See Your Rating
Free Attack Surface Report
menu

BITSIGHT SECURITY RATINGS BLOG

Read about the latest cybersecurity news and get advice on third-party vendor risk management, reporting cybersecurity to the Board, managing cyber risks, benchmarking security performance, and more.

Filter by Topic

Filter by Date

Regulation & Compliance

Top 3 Most Common Cybersecurity Models Explained

Kaitlyn Graham | April 16, 2021

Security risk managers often face a lot of the same roadblocks, even if they’re managing programs of different sizes or in different industries. Basing security practices on well-known, and sometimes government-regulated cybersecurity...

READ MORE »
Vendor Risk Management

5 Tips to Improve Cyber Security Monitoring of Your Vendors

Kaitlyn Graham | April 9, 2021

What’s the biggest struggle your vendor risk managers face when establishing cyber security monitoring processes? From sudden increases in the use of third-parties by your organization, to not knowing which vendors might be impacted by the...

READ MORE »
Security Performance Management

Elevate Cyber Risk to Business Risk With Financial Quantification

Sibel Bagcilar | April 6, 2021

There’s no question about it: Being exposed to cyber risk is an inevitable part of doing business in today’s world. In fact, a recent ESG study found that 82% of organizations believe that cyber risk has increased over the past two years.

READ MORE »
Third Party Risk Management

What We Can Learn About Backdoor Attacks From WordPress

Kaitlyn Graham | April 2, 2021

Millions of organizations world-wide rely on WordPress for website creation and management. In fact, currently there are over 75 million sites that use WordPress for their operations. The Walt Disney Company, BBC America, Microsoft News,...

READ MORE »
Cyber Insurance

What You Are and Aren’t Responsible for Under Cyber Risk Insurance

Kaitlyn Graham | March 30, 2021

It’s not hard to justify why you need property insurance when you’re surrounded by your physical goods that you don’t want to be lost or damaged in your home or business. So why isn’t cybersecurity the same?

READ MORE »
Cybersecurity

BitSight Observations Into Hafnium Part Four: Who Is Still Vulnerable?

Carlo Cadet | March 23, 2021

The unfolding Hafnium attack is the latest event in the trend of cyber events. CISO’s are starting to recognize that enterprise cyber security is being redefined to mean me and all my suppliers, or  the combination of first and third party...

READ MORE »
cloud security

Common Cloud Service Providers Are Not Immune To Cyber Attacks

Kaitlyn Graham | March 18, 2021

Oftentimes, security managers fall into the trap of believing that a large or commonly used cloud services organization is safe to have connected to their network. Cloud services providers aren’t immune to bad actors targeting their...

READ MORE »
Data Breaches

BitSight Observations Into HAFNIUM Attacks, Part Three: Exploitation and Vulnerability Persists

Luis Grangeia & Paulo Pacheco | March 18, 2021

Organizations around the globe continue to address the fallout from the Microsoft Exchange Server zero-day attacks. It was recently announced that hackers may now be exploiting the vulnerabilities in Exchange to drop ransomware into...

READ MORE »
Third Party Risk Management

Why The DOD Is Making Cybersecurity Maturity Evaluation Mandatory (And Why You Should Too)

Kaitlyn Graham | March 16, 2021

Government agencies in the United States are yet again suffering from a widespread data hack, this time originating from Microsoft Exchange servers. This breach comes less than five months after the SolarWinds breach exposed vulnerabilities

READ MORE »
Load More

Subscribe to get security news and updates in your inbox.

© 2021 BitSight Technologies. All Rights Reserved. | Privacy Policy | Security | For Suppliers

Contact Us | BitSight Technologies | 111 Huntington Ave, Suite 2010, Boston, MA 02199 | +1-617-245-0469