This article describes the Intelligence Card Extension for BitSight Technologies.
About BitSight
BitSight is a leading cyber risk rating company with a mission to "to transform how organizations evaluate risk and security performance by employing the outside-in model used by credit rating agencies."
The Bitsight extension enriches Vulnerability Cards and Malware Cards with lists of companies in your Bitsight portfolio that are subject to the vulnerability or malware shown on the Intelligence Card.
You must have commercial access to BitSight to use this extension. Please see the Getting Started With Intelligence Card Extensions page if you're interested in enabling this extension.
Extending Vulnerability Cards
For vulnerabilities tracked by Bitsight, i.e.,:
Logjam (CVE-2015-4000)
Poodle (CVE-2014-3566)
Drown (CVE-2016-0800)
Heartbleed (CVE-2014-0160)
Freak (CVE-2015-0204)
Ticketbleed (CVE-2016-9244)
This extension will show a list of companies that Bitsight has identified to be at risk (sorted by descending BitSight rating). For each company the following info will be shown:
- BitSight Rating
- Industry
- Network footprint
- Subscription Type
- Link to company profile in the BitSight Portal
Example (for Logjam vulnerability, CVE-2015-4000):
Extending Malware Cards
For malware tracked by Bitsight, this extension will show a list of companies that Bitsight has identified to be infected by the malware. For each company, the following info will be shown:
- BitSight Rating
- Industry
- Network footprint
- Subscription Type
- Link to company profile in the BitSight Portal
Example (from RevMob Malware card):
Notes
Only companies tracked within your BitSight Portfolio will be listed in the extension.