SecurityScorecard

SecurityScorecard AI-powered, threat-informed third-party risk management. Continuous visibility and predictive intelligence to secure global supply chains.

SecurityScorecard leads the way in Supply Chain Detection and Response, empowering organizations to swiftly manage and mitigate critical third-party risks.

06/03/2026

A surveillance camera should not become a pathway into critical infrastructure.

But that is exactly the type of exposure SecurityScorecard researchers identified using Driftnet in our latest research report.

Inside one municipal utility environment, researchers found:

πŸ“Ή 30 instances of Dahua and Hikvision surveillance equipment
⚠️ Exposed ICS and SCADA-related services
⚠️ Weak encryption across hundreds of internet-facing systems
⚠️ Consumer devices operating near operational infrastructure

Many IP cameras ship with limited security controls and can be leveraged for:

β€’ Man-in-the-Middle attacks
β€’ Malware staging
β€’ Distributed Denial-of-Service activity
β€’ Lateral movement into operational environments

The camera is rarely the final target. It is often the entry point.

Driftnet helps SecurityScorecard uncover hidden exposure across internet-facing infrastructure before attackers operationalize it.

πŸ‘‰ Read the report and find out how Driftnet delivers the visibility organizations need to move from reactive security to continuous, threat-informed defense: https://securityscorecard.com/resources/reports/securityscorecards-new-driftnet-engine-reveals-americas-small-town-surveillance-blind-spot/?utm_campaign=&utm_content=&utm_medium=social&utm_source=facebook

ICYMI: On Monday at the Gartner Security & Risk Management Summit, our very own Wade Lance took the stage alongside Eric...
06/03/2026

ICYMI: On Monday at the Gartner Security & Risk Management Summit, our very own Wade Lance took the stage alongside Eric Elliott from Nissan for an incredible case study session: β€œBuilding a Threat-Informed TPRM Program at Scale.”

They dove deep into how Nissan modernized its third-party risk management by moving away from static, manual assessments and pivoting toward a dynamic, threat-informed approach.

πŸ’‘ Key Takeaways from the Session:
How leveraging AI and automation drastically reduces the manual effort traditionally required to track vendor risk.

Using real-time threat intelligence to cut through the noise and laser-focus on the critical risks that actually matter.

Moving from passive compliance checking to active, operational defense across the entire vendor ecosystem.

A huge thank you to everyone who joined us!

We're still here at the Summit until 2:00 PM today! Come check us out at Booth #434.

06/03/2026

πŸ“£ SecurityScorecard is partnering with the Louisiana Lieutenant Governor and the Department of Culture, Recreation & Tourism to strengthen cyber resilience across critical state agencies.

πŸ“š From tourism to libraries, these public services rely on complex vendor ecosystems. With TITAN AI, teams can identify exposures earlier, prioritize what matters, and take action before issues escalate.

πŸ›οΈ As Lieutenant Governor Billy Nungesser noted in a statement: "With the volume of personal data moving through our systems and partners, we have a duty to stay ahead of potential threats. Our partnership with SecurityScorecard strengthens our ability to safeguard personal data and ensure their information is secure and their interactions with our agencies are safe.”

πŸ‘‰ πŸ“˜ Read more on the news here: https://securityscorecard.com/company/press/securityscorecard-partners-with-louisiana-lieutenant-governor-and-department-of-culture-recreation-tourism-to-strengthen-cyber-resilience-across-key-state-agencies?utm_campaign=&utm_content=&utm_medium=social&utm_source=facebook

06/02/2026

πŸŽ₯ Security teams are overwhelmed with alerts, vendor questionnaires, and fragmented risk data.

In this executive video, SecurityScorecard CEO and Co-Founder Dr. Aleksandr Yampolskiy explains how TITAN AI helps organizations move from reactive workflows to predictive, operational defense.

The video covers:
πŸ”Ž Why point-in-time assessments fail modern organizations
πŸ”Ž How TITAN AI prioritizes and correlates real-world risk
πŸ”Ž The role of AI in reducing manual TPRM processes
πŸ”Ž How TITAN Watch, TITAN Assess, and TITAN Secure work together
πŸ”Ž Why continuous monitoring matters across the supply chain

β€œThird-party risk must be continuous, AI-accelerated, and predictive.”

Watch the full executive conversation to hear how SecurityScorecard is evolving from measuring risk to helping customers actively reduce it.

🎬 Learn more:

πŸ‘‰ Watch the rest of the video on YouTube: https://youtu.be/hQCASMBLsSU
πŸ‘‰ Explore the SecurityScorecard Platform: https://securityscorecard.com/platform/?utm_campaign=&utm_content=&utm_medium=social&utm_source=facebook
πŸ‘‰ Read the TITAN AI Press Release: https://securityscorecard.com/company/press/securityscorecard-unveils-titan-ai-a-new-era-of-threat-informed-third-party-risk-management/?utm_campaign=&utm_content=&utm_medium=social&utm_source=facebook

Hong Kong's cybersecurity landscape just shifted β€” is your organization ready?The newly enforced Hong Kong's Protection ...
06/02/2026

Hong Kong's cybersecurity landscape just shifted β€” is your organization ready?

The newly enforced Hong Kong's Protection of Critical Infrastructures (Computer Systems) Bill introduces one of the most comprehensive cybersecurity frameworks in the region.

It places direct accountability on operators across energy, finance, healthcare, transport, IT, communications, and government services.

This isn't just a compliance checkbox. It's a signal of a broader global shift toward proactive cyber resilience, one that aligns with the EU NIS2 Directive and Singapore's Cybersecurity Act.

