Incident Response, Network Security, TDR, Vulnerability Management

BitSight report: half of entities susceptible to SSL vulnerabilities

Security ratings company BitSight Technologies published a rating of the security preparedness of organizations across six industries.

The BitSight Insights Industry Benchmark report found that energy/utility and healthcare companies are among the most vulnerable industries surveyed in the report.

BitSight discovered over half of all entities across all industries were susceptible to SSL vulnerabilities, such as Heartbleed, POODLE and FREAK.

With the emergence of IoT technologies and interoperable solutions in the energy sector, the report warned it's "increasingly important that a focus on operational technology does not overshadow the importance of information technology related threats such as a malware infection that could shut down the power grid."

Jay Jacobs, senior data scientist at BitSight, told that one of the objectives of the report was "separating out who is lucky and who is good." In order to determine industries that are best prepared for cybersecurity-related challenges, BitSight examined the occurrence of cyber underwriting decision making, unsolicited communication, compliance, diligence and user behavior.

Despite this year's OPM breach, government overall ranked high compared to other sectors. Federal government ranked second highest in the survey, only below the finance sector.

In June, the Cybersecurity Poverty Index completed by RSA found that 75 percent of security professionals believe their companies have significant cybersecurity risk exposure.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.