Public Disclosure Findings Ingrid The Public Disclosures risk category provides information related to possible incidents of undesirable access to a company’s data, including breaches, general security incidents, and other disclosures. Finding Details To get the source and see what happened: Select the Link in the highlights to the right of the Security Ratings Changes panel [ Vendor Risk ➔ Overview]. Select the Details button in the Public Disclosures section of the Rating Details page. The Rating Details page includes the following fields: Navigation Options SPM App: Organization ➔ Rating Details CM App: Vendor Risk ➔ Rating Details Insurance App: Client Risk ➔ Rating Details Field Description Category The type of security incident. See: Breach Security Incident Types General Security Incident Types Other Disclosure Types Effective Date The date when a Security Incident event was recorded in the Bitsight platform. Origin Indicates this company was impacted by a multiparty security incident and whether they were directly or indirectly targeted: Direct: The original target of the attacker, which is directly impacted by the event. Indirect: A third party of the targeted company. It is collaterally impacted by the event. Public Discovery [Date] The earliest date when information pertaining to the security incident or self-discovery date became publicly available or when affected parties were notified. Severity The severity of the Security Incident, which is determined by the number of points lost from the rating. October 29, 2024: Rating Details navigation instructions for the SPM app moved from Risks to Organization. October 19, 2023: Defined Security Incident severity and linked to resource. December 16, 2022: Get source and see what happened. Related articles Security Incidents Risk Vector Public Disclosures Risk Category How is the Security Incidents Risk Vector Assessed? Rating Details GET: Public Disclosures in Portfolio Feedback 0 comments Please sign in to leave a comment.