Technical Cyber Security Rating

Patch ManagementKeep software on computers and network devices up to date and capable of resisting low-level cyber attacks. Criminal hackers can take advantage of known vulnerabilities in operating systems and third-party applications if they are not properly patched or updated.

Application SecuritySecurity measures at the application level aim to prevent data or code within the app from being stolen or hijacked. Application security may include hardware, software, and procedures that identify or minimize security vulnerabilities.

CDN SecurityCompanies use content delivery networks (CDNs) — large distributed systems of servers deployed in multiple data centers across the Internet — for online libraries like JQuery. Detect vulnerabilities in services like edge caching, SSL offloading and edge routing.

Website SecurityThe main website of an organization is one of the most important assets. Detecting any code or server level vulnerabilities is crucial for a company’s reputation.

SSL/TLS StrengthThe SSL/TLS protocol encrypts internet traffic of all types, making secure internet communication (and therefore internet commerce) possible.

Credential ManagementWhen a website unintentionally reveals sensitive information to its users. Depending on the context, websites may leak all kinds of information to a potential attacker, such as usernames or financial information.

Hacktivist SharesHacktivism is the act of misusing a computer system or network for a socially or politically motivated reason. An example of hacktivism is denial of service attacks (DoS) which shut down a system to prevent customer access.

Social NetworkSocial media is part of a larger ecosystem of publicly available platforms that make up a new attack surface for threat actors to leverage.

Information DisclosureWhen a website unintentionally reveals sensitive information to its users. Depending on the context, websites may leak all kinds of information to a potential attacker, such as usernames or financial information.

Attack SummaryThe set of points on the boundary of a system, a system element, or an environment where an attacker can try to enter or extract data.

DNS HealthA DNS attack is an exploit in which an attacker takes advantage of vulnerabilities in the domain name system (DNS).

Email SecurityOpen-sourced techniques for protecting email accounts, content, and communication against unauthorized access, loss or compromise.

DDoS ResiliencyDetect malicious cyber-attacks that hackers or cybercriminals employ in order to make an online service, network resource or host machine unavailable to its intended users on the Internet.

Network SecurityAnalyze network-level problems and detect any critical ports, unprotected network devices, misconfigured firewalls, and service endpoints.

Brand MonitoringA business analytics process that monitors various channels on the web or media to gain insight about the company, brand, and anything explicitly connected to cyberspace.

IP/Domain ReputationIdentify IP addresses that send unwanted requests. Using the IP reputation list you can identify if an IP address has a bad reputation or member of a botnet.

Fraudulent ApplicationsFraudulent applications are used to hack/phish employee or customer data. This category identifies possible fraudulent or pirate mobile/desktop apps on Google Play, App Store, and pirate app stores.

Fraudulent DomainsDomains registered by fraudsters plan to launch phishing attacks, sell knock-off goods on spoofed sites, or use “typo-squatting” domains to make money off unintentional traffic for other sites.

Web RankingCisco, Alexa and Majestic track web sites and rank them according to popularity, backlinks, and references. This subcategory shows trends, page speed test results, and Web Content Accessibility Guidelines (WCAG) 2.0 parsing compliance findings.