Our latest whitepaper breaks down what this means for your organization:

βœ… Who's in scope β€” and what's required
βœ… How to manage third-party and supply chain risk under the new framework
βœ… The compliance challenges operators are already facing
βœ… Practical steps to build auditable, continuous oversight programs

The penalties for non-compliance are severe. But more importantly, the risks of operating without structured governance are even greater.

πŸ“„ Read the full whitepaper to understand where your gaps might be, and how to close them before the deadline: https://securityscorecard.com/resources/research/how-to-prepare-for-hong-kongs-protection-of-critical-infrastructure-bill-in-2026/?utm_campaign=&utm_content=&utm_medium=social&utm_source=facebook

There's still time!Stop by the SecurityScorecard booth #434 to talk all things TITAN AI and threat-informed Third-Party...
06/02/2026

There's still time!

Stop by the SecurityScorecard booth #434 to talk all things TITAN AI and threat-informed Third-Party Risk Management (TPRM).

See how organizations are moving beyond static assessments and manual workflows with continuous monitoring, AI-accelerated intelligence, and real-time supply chain visibility.

And yes β€” we’ve got Lego builds at the booth too πŸ‘€

Whether you want to discuss vendor risk, supply chain resilience, or the future of AI-driven TPRM, our team would love to connect.

πŸ“ Visit SecurityScorecard at the Gartner Security & Risk Management Summit at booth #434

06/01/2026

One of the biggest challenges in cybersecurity today is not lack of data.

It’s lack of visibility into which exposures actually create operational risk.

🌐 SecurityScorecard acquired Driftnet to help solve that problem.

By bringing Driftnet’s high-fidelity internet discovery capabilities into TITAN AI, SecurityScorecard is expanding continuous, threat-informed visibility across internet-facing infrastructure and third-party ecosystems.

As attackers increasingly target supply chains and operational infrastructure, organizations need visibility that moves at the speed of the threat landscape. That's the power of Driftnet.

πŸ‘‰ Learn more about the acquisition here: https://securityscorecard.com/company/press/securityscorecard-acquires-driftnet-to-power-real-time-threat-informed-third-party-risk-management/?utm_campaign=&utm_content=&utm_medium=social&utm_source=facebook

⏰ Last chance! Later today, Wade Lance from SecurityScorecard and Eric Elliott from Nissan will take the stage at the Ga...
06/01/2026

⏰ Last chance! Later today, Wade Lance from SecurityScorecard and Eric Elliott from Nissan will take the stage at the Gartner Security & Risk Management Summit to discuss how Nissan modernized third-party risk management at scale with a more threat-informed approach.

πŸ“Š Session: A Case Study in Building a Threat-Informed TPRM Program at Scale

πŸ’‘ Learn how AI and real-time threat intelligence can help security teams reduce manual effort, prioritize critical risks, and strengthen supply chain resilience.

πŸ—“οΈ Monday, June 1 at 12 PM
πŸ“ National Harbor 11

Don’t miss this opportunity to hear directly from security leaders driving operational change in TPRM: https://www.gartner.com/en/conferences/na/security-risk-management-us

πŸš€ Heading to the Gartner Security & Risk Management Summit next week? Come see us!The SecurityScorecard team can’t wait ...
06/01/2026

πŸš€ Heading to the Gartner Security & Risk Management Summit next week? Come see us!

The SecurityScorecard team can’t wait to connect with you in National Harbor.

If you're looking to eliminate third- and fourth-party blind spots and modernize your TPRM program, we want to show you how TITAN AI is changing the game.

Make sure to add Booth #434 to your show agenda!

πŸ—“οΈ June 1-3, 2026
🏒 Ga***rd National Resort | National Harbor, MD

Don't miss out on the premier cybersecurity event of the summer. Secure your pass and register today! πŸ‘‡

πŸ”— https://www.gartner.com/en/conferences/na/security-risk-management-us

05/29/2026

⚑ In this week’s Weekly Brief: The Driftnet Edition, Brandon Torio explains why SecurityScorecard’s acquisition of Driftnet is transforming internet exposure visibility, and how new research uncovered hidden pathways between internet-connected security cameras and critical infrastructure systems in a small U.S. municipality.

β€œThat's the kind of security that really matters, the link between cybersecurity and our physical lives.”

🌐 Driftnet enables SecurityScorecard to uncover exposures that traditional internet scanning methods often miss:
πŸ”Ž 40% more internet-facing hosts identified than other leading competitors
πŸ”Ž Greater visibility into third-party attack surfaces across thousands of vendors
πŸ”Ž Discovery of hidden attack paths connecting internet-connected systems to critical services

πŸŽ₯ One of the most compelling findings from the STRIKE team's recent research: internet-connected security cameras operating within the same broader network environments as systems supporting essential municipal services.

The research demonstrates how enhanced internet scanning can reveal real-world connections between cyber risk and physical infrastructure β€” moving conversations about critical infrastructure security from theory to tangible, actionable findings.

πŸ‘‰ Learn more about SecurityScorecard's Driftnet-powered research: https://securityscorecard.com/resources/reports/securityscorecards-new-driftnet-engine-reveals-americas-small-town-surveillance-blind-spot/?utm_campaign=SSC+Weekly+Brief&utm_content=STRIKE&utm_medium=social&utm_source=facebook

Address

1140 Avenue Of The Americas/19th Floor
New York, NY
10036

Opening Hours

Monday 8:30am - 7pm
Tuesday 8:30am - 7pm
Wednesday 8:30am - 7pm
Thursday 8:30am - 7pm
Friday 8:30am - 7pm

Telephone

(800) 682-1707

Website

Alerts

Be the first to know and let us send you an email when SecurityScorecard posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Contact The Business

Send a message to SecurityScorecard:

Shortcuts

Share

Category