#infosec | Security Ratings Are a Dangerous Fantasy

They don’t predict breaches, and they don’t help people make valuable business decisions or make users any safer. Security professionals don’t like security ratings, also known as cybersecurity risk scores. Partly this is because people don’t like being criticized. But mostly it’s because security ratings don’t work, and cannot work…

read more