October Update 2024

Trust Center

Start your security review
View & download sensitive information
Ask for information
Search items
ControlK

Creditsafe's Security Program is driven through supporting the delivery of business objectives by protecting the company’s reputation, safeguarding existing revenue, and supporting the generation of future revenue. Dedicated subject matter experts in our Information Security and Compliance, Security Operation Center (SOC), and Security Engineering teams are committed to ensuring that appropriate measures are taken to protect the confidentiality, integrity, and availability of information entrusted to the organisation by its customers, business partners, and stakeholders.

Security can often be misunderstood, and we therefore pride ourselves on balancing a positive security culture with a robust control environment. Therefore, our approach is to enable new and existing customers to interact with our products and services in a straightforward and secure manner.

Information security is an integral part of our operations and ingrained within our people, processes, and technologies. Systems and data are protected by a comprehensive ISO 27001 certified security program, and our responsibilities are encompassed by: • Security Operation Center (SOC) to continuously monitor the organisation's security posture whilst preventing, detecting, and responding to cybersecurity incidents or threats. • Security Engineering which covers the development, integration and maintenance of current and future security controls, technologies, and procedures across the organisation. • A dedicated Compliance team to implement security policies, manage risks, maintain audit systems, and ensure good security practices are embedded in our company culture. We do this via user awareness training, auditing and ongoing stakeholder engagement.

Documents

REPORTSBC Crisis Management Exercise Report
Trust Center Updates

October Update 2024

IncidentsCopy link

During the month of October, Creditsafe was affected by x0 critical Zerodays which were classified as CVE 9.0+. Any other Zerodays (CVE 8.9 and below) are being handled by Standard Patching and update process.

Published at N/A

September Update 2024

IncidentsCopy link

During the month of September, Creditsafe was affected by x0 critical Zerodays which were classified as CVE 9.0+. Any other Zerodays (CVE 8.9 and below) are being handled by Standard Patching and update process.

Published at N/A

August Update 2024

IncidentsCopy link

During the month of August, Creditsafe was affected by x0 critical Zerodays which were classified as CVE 9.0+. Any other Zerodays (CVE 8.9 and below) are being handled by Standard Patching and update process.

Published at N/A

July Update 2024

IncidentsCopy link

During the month of July, Creditsafe was affected by x0 critical Zerodays which were classified as CVE 9.0+. Any other Zerodays (CVE 8.9 and below) are being handled by Standard Patching and update process.

Published at N/A

Microsoft Azure and Crowdstrike outages

IncidentsCopy link

Creditsafe can confirm that none of our customer-facing products or internal support services are currently impacted by the ongoing Microsoft Azure and Crowdstrike outages. We are actively collaborating with our data providers and credit industry cybersecurity experts to share information and anticipate any potential disruptions. We will provide an update at 17:00 BST Friday 19th July unless additional information comes to light which requires us to communicate

Published at N/A

If you think you may have discovered a vulnerability, please send us a note.

Powered bySafeBase Logo