Cybersecurity white papers, data sheets, webinars, videos and more

Press

日本語対応開始 ～グローバルで初のローカライズ対応～

Learn more in this resource.

Japanese

Blog

Operation WrtHug Exposed: The Router Hack You Need to Know

SecurityScorecard STRIKE threat intelligence researchers uncovered a suspected China-backed campaign by chasing an extremely unusual 100‑year certificate that kept appearing on routers. Here is how the research team hunted the signal, what they found, and the practical steps security teams can take to protect themselves.

Blog

CISA’s New AI Guidance: The Leadership Imperative for OT Supply Chain Security

CISA’s new AI guidance raises the bar for OT supply chain security. Learn what critical infrastructure leaders must do to vet AI vendors, govern risk, and continuously validate cyber hygiene.

Blog

Ho-Ho-Hold On: CISO Steve Cobb Shares Cyber Santa’s Guide to Safe Holiday Shopping

SecurityScorecard CISO Steve Cobb, CyberSanta, joined FOX Houston to share crucial guidance on spotting and avoiding online scams during the holiday shopping rush, including red flags to avoid and how to respond if you think you’ve been scammed.

CISO

Blog

Proactive TPRM: How To Automate Vendor Risk Management with SecurityScorecard and ServiceNow

Learn how the ServiceNow and SecurityScorecard integration automates Third-Party Risk Management (TPRM) with real-time breach intelligence.

Podcasts

How to Protect Yourself Against Holiday Scammers: Mike Centrella on Cybercrime Magazine Podcast

In Episode 1 of Cybercrime Magazine’s podcast series with SecurityScorecard, Head of Public Policy Mike Centrella joins podcast host Charlie Osborne and Eastman CISO Adam Keown to explore safe holiday shopping, avoiding scams, and how to build cyber resilience this season.

Blog

Canada’s Warning on Critical Infrastructure Threats Underscores a Growing North American Challenge

Canada’s warning on cyber threats to critical infrastructure signals a broader North American risk as systems grow more interconnected. SecurityScorecard’s Head of Public Policy, Mike Centrella, argues this underscores the urgent need for visibility into third-party and ICS/OT vulnerabilities.

Blog

How To Translate Cyber Risk for the C-Suite with Diligent and SecurityScorecard

See how SecurityScorecard and Diligent give board members clear, continuous visibility into cyber risk and vendor security scores.

Blog

How CMMC 2.0 Sets a New Standard for Cyber Readiness Across the Defense Industrial Base

Learn how CMMC 2.0 changes cybersecurity requirements for U.S. defense contractors and their supply chains. Discover how ratings, real‑time third-party risk management (TPRM), and MAX help prepare for audits and sustain continuous compliance.\r\n

Blog

Dr. Aleksandr Yampolskiy’s Advice to Columbia University’s Future Cyber Leaders

SecurityScorecard CEO and Co-Founder Dr. Aleksandr Yampolskiy welcomed students from the Columbia University Technology Management Graduate Program to SecurityScorecard’s headquarters for a candid discussion on entrepreneurship, cyber risk, product-market fit, and building enduring companies.

Blog

Why Customers Choose SecurityScorecard over Black Kite

Compare SecurityScorecard and Black Kite across transparency, data correction speed, integration ecosystem, and professional services. See why organizations choose SecurityScorecard.

Blog

Why Customers Choose SecurityScorecard over Upguard

See how SecurityScorecard compares to UpGuard on AI, data accuracy, integrations, and continuous monitoring. Learn why top organizations choose SecurityScorecard.

Blog

Why Customers Choose SecurityScorecard over Bitsight

Explore why leading organizations choose SecurityScorecard over Bitsight for cybersecurity ratings, data accuracy, and real-time threat monitoring. Discover the platform differences that matter most.

Blog

SecurityScorecard In The News November 2025

Catch up on SecurityScorecard press coverage from November 2025, including TV and podcast interviews, STRIKE Threat Intelligence team research on Operation WrtHug, and global media commentary across North America, EMEA, and APAC covering supply chain cyber risk, router exploitation campaigns, and breaches.

Blog

Bolstering Supply Chain Security with Enhanced Japanese Language Support

SecurityScorecard has significantly expanded Japanese language support across key areas of the platform.

Blog

SecurityScorecard Applauds House Passage of the PILLAR Act as a Milestone for National Cyber Resilience

The U.S. House of Representatives has officially passed the PILLAR Act, a landmark effort aimed at strengthening America’s cyber resilience across federal, state, local, tribal, and territorial (SLTT) partners. SecurityScorecard is proud to see growing bipartisan and industry support for a bill that prioritizes continuous… Read More

Blog

What Is HTTPS and Why Is It Essential for Cybersecurity?

What Is HTTPS? Learn about secure web protocols, SSL certificates, encryption best practices, and emerging cybersecurity threats.

Blog

How SecurityScorecard Enhances AuditBoard’s RiskOversight and TPRM

Learn how SecurityScorecard integrates with AuditBoard to give GRC teams unified visibility into both vendor risk and internal cyber health, driving continuous, audit-ready compliance.

Third-Party Risk Management

Resources

Risky Bulletin: Sha1-Hulud npm worm returns, with destructive behavior

Learn more in this resource.

STRIKE News

Blog

How Global Enterprises Use GRC Platforms to Translate Security Ratings Into Business Risk

Learn how businesses use SecurityScorecard to convert security ratings into quantified business impact by integrating with AuditBoard, Diligent, ServiceNow, LogicGate, or Archer.

Blog

How GRC Professionals Can Integrate SecurityScorecard into Every Phase of TPRM Programs

Learn how GRC professionals use SecurityScorecard with AuditBoard, Diligent, ServiceNow, LogicGate, Process Unity or Archer to evolve third-party risk management programs from discrete, periodic checks into always-on, automated risk monitoring engines. This GRC Manager’s Guide outlines practical steps for enhancing TPRM.

Third-Party Risk Management