NY-SECURITYSCORECARD
SecurityScorecard, the global leader in cybersecurity ratings, today announced the results of its new report, Addressing the Trust Deficit In Critical Infrastructure, which revealed 48% of critical manufacturing organizations ranked “C,” “D,” or “F” on SecurityScorecard’s security ratings platform. Published during the World Economic Forum (WEF) Annual Meeting, the report analyzed the current state of cyber resilience in the critical infrastructure sectors such as Energy, Chemical, Healthcare, and others, as designated by the Cybersecurity and Infrastructure Security Agency (CISA). Organizations with an “A” security rating are 7.7 times less likely to sustain a breach than those with an “F” rating.
“Security ratings are a trusted barometer of cyber resilience and the time is now for policymakers and organizations to make cyber risk measurement mandatory,” said Aleksandr Yampolskiy, co-founder and CEO of SecurityScorecard. “Cyberattacks in the last 10 years have gotten much worse, more complex, and increasingly have targeted critical infrastructure, thereby undermining the public’s trust in the cyber resilience of our global economy.”
SecurityScorecard provides comprehensive security ratings, automated assessments, and guidance from industry experts, providing a patented and easy-to-understand A-F graded scorecards for improved communication, effective compliance reporting, and more informed decision-making.
According to the World Economic Forum, only 19% of cyber leaders feel confident that their organizations are cyber resilient. SecurityScorecard recently joined the World Economic Forum Global Innovators Community, contributing to WEF’s Centre for Cybersecurity’s initiative to address systemic challenges, improve trust, and build cyber resilience. Yampolskiy is attending the WEF Annual Meeting in Davos to engage with the world’s foremost public- and private-sector leaders on mitigating global cyber risk, including within critical infrastructure.
Critical Manufacturing Patching Cadence Falls Amid Escalating Attack Cadence
Cyber incidents affecting critical infrastructure, once comparatively rare, have become far more frequent in recent years as nation-states and their proxies escalate their pursuit of geopolitical objectives. Data from the Federal Bureau of Investigation showed that 14 of the 16 sectors considered critical infrastructure by the U.S. government experienced at least one ransomware attack in 2021.
SecurityScorecard assessed these industries to measure their current state of cyber resilience. It found that critical manufacturing is highly vulnerable based on analysis of all organizations under that category in The Forbes Global 2000 list. SecurityScorecard considers 10 factors when developing an organization’s security rating. Of those 10, the patching cadence ‘factor’ for critical manufacturing experienced a significant drop from 2021 to 2022, moving from 88 (B) to 76 (C).
High and Medium-Severity CVEs Strain Resources
The decline in patching is likely due to an increased volume of vulnerabilities. Critical manufacturing experienced a 38% year-over-year increase in high severity vulnerabilities. In 2022 alone, 76% of critical manufacturing organizations have high and medium-severity CVEs.
These CVEs may, in some cases, facilitate ransomware groups’ targeting of organizations in the sector. Manufacturers experienced an increase in malware infections from 2021 to 2022. In 2022, 37% of critical manufacturing organizations had malware infections.
“While investing in more technology might seem burdensome to resource-constrained critical infrastructure operators, the reality is that cybersecurity ratings technology is extremely cost-effective, especially when you consider the catastrophic cost of a breach is $9.44 million on average for U.S. organizations,” continued Yampolskiy. “By leveraging security ratings, these organizations have a simple way to build resilience and make more informed decisions to strengthen their cyber defenses by confidently measuring risk and quantifying the trustworthiness of their partners, contractors, third-and fourth-party vendors, and supply chains.”
