Slashdot: News for Nerds


Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

An Equifax For Security Risk?

chicksdaddy (814965) writes | about a year ago


chicksdaddy (814965) writes "A Boston-area startup, BitSight, has announced what they say is the first objective security risk rating system that can be used to determine how (relatively) hackable your company is.

BitSight wants to serve the same role with security risk as the “Big Three” credit rating agencies (Standard & Poor’s, Moody’s, and Fitch Group) or consumer rating firms like Experian and TransUnion, which evaluate the credit worthiness of individuals. (BitSight even appears to use the same 800-point scale favored by Experian, TransUnion and the other credit rating agencies).

The company recently secured a $24 million Series A funding round ( after emerging from NSF-sponsored research by co-founders Stephen Boyer and Nagarjuna Venna. (

BitSight Partner SecurityRating, announced on Tuesday, is a cloud based service that offers realtime ratings of organizations’ security risk based on what it calls “externally visible network behavior." In the consumer credit space, that might be new lines of credit, or a late payment to an existing lender. In security risk, it could be the presence of stolen data on a cyber criminal group’s “drop site” – a likely indicator of compromise. Systems attached to corporate domains that participate in a botnet or distributed denial of service attack (DDoS) could also bring an organization’s risk rating down."

Link to Original Source

cancel ×

1 comment

Pay to get a better rating? (1)

schwit1 (797399) | about a year ago | (#44809559)

How long before they act like the BBB and start charging for a better rating?

It might be cool if government departments were also included in the ratings. Especially after ObamaCare healthcare exchanges go online. Let's see how safe our medical records are.

It would also be nice to know who is and is not running PFS.

Check for New Comments
Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Create a Slashdot Account