<img height="1" width="1" style="display:none;" alt="" src="https://dc.ads.linkedin.com/collect/?pid=26304&amp;fmt=gif">

BITSIGHT SECURITY RATINGS BLOG

Read about the latest cybersecurity news and get advice on vendor risk management, reporting to the board, managing cyber risks, benchmarking security performance, and more.

How the State of the Union Will Affect American Information Security

In his 2015 State of the Union Address, President Barack Obama mentioned the importance of improving America's cybersecurity and what he believes it will take to make it happen. Below is a review of the most interesting statements and...

READ MORE »

2015 Information Security Predictions Round-up

It's the time of year that every media outlet talks about predictions and resolutions. We've compiled a list of the most interesting and/or relevant information security predictions for 2015 and added a few of our own, courtesy of BitSight...

READ MORE »

Are Third Parties to Blame for Poor Security Performance in the Retail Industry?

Today, we released a new study on retail industry security performance — just in time for the holiday shopping season! Considering all of the retail breaches that occurred over the last 12 months, we wanted to find out if retailers had...

READ MORE »

The Data Breach is Over... let the Phishing Begin!

Last week it was revealed that more than 53 million email addresses were stolen as part of the Home Depot breach discovered last September. Combined with the 76 million email addresses stolen in the JPMC data breach in June, we're talking...

READ MORE »

What You Can Learn from the JPMorgan Breach

Ever since the JPMorgan Chase breach was made public, companies have been watching closely to see the aftermath, the bank's course of action, and any best practices that may be developed as a result.

In this post, I've highlighted some of...

READ MORE »

Is PCI-DSS effective for security risk management?

As we noted in an earlier post, businesses and organizations are tasked with meeting the new compliance standards of the Payment Card Industry (PCI) Standards version 3.0 in the coming months. While these standards are meant to serve as a...

READ MORE »

Why Third Party Risk Questionnaires Lead To A False Sense of Security

As it appears now, the entire Target breach may be the result of a compromised heating, ventilation, and air conditioning subcontractor that had worked for Target and many other retailers.

According to KrebsonSecurity.com, “Sources close...

READ MORE »

Target Breach Investigation Shows Tangled Web of Third Party Risks

As more and more details surrounding the Target breach continue to unfold, it's becoming evident just how complicated it can be for investigators and journalists to follow the trail of evidence left behind. The latest reports suggest that...

READ MORE »

The Ripple Effect: Impact of Target’s Data Breach is Felt Throughout the Partner Ecosystem

Many of the facts surrounding the Target breach still remain unclear, even as details continue to emerge publicly. We still don’t know what the final tally of breached organizations will be, but the list keeps growing. In addition to who...

READ MORE »
Load More

Subscribe to get security news and updates in your inbox.