BITSIGHT SECURITY RATINGS BLOG

Read about the latest cybersecurity news and get advice on third-party vendor risk management, reporting cybersecurity to the Board, managing cyber risks, benchmarking security performance, and more.

Filter by Topic

Filter by Date

What is Network Segmentation Cyber Security and is it Right for You?

These days, we often hear the word “quarantine” in everyday conversations--but quarantining takes on a different meaning when it comes to protecting your network. 

Often, when we discuss quarantining from a cyber security perspective...

READ MORE »

Enabling Global Investors To Make Better Risk Decisions

Cybersecurity is a critical risk that can materially impact a company’s bottom line. Unfortunately, investors are largely in the dark when it comes to understanding the cybersecurity of the companies in which they invest.

READ MORE »

TLS/SSL Management Issues Increase Healthcare Ransomware Risk

Recent BitSight research shows that 76% of healthcare organizations may be at increased risk of ransomware attacks due to poor TLS/SSL configuration management.

TLS/SSL certificate and configuration management presents a considerable...

READ MORE »

What is an Attack Vector and How Can You Mitigate the Risk they Pose?

Today’s opportunistic hackers are seasoned professionals who are getting more adept at exploiting your organization’s digital attack surface. To do this they employ a variety of attack vectors.

READ MORE »

5 Things to Include on Your Cloud Cyber Security Audit Checklist

To protect your organization against cyber security risks, it’s important to have a cyber risk management program in place. But does your organization’s program take into consideration its entire attack surface – including the cloud?

READ MORE »

Poor Patching Cadence Correlated To Healthcare Ransomware Risk

Recent BitSight research shows healthcare organizations that display poor patching cadence can be up to 7x more likely to experience ransomware. 

Ransomware attacks on Scripps Health in San Diego, Ireland’s national health service, and...

READ MORE »

4 Best Practices for Supply Chain Cyber Risk Management

Cyber risk management should be a priority for any organization. And while there are many measures your business can take to reduce cybersecurity risk across the enterprise, how do you discover and remediate unknown risks that may be...

READ MORE »

Why Cyber Risk Aggregation is Important to Your Organization’s Security

A single unauthorized device being used on your network. An unsanctioned application someone’s accessing from their non-secure home PC. A small vendor with a seemingly insignificant vulnerability. 

All of these are seemingly small...

READ MORE »

What Can Ransomware Do? The Devastating Impacts and How You Can Protect Your Organization

Ransomware is rapidly becoming the most common form of cyberattack. According to the Verizon 2021 Data Breach Investigations Report, ransomware incidents have doubled year-over-year with headline-grabbing consequences. 

READ MORE »

Fortinet Leak Demonstrates Need For Remote Access System Patching

In early September, a threat actor leaked nearly 500,000 Fortinet VPN login names and passwords that were allegedly scraped from vulnerable devices last summer. The leaked credentials could allow hackers to access an exposed network to...

READ MORE »

The BitSight and Moody's Partnership: A New Era For Cybersecurity

Cybersecurity is one of the biggest threats to global commerce in the 21st century.

By providing data-driven insights into cybersecurity, we can empower the marketplace to make better, risk-informed decisions and create a more secure...

READ MORE »

4 Critical Success Factors for Effective Security Risk Management

With the average cost of a data breach in the U.S. reaching nearly $8.6 million, your organization can’t afford to ignore cybersecurity risk. Indeed, the need for security risk management is greater than ever. When cyber risk is managed...

READ MORE »

How Do I Know if I am at Risk for a Ransomware Attack?

It’s a question more people are asking with each passing day:

How do I know if I am at risk for a ransomware attack?Unfortunately, the fact that so many are posing this question reveals how unprepared many organizations are in the face...

READ MORE »
Load More

Get the Weekly Cybersecurity Newsletter.