Vendor Risk Management Insights


      Subscribe to our blog

      Security never sleeps. Get the most up-to-date information by subscribing to the RiskRecon blog.


      How the World Responded to SolarWinds Orion – Part 1

      On December 13, 2020, the Department of Homeland Security announced that malicious actors were actively exploiting SolarWinds Orion versions 2019.4 through 2020.2.1 ...

      Predicting third-party breach event frequency with RiskRecon cybersecurity ratings

      RiskRecon’s cybersecurity rating model strongly predicts the breach event frequency to expect from companies in different rating tiers. Based on analysis of the ...

      Rodney Cox – An Amazing Engineer Committed to Making a Big Impact

      There are a few people in this world who are here to make a really big impact through their work and who back it up every day. Rodney Cox is one of those people. He ...

      RiskRecon and CyberGRX Team Up to Provide Better Risk Outcomes

      On February 4th, 2021, RiskRecon and CyberGRX ...
      Exposed IoT Device Study

      The Internet of Tip-Offs (An IoT Security Study)

      RiskRecon is pleased to announce the release of its latest research endeavor with Cyentia Institute that examines

      The Problem with Security Questionnaires

      Security questionnaires are one of the most prevalent and recognizable tools used to gauge and manage risks in third-party IT environments. Unfortunately, the ...

      Three key questions and answers surrounding the SolarWinds Breach


      Entities Signaling to SUNBURST C2 Infrastructure

      The criminal genius of the SUNBURST campaign not only lies in its technical sophistication but also in the self-selection of entities that were compromised through ...

      Security: One-third of Companies Fail at Basic Cybersecurity

      Check out this great blog post from

      How to Overcome Digital Risk in Healthcare

      As we wrap up our blog series on the digital risk surface of healthcare firms, it is important to note ...