Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Risk Management

7 Best Practices for Effective Third-Party Cyber Risk Management

While the digital world provides many benefits, there are also various risks involved within the third-party risk category. Also, the category of the risks can be quite long i.e. financial, environmental, security risk and reputational. Firms are often required to open their network and share data related to the company, employees, customers etc. which puts them at significant risk of cybersecurity issues, breaches and loss of sensitive data.

What is a Brute Force Attack: How it Works and How to Prevent it

Brute force attacks are nothing new in cybersecurity. As far back as 2015 (eons ago, in technology terms) the global coffee chain Dunkin’ Donuts suffered a brute force attack that targeted nearly 20,000 of its customers. In this attack, cyber attackers used brute force to get unauthorized access to the accounts of more than 19,000 users and steal their money. Following the incident, Dunkin’ Donuts was slapped with a lawsuit, where it ended up paying more than $500,000 dollars in a settlement.

How to Secure Personally Identifiable Information (PII)

PII, or Personally Identifiable Information, is any information that directly or indirectly identifies an individual, such as name, address, payment information, or contact information. The U.S. The Department of Homeland Security defines a second category of PII: Sensitive PII, which includes Social Security Numbers, driver’s license numbers, Alien Registration numbers, financial or medical records, biometrics, and criminal history.

3 Ways to take your Third- and Fourth-Party Risk Management to the Next Level with Automatic Vendor Detection

Vendors are a key part of every business and, therefore, every organization’s security. Yet, one of the biggest challenges for security and third-party risk management teams is tracking down their vendors. It’s no wonder that 65% of organizations don’t know which third parties have access to their most sensitive data. On top of that, vendor risk management teams need to worry about who their vendors’ vendors are – namely their fourth parties.

Understanding the Cybersecurity Risks Confronting Consumer Packaged Goods (CPG) Organisations

When was the last time you purchased a product that was in a container? If you are a typical consumer, you probably have done so in the last few days. There is an entire industry that focuses on these containers. Consumer Packaged Goods (CPG) is an industry term for merchandise that is used and replaced on a frequent basis.

Controls & Risk: Two Sides of the Same Coin

They’ve attacked hundreds of companies and government agencies leveraging just one software update vulnerability. They’ve triggered nationwide gas shortages and price surges all from one compromised password. And they’ve even poisoned public water supplies after INFILTRATING… an unused computer running on Windows 7 with no firewalls and an old password.

SecurityScorecard Acquires LIFARS; Empowers Orgs w/ View of Cyber Risk & Path to Cyber Resilience

Watch a video message from Aleksandr Yampolskiy, SecurityScorecard CEO & Co-Founder and Ondrej Krehel, LIFARS' CEO & Founder, about the customer benefits of this winning combination.

Life moves fast. Cyber threats move even faster.

Our world is changing rapidly. More than ever, organizations are reliant on digital technologies to do business. Cyber threats continue to evolve as adversaries seek to exploit digital connections for financial gain. Today, SecurityScorecard has announced the acquisition of LIFARS, a global leader in digital forensics, incident response, ransomware mitigation and cyber resiliency services.