SecurityScorecard has completed the acquisition of Driftnet, a company known for global internet scanning and advanced threat intelligence. The deal is intended to strengthen SecurityScorecard’s TITAN AI platform with real-time visibility into exposed digital infrastructure across third-party ecosystems. By integrating Driftnet’s discovery capabilities, SecurityScorecard aims to help organizations identify supplier and partner risks before attackers can exploit them.
Expanding Threat-Informed Risk Management
The acquisition comes as third-party risk management is becoming more complex due to the rapid spread of AI tools, automation platforms, and connected supply chain technologies. Many of these systems are deployed by vendors or partners without sufficient monitoring, creating security gaps that traditional risk assessments may miss. SecurityScorecard said Driftnet’s technology will help surface hidden exposures, including misconfigured infrastructure, exposed credentials, and weakly protected automation tools.
SecurityScorecard’s threat intelligence team recently used Driftnet’s engine to identify more than 816,000 internet-exposed AI OpenClaw agent deployments. According to the company, many of those deployments showed links to earlier breach activity, highlighting how agentic AI tools can create new pathways for attackers. The finding underscores a broader concern for enterprises: critical risks may exist outside their direct environments, yet still affect their security posture.
Driftnet’s Technical Role
Driftnet’s platform is designed to scan areas of the internet that conventional tools often overlook. Its capabilities include non-standard port enumeration, advanced fingerprinting, and strong coverage of IPv6 infrastructure. SecurityScorecard said these features allow its systems to index significantly more internet-exposed hosts than competing intelligence providers.
The company plans to integrate Driftnet’s data directly into third-party risk workflows, threat hunting processes, and security operations. This means security teams could gain a shared view of vendor exposure instead of working from separate tools and incomplete datasets. For risk teams, the value lies in moving beyond static scores toward live intelligence about which exposures are most urgent.
Supporting Security Teams Across Functions
SecurityScorecard said the acquisition will support closer coordination among third-party risk management teams, security operations centers, and threat intelligence analysts. When a threat campaign is detected or a risky service is found in a vendor’s environment, that signal can be incorporated into risk assessments more quickly. This could help organizations prioritize vendor remediation based on active exploitation, not just theoretical risk.
Dr. Aleksandr Yampolskiy, SecurityScorecard’s chief executive and co-founder, said the changing threat landscape requires better visibility into supplier ecosystems. He emphasized that AI-driven automation and connected business tools are expanding across enterprise environments faster than many risk programs can monitor. In his view, Driftnet gives customers the intelligence needed to detect these exposures early and reduce the chance of a breach.
Driftnet’s Next Chapter
Ben Schofield, founder of Driftnet, described the company’s mission as finding the overlooked parts of the internet that attackers often target. By joining SecurityScorecard, Driftnet’s intelligence will be delivered to the enterprise teams responsible for managing cyber risk and responding to threats. The combination is expected to give security leaders faster access to evidence they can use for prevention and remediation.
SecurityScorecard also said it will continue Driftnet’s existing collaborations with computer emergency response teams in the United States, the European Union, and the United Kingdom. Driftnet has also worked with leading universities on internet measurement research and global internet health studies. Maintaining those relationships could help SecurityScorecard expand both its commercial intelligence capabilities and its contribution to broader cybersecurity research.
The acquisition positions SecurityScorecard to deepen its role in threat-informed third-party risk management at a time when supply chain security is under growing pressure. By adding Driftnet’s scanning engine to TITAN AI, the company is aiming to give customers earlier warning of exposed systems, risky AI deployments, and vendor infrastructure weaknesses. For enterprises managing large networks of suppliers and partners, the deal reflects a shift toward faster, more evidence-based cyber risk management.