Scorecard
- Scoring recalibration: May 20, 2026
- Scorecard: Unified risk view (Early Access)
- How SecurityScorecard calculates your scores
- Scoring recalibration: February 18, 2026
- Scoring recalibration: October 21, 2025
- Understanding the Breach Susceptibility Indicator (BSI)
Trust Center
Custom Scorecards
History
Issues Page
- Address issue findings in your Scorecard
- rsync Service Observed
- Understanding SecurityScorecard’s scanning cadence
- Learn about decayed issue findings
- Download more than 500 findings per issue
- Why are Issue findings duplicated?
Scorecard Issue Types
- Unsafe Implementation of Subresource Integrity (SRI)
- Ransomware-Susceptible Remote Access Services Exposed
- Subdomain DMARC Record Contains None Policy Findings
- Certificate Lifetime Is Longer Than Best Practices
- Certificate Without Revocation Control
- Certificate Is Expired
Compliance
Incidents
Digital Footprint
- Manage and validate your Digital Footprint
- How domain registration and DNS data are used for attribution
- Address attribution issues related to domain registration misuse
- Review your Digital Footprint
- Manage assets or request their removal
- Claim assets associated with your organization
Hierarchy
Evidence Locker
FAQ
- Phased Re-introduction of Historical Findings Data
- Let's Encrypt discontinued its OCSP service on August 6, 2025
- Message 'Every row should contain the ";" separator.' received when uploading a custom compliance framework
- Asset has a self-signed certificate finding but the certificate is signed by a public CA
- Why do I see "This IP address is no longer attributed to this scorecard" on a custom scorecard?
- Why does a ‘Medium-Severity’ CVSS finding have a lower score impact then ‘Low-Severity’ CVSS findings?