To view the full research paper, please visit: https://resources.securityscorecard.com/davos-2023/addressing-the-trust-deficit
About SecurityScorecard
Funded by world-class investors including Evolution Equity Partners, Silver Lake Waterman, Sequoia Capital, GV, Riverwood Capital, and others, SecurityScorecard is the global leader in cybersecurity ratings with more than 12 million companies continuously rated. Founded in 2013 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard's patented rating technology is used by over 30,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, cyber insurance underwriting, and regulatory oversight. SecurityScorecard is the first cybersecurity ratings company to offer digital forensics and incident response services, providing a 360-degree approach to security prevention and response for its worldwide customer and partner base. SecurityScorecard continues to make the world a safer place by transforming the way companies understand, improve and communicate cybersecurity risk to their boards, employees and vendors. Every organization has the universal right to their trusted and transparent Instant SecurityScorecard rating. For more information, visit securityscorecard.com or connect with us on LinkedIn.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20230117005416/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Andersen Consulting udvider sit udbud af humankapital med tilføjelsen af Jakarta Consulting Group16.1.2026 21:09:00 CET | Pressemeddelelse
Andersen Consulting styrker sine kompetencer gennem en samarbejdsaftale med Jakarta Consulting Group (JCG), der er et rådgivningsfirma, som er kendt for sin ekspertise inden for organisatorisk transformation, humankapitalstrategi og ledelsesudvikling. Med hovedsæde i Indonesien har JCG rådgivet virksomheder inden for brancher som ejendom, minedrift og produktion gennem strategisk og kulturel transformation. Med kerneydelser, der omfatter virksomheds- og administrationsrådgivning, hr-rådgivning, vurdering samt virksomheds- og ledelsestræning, er virksomheden kendt for sin evne til at transformere virksomheder og ledere med agilitet, kulturel intelligens og handlingsorienterede løsninger. "Vi har altid ment, at bæredygtig transformation begynder med mennesker – når ledere udvikler sig, følger organisationer med," siger Patricia Susanto, CEO for Jakarta Consulting Group. "Ved at kombinere Andersen Consultings globale perspektiv med vores regionale indsigt kan vi tilbyde kunderne mere helh
ClickHouse Raises $400M Series D Led by Dragoneer to Accelerate Expansion Across Analytics and AI Infrastructure16.1.2026 15:30:00 CET | Press release
Company acquires Langfuse to enter LLM observability and introduces a native Postgres service to unify transactional and analytical workloads ClickHouse, a leader in real-time analytics, data warehousing, observability, and AI/ML, announced today the close of its Series D financing, raising $400 million. The round was led by Dragoneer Investment Group, with participation from Bessemer Venture Partners, GIC, Index Ventures, Khosla Ventures, Lightspeed Venture Partners, accounts advised by T. Rowe Price Associates, Inc., and WCM Investment Management. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260116008883/en/ ClickHouse Co-Founders (left to right): Yury Izrailevsky, Aaron Katz, Alexey Milovidov The financing follows a period of sustained, accelerating growth for ClickHouse. The company now serves more than 3,000 customers on its fully managed service, ClickHouse Cloud, with ARR growing more than 250 percent year over year
Qualcomm Announces Quarterly Cash Dividend16.1.2026 15:00:00 CET | Press release
Qualcomm Incorporated (NASDAQ: QCOM) today announced a quarterly cash dividend of $0.89 per common share, payable on March 26, 2026, to stockholders of record at the close of business on March 5, 2026. About Qualcomm Qualcomm relentlessly innovates to deliver intelligent computing everywhere, helping the world tackle some of its most important challenges. Building on our 40 years of technology leadership in creating era-defining breakthroughs, we deliver a broad portfolio of solutions built with our leading-edge AI, high-performance, low-power computing, and unrivaled connectivity. Our Snapdragon® platforms power extraordinary consumer experiences, and our Qualcomm Dragonwing™ products empower businesses and industries to scale to new heights. Together with our ecosystem partners, we enable next-generation digital transformation to enrich lives, improve businesses, and advance societies. At Qualcomm, we are engineering human progress. Qualcomm Incorporated includes our licensing busine
Nominations open for The MIDORI Prize for Biodiversity 2026 by AEON Environmental Foundation and the Secretariat of the Convention on Biological Diversity16.1.2026 09:00:00 CET | Press release
The MIDORI Prize recognizes outstanding individual contributions to the conservation and sustainable use of biodiversityThe unique prize contributes to raising public awareness of the essential role biodiversity plays for human well-being and in addressing global challenges such as climate changeThe Award Ceremony and Award Winners Forum will be held on 27 August 2026 in Tokyo, Japan The call for nominations for The MIDORI Prize for Biodiversity 2026 is open from 2 February to 31 March 2026. Nominations are invited from members of the public through the AEON Environmental Foundation website at https://www.aeonkankyozaidan.or.jp/en/prize/. The Award Ceremony and Award Winners Forum of the 2026 edition of the Prize will be held on 27 August in Tokyo, Japan. These events will contribute to the global mobilization around COP 17 of the Convention on Biological Diversity (CBD), which will take place in Yerevan (Armenia) under the theme of “Taking action for Nature”. Co-organized by the AEON
Tigo Energy and Weco Certify MLPE-Inverter Compatibility to Simplify PV System Design16.1.2026 06:00:00 CET | Press release
Tigo MLPE technology and hybrid inverters of Italian manufacturer Weco are now certified to work together to enhance design flexibility, system performance, and seamless integration. Tigo Energy, Inc. (NASDAQ: TYGO) (“Tigo” or “Company”), a leading provider of intelligent solar and energy software solutions, today announced the Company has signed a certificate of compatibility with Weco S.r.l., documenting the compatibility between Tigo Flex MLPE products and hybrid solar inverters from Weco. The certification covers certain single-phase and three-phase Weco products and members of the Tigo TS4-A and TS4-X product families, when properly designed and installed. Together, these products are designed to deliver high-quality, enhanced value through a system that generates and manages solar energy more efficiently and delivers the features residential energy customers demand. “The compatibility between our inverter solutions and Tigo optimizers represents a significant step forward for the
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom