AAAIU
Company Details
Linkedin ID:
aaa-iub
Website:
Employees number:
21
Number of followers:
182
NAICS:
8135
Industry Type:
Homepage:
aaaiub.com
IP Addresses:
0
Company ID:
ASI_2032942
Scan Status:
In-progress
Asian American Association at Indiana University-Bloomington Company CyberSecurity Posture
aaaiub.com
The Asian American Association of Indiana University is a non-profit organization founded in 1987 for the purposes of: • Instilling and maintaining a spirit of community among Asian Americans and Pacific Islanders Indiana University, as well as those interested in learning about the Asian American and Pacific Islander experience • Promoting a broad-reaching awareness of Asian American and Pacific Islander political issues and active presence on this campus • Fostering cultural understanding in the campus community as a whole, bridging gaps between Asian Americans and Pacific Islanders and all peoples of this university.
Asian American Association at Indiana University-Bloomington A.I CyberSecurity Scoring
AAAIU Risk Score (AI oriented)Between 700 and 749
AAAIU
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
AAAIU Global Score (TPRM)XXXX
AAAIU
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
AAAIU Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Indiana University, Bloomington
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: Indiana University Bloomington is at the center of attention due to Xiaofeng Wang, a data privacy professor potentially involved in non-disclosure of Chinese research funding. The matter was brought into focus when the FBI conducted raids on Wang's properties. Allegations suggest that Wang failed to report this funding in U.S. federal grant applications, raising concerns about research integrity and possibly affecting trust in the institution. With no evidence of data leaks or cyber intrusion, the impact is limited to the university's reputation and administrative scrutiny, potentially undermining confidence in their research environment.
AAAIU Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for AAAIU
Incidents vs Non-profit Organizations Industry Average (This Year)
Asian American Association at Indiana University-Bloomington has 31.58% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Asian American Association at Indiana University-Bloomington has 28.21% more incidents than the average of all companies with at least one recorded incident.
Incident Types AAAIU vs Non-profit Organizations Industry Avg (This Year)
Asian American Association at Indiana University-Bloomington reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — AAAIU (X = Date, Y = Severity)
AAAIU cyber incidents detection timeline including parent company and subsidiaries
AAAIU Company Subsidiaries
The Asian American Association of Indiana University is a non-profit organization founded in 1987 for the purposes of: • Instilling and maintaining a spirit of community among Asian Americans and Pacific Islanders Indiana University, as well as those interested in learning about the Asian American and Pacific Islander experience • Promoting a broad-reaching awareness of Asian American and Pacific Islander political issues and active presence on this campus • Fostering cultural understanding in the campus community as a whole, bridging gaps between Asian Americans and Pacific Islanders and all peoples of this university.
Loading...
AAAIU Similar Companies
AIESEC
AIESEC develops leadership among youth aged 18 to 30 and contributes to strengthening the global employability market by providing an end-to-end international talent recruitment solution for Enterprises, NGOs, and Start-ups. AIESEC is the world's largest youth-run organization developing the leader
British Council
We support peace and prosperity by building connections, understanding and trust between people in the UK and countries worldwide. We uniquely combine the UK’s deep expertise in arts and culture, education and the English language, our global presence and relationships in over 100 countries, our un
The Salvation Army is the nation's largest direct provider of social services. Annually, we help millions overcome poverty, addiction, and spiritual and economic hardships by preaching the gospel of Jesus Christ and meeting human needs in His name without discrimination in nearly every zip code.
The American Red Cross prevents and alleviates human suffering in the face of emergencies by mobilizing the power of volunteers and the generosity of donors. Each day, thousands of people – people just like you – provide compassionate care to those in need. Our network of generous donors, voluntee
Médecins Sans Frontières (MSF)
Médecins Sans Frontières (MSF) is an international, independent, medical humanitarian organisation working to provide medical assistance to people affected by conflict, epidemics, disasters, or exclusion from healthcare. Since our founding in 1971, we’ve grown to a global movement delivering human
Save the Children International
Save the Children Save the Children is the world's leading independent organisation for children. We work in around 120 countries. Our vision is to live in a world in which every child attains the right to survival, protection, development and participation. Last year Save the Children's prog
International Committee of the Red Cross - ICRC
Established in 1863, the International Committee of the Red Cross (ICRC) works worldwide to provide humanitarian help for people affected by conflict and armed violence and to promote the laws that protect victims of war. An independent and neutral organization, its mandate stems essentially from th
IEEE
IEEE is the world’s largest technical professional organization and is a public charity dedicated to advancing technological innovation and excellence for the benefit of humanity. IEEE and its members inspire a global community through its highly cited publications, conferences, technology standards
YMCA of the USA
YMCA of the USA is the national resource office for the nation's YMCAs. Located in Chicago, IL, YMCA of the USA exists to serve YMCAs. To address the specific needs of communities, each YMCA is an independent organization, autonomous and separate from YMCA of the USA. They are required by the nation
.png)
AAAIU CyberSecurity News
October 07, 2025 07:00 AM
Unsealed documents reveal details behind FBI raid of fired Indiana University professor
A shroud of secrecy has surrounded the motive behind the FBI raid and firing of a Chinese professor at Indiana University earlier this year.
April 02, 2025 07:00 AM
Cybersecurity Professor Faced China-Funding Inquiry Before Disappearing, Sources Say
Before the official faculty profiles of renowned Indiana University, Bloomington (IU) data privacy professor Xiaofeng Wang and his wife...
April 02, 2025 07:00 AM
Cybersecurity professor targeted by FBI has not been detained, lawyer says
A prominent Indiana University cybersecurity professor who was abruptly fired and disappeared from public view has not been detained and...
April 02, 2025 07:00 AM
Cybersecurity professor disappears amid FBI raids
A US-based cybersecurity professor and his wife have reportedly disappeared after they were fired by their university employer and their homes were raided by...
April 02, 2025 07:00 AM
Exclusive | US cyber expert Wang Xiaofeng ‘is safe’ after FBI raids, source says
US cybersecurity expert Wang Xiaofeng “is safe”, a fellow researcher in China said on Wednesday, declining to comment further on the whereabouts of the...
March 31, 2025 07:00 AM
FBI searches homes of Indiana University cybersecurity professor
FBI agents executed search warrants last week at two homes owned by Indiana University computer science professor XiaoFeng Wang and his...
March 31, 2025 07:00 AM
IU faculty protests firing of professor in FBI probe
(WXIN/WTTV) — It's like XiaoFeng Wang never existed during his 21 years at Indiana University. In conjunction with FBI raids at homes Wang...
March 31, 2025 07:00 AM
Indiana security prof and wife vanish after FBI raid
A tenured computer security professor at Indiana University and his university-employed wife have not been seen publicly since federal agents raided their...
March 30, 2025 07:00 AM
No Charges, No Answers — Professor Xiaofeng Wang Disappears
Xiaofeng Wang, a top Indiana University cybersecurity professor, vanished after FBI and DHS raids on his homes.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
AAAIU CyberSecurity History Information
Official Website of Asian American Association at Indiana University-Bloomington
The official website of Asian American Association at Indiana University-Bloomington is http://aaaiub.com.
Asian American Association at Indiana University-Bloomington’s AI-Generated Cybersecurity Score
According to Rankiteo, Asian American Association at Indiana University-Bloomington’s AI-generated cybersecurity score is 706, reflecting their Moderate security posture.
How many security badges does Asian American Association at Indiana University-Bloomington’ have ?
According to Rankiteo, Asian American Association at Indiana University-Bloomington currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Asian American Association at Indiana University-Bloomington have SOC 2 Type 1 certification ?
According to Rankiteo, Asian American Association at Indiana University-Bloomington is not certified under SOC 2 Type 1.
Does Asian American Association at Indiana University-Bloomington have SOC 2 Type 2 certification ?
According to Rankiteo, Asian American Association at Indiana University-Bloomington does not hold a SOC 2 Type 2 certification.
Does Asian American Association at Indiana University-Bloomington comply with GDPR ?
According to Rankiteo, Asian American Association at Indiana University-Bloomington is not listed as GDPR compliant.
Does Asian American Association at Indiana University-Bloomington have PCI DSS certification ?
According to Rankiteo, Asian American Association at Indiana University-Bloomington does not currently maintain PCI DSS compliance.
Does Asian American Association at Indiana University-Bloomington comply with HIPAA ?
According to Rankiteo, Asian American Association at Indiana University-Bloomington is not compliant with HIPAA regulations.
Does Asian American Association at Indiana University-Bloomington have ISO 27001 certification ?
According to Rankiteo,Asian American Association at Indiana University-Bloomington is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Asian American Association at Indiana University-Bloomington
Asian American Association at Indiana University-Bloomington operates primarily in the Non-profit Organizations industry.
Number of Employees at Asian American Association at Indiana University-Bloomington
Asian American Association at Indiana University-Bloomington employs approximately 21 people worldwide.
Subsidiaries Owned by Asian American Association at Indiana University-Bloomington
Asian American Association at Indiana University-Bloomington presently has no subsidiaries across any sectors.
Asian American Association at Indiana University-Bloomington’s LinkedIn Followers
Asian American Association at Indiana University-Bloomington’s official LinkedIn profile has approximately 182 followers.
NAICS Classification of Asian American Association at Indiana University-Bloomington
Asian American Association at Indiana University-Bloomington is classified under the NAICS code 8135, which corresponds to Others.
