Adversaries with ominous names like Volt Typhoon and Dark Scorpius dominate cybersecurity discussions, yet one critical threat is often overlooked: the everyday behaviors of people within organizations. Protect your organization in 2025 with the insights gleaned from our report with Mimecast as we challenge this oversight by examining human risk in detail, exposing how it…
In 2024, as the cybersecurity landscape continues to evolve, vulnerability management is moving from a reactive approach to a more proactive stance. Traditional methods have focused on understanding and mitigating current exploits, but with threat landscapes becoming more complex, the need to anticipate future vulnerabilities is more pressing than ever. This is where the Exploit…
Cyentia Institute Elevates Cybersecurity Insights with Landmark EPSS Study: A Visual Exploration of Exploits in the Wild Leesburg, Virginia — July, 31st 2024 — We are thrilled to announce the release of our newest collaborative study, Unveiling Exploits in the Wild. This comprehensive report delves into the performance of the Exploit Prediction Scoring System (EPSS)…
Welcome to our latest exploration into the evolving landscape of Third-Party Risk Management (TPRM). The 2024 State of TPRM Report, brought to you by RiskRecon and The Cyentia Institute, delves deep into the current state and emerging trends of TPRM across various industries, offering a comprehensive look at how practices have shifted since our last…
One pivotal question echoes amongst the cyber community: “How will adversaries attack us, and what defenses should we prioritize?” This inquiry propels the industry’s quest for insights within the ever-shifting threat landscape. MITRE ATT&CK®, a beacon of knowledge, guides this journey with its repository of adversary tactics and techniques gleaned from real-world observations. However, amidst…
In a world where data is the new gold, safeguarding against cybersecurity threats has become paramount for organizations of all sizes. Yet, despite the growing awareness of cyber risks, a significant challenge remains – the lack of concrete, data-driven insights into threat events. Traditional threat event analysis often relies on anecdotes and conjecture, leaving cybersecurity…
Cyentia Institute Forges Path to Enhanced Cyber Risk Assessment with Information Risk Insights Study (IRIS) Risk Retina® Threat Event Analysis Leesburg, Virginia — August, __ 2023 — The Cyentia Institute, known for its exceptional work in cybersecurity research, proudly announces a significant leap forward in the realm of cyber risk assessment with the launch of IRIS…
Cisco, a global leader in technology solutions, and the Cyentia Institute, renowned for its data-driven cybersecurity research, proudly announce the release of Prioritization to Prediction Volume 9: Role of the known exploited vulnerability catalog in risk-based vulnerability management. This latest installment in the P2P research series delves into the intricacies of the “Cybersecurity and Infrastructure…
In today’s interconnected digital landscape, organizations are only as strong as their weakest link when it comes to cyber defenses. The alarming headlines of breaches originating from third and fourth parties serve as a constant reminder of this truth. Finance firms, in particular, understand the risks associated with these “close encounters.” Read on to learn…
In today’s interconnected business landscape, organizations heavily rely on third-party vendors to support various aspects of their operations. However, concerns about cybersecurity and the potential risks associated with these partnerships have become increasingly prevalent. To shed light on the true state of cybersecurity in business-to-business (B2B) relationships, a study titled Balancing Third-Party Risk: How Good…