Below you will find reports with the source of “RiskRecon” Ripples Across the Risk Surface: 2021 A continued look at “ripple events” - multi-party security events - examining the size and frequency of these events, firmographics, as well as the velocity of spread of such events. (more available) Added: September 21, 2021 From Uncertainty to Understanding Using RiskRecon’s assessment information, explanatory models are built to demonstrate the value of technical information in predicting measures of risk at varying levels of greater technical insight. (more available) Added: May 11, 2021 Internt of Tip-offs (IoT) An analysis on the indicators to be derived from detecting Internet of Things (IoT) in organization’s public internet facing profiles. Added: January 26, 2021 Internet Risk Surface in the Financial Sector A deep dive into the nature of the finance sector’s public risk surface. Reviewing subsectors of the finance ecosystem, including supply chains. (more available) Added: December 9, 2020 State of Third-Party Risk Management 2020 A survey-driven report of over 150 third-party risk practitioners to understand the challenges facing their programs, the actions those professionals are taking to address the challenges, and identify success factors. (more available) Added: November 5, 2020 Internet Risk Surface in the Healthcare Sector A deep dive into the nature of the healthcare sector’s public risk surface. Reviewing subsectors of the healthcare ecosystem, including supply chains. (more available) Added: October 15, 2020 Third-Party Security Signals: Exposing the reality of unsafe network services Using RiskRecon’s telemetry of the public risk surface of thousands of organizations, this report takes a look at services which are commonly viewed as unsafe. (more available) Added: September 2, 2020 Weaving a Safer Web: The State and Significance of TLS 1.2 Support A deep dive into the state of deploying the latest TLS version (v1.2) and the use of this signal for correlating with broader public-facing risk surfaces and characteristics of firms. (more available) Added: July 6, 2020 Ripples Across the Risk Surface Using breach data from Advisen, this report defines ripple effects of breaches as the impacts on companies more than one degree of separation from the company directly affected by the breach. (more available) Added: June 10, 2020 Internet Risk Surface Report This report goes in depth into the state of Internet security, including how companies are storing data, orgation’s internet surface areas, and where exposures exist the most. (more available) Added: October 1, 2019 Cloud Risk Surface Report This publication looks into the safety of cloud and on-prem environments. Added: October 1, 2019 Risk Management Playbook The Third-Party Security Risk Management Playbook (Playbook) is the definitive study of third-party security risk management practices. Based on in-depth interviews of risk executives from 30 domestic and global firms, it reveals the real-world capabilities and practices employed to manage third-party cyber risk, distilled into 14 capabilities with 72 common, emerging, and pioneering practices. (more available) Added: November 16, 2018
Ripples Across the Risk Surface: 2021 A continued look at “ripple events” - multi-party security events - examining the size and frequency of these events, firmographics, as well as the velocity of spread of such events. (more available) Added: September 21, 2021
From Uncertainty to Understanding Using RiskRecon’s assessment information, explanatory models are built to demonstrate the value of technical information in predicting measures of risk at varying levels of greater technical insight. (more available) Added: May 11, 2021
Internt of Tip-offs (IoT) An analysis on the indicators to be derived from detecting Internet of Things (IoT) in organization’s public internet facing profiles. Added: January 26, 2021
Internet Risk Surface in the Financial Sector A deep dive into the nature of the finance sector’s public risk surface. Reviewing subsectors of the finance ecosystem, including supply chains. (more available) Added: December 9, 2020
State of Third-Party Risk Management 2020 A survey-driven report of over 150 third-party risk practitioners to understand the challenges facing their programs, the actions those professionals are taking to address the challenges, and identify success factors. (more available) Added: November 5, 2020
Internet Risk Surface in the Healthcare Sector A deep dive into the nature of the healthcare sector’s public risk surface. Reviewing subsectors of the healthcare ecosystem, including supply chains. (more available) Added: October 15, 2020
Third-Party Security Signals: Exposing the reality of unsafe network services Using RiskRecon’s telemetry of the public risk surface of thousands of organizations, this report takes a look at services which are commonly viewed as unsafe. (more available) Added: September 2, 2020
Weaving a Safer Web: The State and Significance of TLS 1.2 Support A deep dive into the state of deploying the latest TLS version (v1.2) and the use of this signal for correlating with broader public-facing risk surfaces and characteristics of firms. (more available) Added: July 6, 2020
Ripples Across the Risk Surface Using breach data from Advisen, this report defines ripple effects of breaches as the impacts on companies more than one degree of separation from the company directly affected by the breach. (more available) Added: June 10, 2020
Internet Risk Surface Report This report goes in depth into the state of Internet security, including how companies are storing data, orgation’s internet surface areas, and where exposures exist the most. (more available) Added: October 1, 2019
Cloud Risk Surface Report This publication looks into the safety of cloud and on-prem environments. Added: October 1, 2019
Risk Management Playbook The Third-Party Security Risk Management Playbook (Playbook) is the definitive study of third-party security risk management practices. Based on in-depth interviews of risk executives from 30 domestic and global firms, it reveals the real-world capabilities and practices employed to manage third-party cyber risk, distilled into 14 capabilities with 72 common, emerging, and pioneering practices. (more available) Added: November 16, 2018