In The News

Bitsight report underscores a dire need for UK financial organizations to bolster cybersecurity, addressing over 100,000 exposed industrial control systems worldwide, which pose a significant threat to both digital security and physical infrastructures like power grids and water systems.

Bitsight affirms businesses with an incident response team have faced $2.66 million lower breach costs than organizations without one.

Bitsight is a recommended tool for empowering leaders to bridge the gap between boards, cyber leaders and CISOs.

Bitsight identifies 100,000 sensors, actuators, switches, building management systems and automatic tank gauges that were all internet-connected and ready to be tampered with.

In this Dark Reading News Desk segment, BitSight's Gregory Keshian discusses external attack surface management and security performance management.

MGM Resorts International disclosed that it was the victim of a cyberattack, which is currently under investigation by the SEC and the company. Moody’s Investors Service called the incident “credit negative” for MGM due to potential loss of revenue, reputational risk, remediation and investigation costs; Bitsight gave MGM Resorts a grade of “F” for patching cadence.

More than 100,000 industrial control systems (ICS) have been found exposed online without any authentication required to access them, leaving them vulnerable to attack.

In recent news, it has come to light that several critical systems have been left exposed, putting power, traffic, and water at risk. This revelation has raised concerns about the security of these essential services and the potential consequences of a cyberattack.

Stephen Boyer, co-founder and CTO at BitSight, is quoted about the intersection of generative AI and cybersecurity.

Organizations are remediating MOVEit vulnerabilities 21 times faster compared to other vulnerabilities, according to research by Bitsight.

Despite the growing victim count, vulnerable orgs are doing a decent job at remediating MOVEit bugs, according to cybersecurity ratings company Bitsight.

A newly discovered, high-severity flaw in a legacy Internet protocol used by various enterprise products can allow for attackers to amplify distributed denial-of-service (DDoS) attacks up to 2,200 times — one of the largest amplification attacks ever recorded, researchers from Bitsight and Curesec have found.

Attackers have been leveraging the vulnerability to increase the UDP response size of targeted servers to a maximum amplification factor of 2,200X, according to a report from BitSight, which jointly discovered the bug with Curesec.

A high-severity vulnerability in a legacy internet protocol could lead to massive denial-of-service amplification attacks around the world at more than 2,000 organizations, researchers from BitSight and Curesec said Tuesday.

Internet protocol vulnerability opens door to ‘massive’ DoS amplification attacks Researchers have discovered a high-severity vulnerability in a legacy internet protocol which they warned could be used to launch “massive” denial-of-service (DoS) attacks capable of knocking services offline.