Asian American Association at Indiana University-Bloomington’s Presence on Crunchbase
No, Asian American Association at Indiana University-Bloomington does not have a profile on Crunchbase.
Asian American Association at Indiana University-Bloomington’s Presence on LinkedIn
Yes, Asian American Association at Indiana University-Bloomington maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/aaa-iub.
Cybersecurity Incidents Involving Asian American Association at Indiana University-Bloomington
As of December 23, 2025, Rankiteo reports that Asian American Association at Indiana University-Bloomington has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Asian American Association at Indiana University-Bloomington has an estimated 21,143 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Asian American Association at Indiana University-Bloomington ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does Asian American Association at Indiana University-Bloomington detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an law enforcement notified with fbi conducted raids..
Incident Details
Can you provide details on each incident ?
Title: Indiana University Bloomington Data Privacy Incident
Description: Indiana University Bloomington is at the center of attention due to Xiaofeng Wang, a data privacy professor potentially involved in non-disclosure of Chinese research funding. The matter was brought into focus when the FBI conducted raids on Wang's properties. Allegations suggest that Wang failed to report this funding in U.S. federal grant applications, raising concerns about research integrity and possibly affecting trust in the institution. With no evidence of data leaks or cyber intrusion, the impact is limited to the university's reputation and administrative scrutiny, potentially undermining confidence in their research environment.
Type: Non-Disclosure of Funding
Threat Actor: Xiaofeng Wang
Motivation: Non-Disclosure of Chinese Research Funding
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Non-Disclosure of Funding AAA000041125
Brand Reputation Impact: Potential undermining of confidence in the research environment
Which entities were affected by each incident ?
Incident : Non-Disclosure of Funding AAA000041125
Entity Name: Indiana University Bloomington
Entity Type: Educational Institution
Industry: Education
Location: Bloomington, Indiana
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Non-Disclosure of Funding AAA000041125
Law Enforcement Notified: FBI conducted raids
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Non-Disclosure of Funding AAA000041125
Investigation Status: Ongoing
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Non-Disclosure of Funding AAA000041125
Root Causes: Non-Disclosure of Chinese Research Funding
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Xiaofeng Wang.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Marshmallow is a lightweight library for converting complex objects to and from simple Python datatypes. In versions from 3.0.0rc1 to before 3.26.2 and from 4.0.0 to before 4.1.2, Schema.load(data, many=True) is vulnerable to denial of service attacks. A moderately sized request can consume a disproportionate amount of CPU time. This issue has been patched in version 3.26.2 and 4.1.2.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Description
KEDA is a Kubernetes-based Event Driven Autoscaling component. Prior to versions 2.17.3 and 2.18.3, an Arbitrary File Read vulnerability has been identified in KEDA, potentially affecting any KEDA resource that uses TriggerAuthentication to configure HashiCorp Vault authentication. The vulnerability stems from an incorrect or insufficient path validation when loading the Service Account Token specified in spec.hashiCorpVault.credential.serviceAccount. An attacker with permissions to create or modify a TriggerAuthentication resource can exfiltrate the content of any file from the node's filesystem (where the KEDA pod resides) by directing the file's content to a server under their control, as part of the Vault authentication request. The potential impact includes the exfiltration of sensitive system information, such as secrets, keys, or the content of files like /etc/passwd. This issue has been patched in versions 2.17.3 and 2.18.3.
Risk Information
cvss4
Base: 8.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Fedify is a TypeScript library for building federated server apps powered by ActivityPub. Prior to versions 1.6.13, 1.7.14, 1.8.15, and 1.9.2, a Regular Expression Denial of Service (ReDoS) vulnerability exists in Fedify's document loader. The HTML parsing regex at packages/fedify/src/runtime/docloader.ts:259 contains nested quantifiers that cause catastrophic backtracking when processing maliciously crafted HTML responses. This issue has been patched in versions 1.6.13, 1.7.14, 1.8.15, and 1.9.2.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
- https://github.com/fedify-dev/fedify/commit/2bdcb24d7d6d5886e0214ed504b63a6dc5488779
- https://github.com/fedify-dev/fedify/commit/bf2f0783634efed2663d1b187dc55461ee1f987a
- https://github.com/fedify-dev/fedify/releases/tag/1.6.13
- https://github.com/fedify-dev/fedify/releases/tag/1.7.14
- https://github.com/fedify-dev/fedify/releases/tag/1.8.15
- https://github.com/fedify-dev/fedify/releases/tag/1.9.2
- https://github.com/fedify-dev/fedify/security/advisories/GHSA-rchf-xwx2-hm93
Description
Authenticated Remote Code Execution (RCE) in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file (e.g., home.php).
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Description
An issue was discovered in Xiongmai XM530 IP cameras on firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06. The GetStreamUri exposes RTSP URIs containing hardcoded credentials enabling direct unauthorized video stream access.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=aaa-iub' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
