NY-SECURITYSCORECARD
SecurityScorecard, the global leader in cybersecurity ratings, today announced the results of its new report, Addressing the Trust Deficit In Critical Infrastructure, which revealed 48% of critical manufacturing organizations ranked “C,” “D,” or “F” on SecurityScorecard’s security ratings platform. Published during the World Economic Forum (WEF) Annual Meeting, the report analyzed the current state of cyber resilience in the critical infrastructure sectors such as Energy, Chemical, Healthcare, and others, as designated by the Cybersecurity and Infrastructure Security Agency (CISA). Organizations with an “A” security rating are 7.7 times less likely to sustain a breach than those with an “F” rating.
“Security ratings are a trusted barometer of cyber resilience and the time is now for policymakers and organizations to make cyber risk measurement mandatory,” said Aleksandr Yampolskiy, co-founder and CEO of SecurityScorecard. “Cyberattacks in the last 10 years have gotten much worse, more complex, and increasingly have targeted critical infrastructure, thereby undermining the public’s trust in the cyber resilience of our global economy.”
SecurityScorecard provides comprehensive security ratings, automated assessments, and guidance from industry experts, providing a patented and easy-to-understand A-F graded scorecards for improved communication, effective compliance reporting, and more informed decision-making.
According to the World Economic Forum, only 19% of cyber leaders feel confident that their organizations are cyber resilient. SecurityScorecard recently joined the World Economic Forum Global Innovators Community, contributing to WEF’s Centre for Cybersecurity’s initiative to address systemic challenges, improve trust, and build cyber resilience. Yampolskiy is attending the WEF Annual Meeting in Davos to engage with the world’s foremost public- and private-sector leaders on mitigating global cyber risk, including within critical infrastructure.
Critical Manufacturing Patching Cadence Falls Amid Escalating Attack Cadence
Cyber incidents affecting critical infrastructure, once comparatively rare, have become far more frequent in recent years as nation-states and their proxies escalate their pursuit of geopolitical objectives. Data from the Federal Bureau of Investigation showed that 14 of the 16 sectors considered critical infrastructure by the U.S. government experienced at least one ransomware attack in 2021.
SecurityScorecard assessed these industries to measure their current state of cyber resilience. It found that critical manufacturing is highly vulnerable based on analysis of all organizations under that category in The Forbes Global 2000 list. SecurityScorecard considers 10 factors when developing an organization’s security rating. Of those 10, the patching cadence ‘factor’ for critical manufacturing experienced a significant drop from 2021 to 2022, moving from 88 (B) to 76 (C).
High and Medium-Severity CVEs Strain Resources
The decline in patching is likely due to an increased volume of vulnerabilities. Critical manufacturing experienced a 38% year-over-year increase in high severity vulnerabilities. In 2022 alone, 76% of critical manufacturing organizations have high and medium-severity CVEs.
These CVEs may, in some cases, facilitate ransomware groups’ targeting of organizations in the sector. Manufacturers experienced an increase in malware infections from 2021 to 2022. In 2022, 37% of critical manufacturing organizations had malware infections.
“While investing in more technology might seem burdensome to resource-constrained critical infrastructure operators, the reality is that cybersecurity ratings technology is extremely cost-effective, especially when you consider the catastrophic cost of a breach is $9.44 million on average for U.S. organizations,” continued Yampolskiy. “By leveraging security ratings, these organizations have a simple way to build resilience and make more informed decisions to strengthen their cyber defenses by confidently measuring risk and quantifying the trustworthiness of their partners, contractors, third-and fourth-party vendors, and supply chains.”
