource.
Blog
Hackers Are Using These 3 Techniques to Bypass MFA
Multi-factor authentication (MFA) is an essential security measure, but here are some frequently-used methods cyber-attackers leverage to bypass MFA.
Tech Center
Press
SecurityScorecard Empowers Customers to Maximize their Security Investments by Providing a One-Stop Shop with Dramatically Expanded Partner Marketplace
Discover how SecurityScorecard’s Marketplace has expanded by 80%, enhancing cybersecurity visibility and integration for trusted partner solutions.
Webinars
A Deep Dive Into Cloud Security Assessments
Learn more in this resource.