To view the full research paper, please visit: https://resources.securityscorecard.com/davos-2023/addressing-the-trust-deficit
About SecurityScorecard
Funded by world-class investors including Evolution Equity Partners, Silver Lake Waterman, Sequoia Capital, GV, Riverwood Capital, and others, SecurityScorecard is the global leader in cybersecurity ratings with more than 12 million companies continuously rated. Founded in 2013 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard's patented rating technology is used by over 30,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, cyber insurance underwriting, and regulatory oversight. SecurityScorecard is the first cybersecurity ratings company to offer digital forensics and incident response services, providing a 360-degree approach to security prevention and response for its worldwide customer and partner base. SecurityScorecard continues to make the world a safer place by transforming the way companies understand, improve and communicate cybersecurity risk to their boards, employees and vendors. Every organization has the universal right to their trusted and transparent Instant SecurityScorecard rating. For more information, visit securityscorecard.com or connect with us on LinkedIn.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20230117005416/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
IQM’s First Quantum Computer in Asia-Pacific Goes Online, Set to Open Office in Seoul13.5.2025 11:09:00 CEST | Press release
The expansion builds on IQM’s first quantum computer in the Asia-Pacific region (APAC) installed at Chungbuk National University (CBNU) in South Korea. This marks a remarkable milestone by IQM for delivering and installing the system at CBNU in four months. In fostering growth and innovation in key markets, IQM aims to advance quantum technology in Korea through collaboration with key players. With the appointment of Youngsim Kim, as country manager, the Seoul office will open in June 2025, making it IQM's second office in APAC after Singapore. IQM Quantum Computers, a global leader in superconducting quantum computers, has announced expanding its presence in Asia-Pacific with a new office opening in South Korea in June 2025, following the installation of its first quantum system at Chungbuk National University (CBNU). This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250513710683/en/ From left to right: Ben Lee and Mikko Välim
Ink Innovation and Riyadh Air Partner to Rethink Experience for Digital-first Travellers13.5.2025 11:06:00 CEST | Press release
Riyadh Air, the digitally native national carrier of Saudi Arabia, is joining forces with Ink Innovation to deliver a flexible and convenient air travel experience. Together, they aim to redefine standards of delivery management in a world influenced by e-commerce, cloud computing, and evolving traveller expectations. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250513792260/en/ Tony Douglas, CEO of Riyadh Air, said: “Ink is a key partner to Riyadh Air and continues to foster innovation at every step of the journey. As a like-minded tech-innovator, it is an ideal collaborator as we aim to provide an outstanding digital experience for our guests at their first travel touchpoint.” Moving beyond legacy systems Airlines have long struggled with outdated infrastructure—systems built to move passengers from point A to B, but not to delight or adapt. This partnership aims to change that. Riyadh Air and Ink are implementing a full
Green Street Expands Private Market Coverage with European Self-Storage Data and Analytics13.5.2025 10:00:00 CEST | Press release
Firm releases comprehensive macro insights into the European self-storage sector, via its latest Outlook report Green Street, the foremost provider of commercial real estate intelligence and insights, has expanded its private market research coverage to the European self-storage sector. Utilising 5 years of forecasted insights and 10 years of historical data, Green Street’s new Self-Storage Outlook focuses on investment opportunities available in 30 European cities. “Living quarters are becoming more compact and storage space is being cut back in urban developments, necessitating off-premises storage solutions for residential occupiers. Additionally, approximately 40% of the business customer base consists of small-to-medium-sized entities, particularly online retailers in the region,” said Marie Dormeuil, Head of European Market Analytics. “The growth in real spending on storable goods is expected to increase at 2% per annum over the next five years, supporting healthy demand growth.”
Oracle and Infobip Enhance Partnership to Deliver Global Conversational Experiences13.5.2025 10:00:00 CEST | Press release
Global cloud communications platform Infobip today announced that it has enhanced its partnership with Oracle to bring conversational experiences to businesses and brands globally. The new integration enables Infobip and Oracle customers and partners to access Infobip's omnichannel services through Oracle Integration. Customers increasingly expect omnichannel communications, but integrating and managing new channels can be time-consuming, requiring complex development, deployment, and organizational processes. Infobip’s new Omnichannel Messaging Adapter for Oracle Integration addresses this challenge byenabling all types of businesses to work with and manage omnichannel messaging channels involving Oracle and third-party solutions, including WhatsApp and RCS. The solution deploys quickly, reducing time to market. In addition, Infobip has provided a prebuilt use case – or Accelerator – for Oracle’s contact center solution, Oracle B2C Service. This Accelerator is a flexible solution that
Galeria Teams Up With Blue Yonder to Enhance the In-Store and Online Customer Shopping Experience13.5.2025 10:00:00 CEST | Press release
Germany's iconic department store chain deploys Blue Yonder’s AI-driven demand and replenishment capabilities to strengthen its commitment to quality and convenience In today's rapidly evolving retail landscape, consumers increasingly seek personalized shopping experiences tailored to meet their specific demand requirements. For omni-channel retailers, success depends on seamlessly delivering high-quality products and excellent customer service powered by advanced technology that effectively supports a demand-driven, omni-channel strategy. That is why Galeria, Germany´s leading department store chain, has chosen to deploy Blue Yonder’s demand and replenishment capabilities to strengthen its supply chain and enhance operational efficiency. This strategic investment enables the retailer to deliver a highly responsive and seamless shopping experience across both in-store and online channels, reinforcing Galeria's commitment to quality and convenience. Galeria previously relied mainly on m
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom