What is Ágora Investimentos's cybersecurity risk score?

Ágora Investimentos has an AI-generated cybersecurity risk score of 760 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Ágora Investimentos experienced?

According to Rankiteo, Ágora Investimentos currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Ágora Investimentos been affected by any supply chain cyber incidents ?

According to Rankiteo, Ágora Investimentos has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Ágora Investimentos have SOC 2 Type 1 certification ?

According to Rankiteo, Ágora Investimentos is not certified under SOC 2 Type 1.

Does Ágora Investimentos have SOC 2 Type 2 certification ?

According to Rankiteo, Ágora Investimentos does not hold a SOC 2 Type 2 certification.

Does Ágora Investimentos comply with GDPR ?

According to Rankiteo, Ágora Investimentos is not listed as GDPR compliant.

Does Ágora Investimentos have PCI DSS certification ?

According to Rankiteo, Ágora Investimentos does not currently maintain PCI DSS compliance.

Does Ágora Investimentos comply with HIPAA ?

According to Rankiteo, Ágora Investimentos is not compliant with HIPAA regulations.

Does Ágora Investimentos have ISO 27001 certification ?

According to Rankiteo,Ágora Investimentos is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Ágora Investimentos operate in ?

Ágora Investimentos operates primarily in the Financial Services industry.

How many employees does Ágora Investimentos have ?

Ágora Investimentos employs approximately 552 people worldwide.

Does Ágora Investimentos own any subsidiaries ?

Ágora Investimentos presently has no subsidiaries across any sectors.

How many LinkedIn followers does Ágora Investimentos have ?

Ágora Investimentos's official LinkedIn profile has approximately 127,654 followers.

What is the NAICS classification code for Ágora Investimentos ?

Ágora Investimentos is classified under the NAICS code 52, which corresponds to Finance and Insurance.

Does Ágora Investimentos have a Crunchbase profile ?

No, Ágora Investimentos does not have a profile on Crunchbase.

Does Ágora Investimentos have a LinkedIn profile ?

Yes, Ágora Investimentos maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/agorainvestimentos.

How many cybersecurity incidents has Ágora Investimentos experienced ?

As of June 30, 2026, Rankiteo reports that Ágora Investimentos has experienced 2 cybersecurity incidents.

How many peer or competitor companies does Ágora Investimentos have ?

Ágora Investimentos has an estimated 32,185 peer or competitor companies worldwide.

What types of cybersecurity incidents has Ágora Investimentos faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack and Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Ágora Investimentos

Boost Score +25 with badge (5 left)

760

/1000

Fair

785

/1000

Fair

Ágora Investimentos Vendor Cyber Rating & Cyber Score

https://www.agorainvestimentos.com.br/home?utm_source=linkedin&utm_medium=owned&utm_campaign=202009%3A%3Aa2%3Aagora%3Aagora_social_links%3Acon%3Asocial%3Alinkedin%3Atodos%3Alinkedin&utm_content=20200928%3Alinkedin%3Ahome%3A1x1%3Ahome%3Ana%3Ageral%3A

Add Your Compliance Badge

Não existe o melhor investimento, existe o melhor para você. Te ajudamos a encontrar o que faz sentido para o seu momento. Essa é a proposta da sua casa de investimentos, oferecer solidez e segurança para você tomar as melhores decisões, com a certeza que seu dinheiro está sendo bem cuidado. Bem-vindo a sua casa de investimentos.

Ágora Investimentos A.I CyberSecurity Scoring

Scoring History

Ágora Investimentos

Ágora Investimentos CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Banco Bradesco

Cyber Attack

10/2024

MASBRA176923618...

Ágora Investimentos

Breach

7/2023

BRA734082025

Loading…

A.I.

Ágora Investimentos Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Ágora Investimentos

Incidents vs Financial Services Industry Avg (This Year)

No incidents recorded for Ágora Investimentos in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Ágora Investimentos in 2026.

Incident Types Ágora Investimentos vs Financial Services Industry Avg (This Year)

No incidents recorded for Ágora Investimentos in 2026.

Incident History - Ágora Investimentos (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Ágora Investimentos Subsidiaries

Ágora Investimentos

Financial Services

Website: https://www.agorainvestimentos.com.br/home?utm_source=linkedin&utm_medium=owned&utm_campaign=202009%3A%3Aa2%3Aagora%3Aagora_social_links%3Acon%3Asocial%3Alinkedin%3Atodos%3Alinkedin&utm_content=20200928%3Alinkedin%3Ahome%3A1x1%3Ahome%3Ana%3Ageral%3A

Company Size: 552

Banco BradescoBanking

Ágora AcademyInvestment Management

Loading…

Ágora Investimentos Similar Companies

Sanlam

sanlam.co.za

We’ve finally given a name to that special something a person exudes when they have a plan for their finances. It’s called The F Factor – and now that you know its name, it’s time you feel it too. Let's unlock your financial confidence, together. Our team is online weekdays 8:30 – 16:00

Revolut

cb revolut.com

People deserve more from their money. More visibility, more control, and more freedom. Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products help our 65+ million customers get more from their money every day. As we continue our lightning-fast growth,‌ 2 things are essential to our success: our people and our culture. In recognition of our outstanding employee experience, we've been certified as a Great Place to Work™. So far, we have 10,000+ people working around the world, from our offices and remotely, to help us achieve our mission. And we're looking for more brilliant people. People who love building great products, redefining success, and turning the complexity of a chaotic world into the simplicity of a beautiful solution.

CIMB

cimb.com

CIMB Group is a leading ASEAN universal bank, one of the largest Asian investment banks and one of the world's largest Islamic banks. We are headquartered in Kuala Lumpur, Malaysia and offer consumer banking, commercial banking, wholesale banking, Islamic banking, and asset management products and services. As the fifth largest banking group in ASEAN, we have over 36,000 staff in 16 locations across ASEAN, Asia and beyond. CIMB Bank and CIMB Islamic Bank are members of PIDM.

HDB Financial Services Ltd.

cb hdbfs.com

HDB Financial Services (HDBFS) is a leading Non-Banking Financial Company (NBFC) that caters to the growing needs of an Aspirational India, serving both Individual & Business Clients The lines of business include - Lending and BPO Services. Incorporated in 2007, HDB is a well-established business with strong capitalization. HDBFS is accredited with CARE AAA & CRISIL AAA ratings for its long-term debt & Bank facilities and an Al+ rating for its short-term debt & commercial papers, making it a strong and reliable financial institution. HDB has a robust network of more than 1740 branches in 1158 cities, thus catering to a wide reach of customers. The organsation offers a comprehensive bouquet of products and service offerings that are tailor-made to suit its customers’ requirements, including first-time borrowers and the underserved segments. The product portfolio includes Personal Loan, Business Loan, Loan Against Property, Enterprise Business Loan, Gold Loan, Car Loans, Loan Against Securities, Commercial Vehicle Loan, Construction Equipment Loan and Consumer Durable Loan. HDB’s BPO services offerings include running collection call centers, sales support services, back office operations and processing support services.

Principal Financial Group

principal.com

Principal Financial Group® is dedicated to improving the wealth and well-being of people and businesses around the world—helping more than 62M customers plan, protect, invest, and retire as of December 31, 2023. Along the way, we commit to supporting the communities where we do business. Improving our planet. And building a diverse, inclusive workforce. We’re proud to be recognized as a Best Place to Work in Money Management by Pensions & Investments for the 11th consecutive year, an Ethisphere World’s Most Ethical Companies for the 12th time and as Forbes The Best Employers for Diversity 2023. Disclosure: Insurance products issued by Principal National Life Insurance Company (except in NY) and Principal Life Insurance Company®. Plan administrative services offered by Principal Life. Principal Funds, Inc. is distributed by Principal Funds Distributor, Inc. Securities offered through Principal Securities, Inc., member SIPC and/or independent broker/dealers. Investment advisory services are offered through Principal Global Investors, LLC or its affiliates. Principal Asset Management℠ is a trade name of Principal Global Investors, LLC. Referenced companies are members of the Principal Financial Group®, Des Moines, IA 50392. ©2024 Principal Financial Services, Inc. Principal Financial Group Foundation, Inc. ("Principal® Foundation") is a duly recognized 501(c)(3) entity focused on providing philanthropic support to programs that build financial security in the communities where Principal Financial Group, Inc. ("Principal") operates. While Principal Foundation receives funding from Principal, Principal Foundation is a distinct, independent, charitable entity. Principal Foundation does not practice any form of investment advisory services and is not authorized to do so. https://www.principal.com/social-media-disclosures

Charles Schwab

cb aboutschwab.com

Charles Schwab is a different kind of investment services firm – one that strives to disrupt the status quo of the traditional Wall Street approach on behalf of our clients. We believe today, as we did on Day 1, that when you find ways to improve the investing experience for your clients, then business results will follow. Follow our company culture at #SchwabLife and see how we give back at #Schwab4Good. Support hours: 7 a.m.–7 p.m. CT or 24/7 at schwab.com/contact-us. Social Media Disclosures: https://www.aboutschwab.com/social-media (#0424-TM8W)

Moody's Corporation

moodys.com

In a world shaped by increasingly interconnected risks, Moody’s helps customers develop a holistic view of these risks to advance their business and act decisively. With a rich history of expertise in global markets and a diverse workforce in more than 40 countries, Moody’s unites the brightest minds to turn today’s risks into tomorrow’s opportunities.

Sicredi

sicredi.com.br

We are born collaborative We believe that change is only possible when everyone works together for the same purpose, after all, cooperativism is in our DNA. Besides this, we know that as important as it is to provide affordable financial solutions it is just as important to value growing together, quality of life and the social and economic development of everyone who makes this happen. Therefore, we are committed to our employees, our associates and the regions in which we operate. Together we make a difference We were fortunate to be recognized as one of the best companies in Brazil to work for. This recognition is a reflection of all the collective effort put into creating and maintaining a safe and welcoming work environment. Here numbers are not the most important thing, what really matters is that we are made up of people for people. We have opportunities for professionals from different areas and we recognize that working together makes a difference in our lives. Be part of this history, be Sicredi!

RHB Banking Group

myworkdayjobs.com

We are a multinational regional financial services provider that is committed to deliver complete solutions to our clients through differentiated segment offerings and an ecosystem that supports simple, fast and seamless customer experience, underpinned by cohesive and inspired workforce and relationship built with stakeholders Headquartered and listed in Malaysia, RHB Banking Group is the longest established local bank, formed though the mergers of several banks, the oldest of which was founded in 1913. RHB Banking Group and its subsidiaries provide a full range of services ranging from retail banking, business banking, corporate and investment banking, Islamic banking, transaction banking to treasury, insurance, asset management, private equity and stockbroking services. TOGETHER WE PROGRESS Our strong heritage is the foundation of our commitment to continue serving the community. For over a 100 years, we have been helping people and businesses grow and succeed, and will continue to do so. Our experience gives us an in-depth understanding of the needs of our customers and partners, inspiring us to constantly innovate and improve to serve them better. With their unending support, we have established ourselves with a strong footprint throughout Malaysia and we are now present in 9 other countries across the ASEAN region. We hope our legacy and pursuit for excellence continues as we tirelessly cultivate and nurture the next generation through our actions and words, preparing a brighter future ahead. We thank those who believe in us and welcome everyone to join us on our exciting journey of progress. The time has come for us to move forward in unison, to realise our greater potential together. Our new brand promise "Together We Progress” honours our past, celebrates the present and welcomes the future. We invite you to join us as we work towards a better and brighter future for all.

Loading…

NEWS

Ágora Investimentos CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-8023

SUMMARY

Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is enabled) that serves files from a configured root directory. Before this fix, both the HTTP/1 and HTTP/2 front-ends placed the raw, attacker-controlled request path into client-url_buffer (assembled in on_url() for HTTP/1 and copied verbatim from the :path pseudo-header for HTTP/2) without resolving ./.. segments. The static-FS handler then built the on-disk filename by directly concatenating the configured root with that raw URL (snprintk(fname, ..., "%s%s", static_fs_detail-fs_path, client-url_buffer) at http_server_http1.c:603 and http_server_http2.c:490) and opened it with fs_open(fname, FS_O_READ). Because the handler is reached via wildcard/leading-dir (fnmatch FNM_LEADING_DIR) or fallback resource matching, a request such as GET /<prefix/../../<file is dispatched to the handler and, after the underlying filesystem (e.g. LittleFS/FAT) resolves the .. segments, escapes the configured web root, letting an unauthenticated remote client read arbitrary readable files on the mounted volume (information disclosure). The HTTP server requires no TLS or authentication to reach this path. The fix adds http_server_remove_dot_segments(), which canonicalizes the path portion of the URL before resource lookup in both protocol handlers, neutralizing the traversal. Affects releases v4.0.0 through v4.4.0 for deployments that register a static-filesystem resource.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 7.5)

cvss3

Base Score: 7.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score

3.6

Exploitability

3.9

REFERENCES

CVE-2026-7656

SUMMARY

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code check using the wrong operator precedence: the form was '((length/hop/source/target checks) && (icmp_hdr-code != 0))'. Because every legitimate ND message carries ICMPv6 code 0, an attacker setting code == 0 (the normal value) caused the entire predicate to evaluate false, so the packet was never dropped and all of the other checks were silently skipped. The bypassed checks include the mandatory Hop Limit == 255 verification (which proves an ND packet originated on-link and was not forwarded) and, for Router Advertisements, the requirement that the source be a link-local address, as well as multicast-target sanity checks. As a result, an adjacent on-link attacker — and, because the Hop-Limit-255 guard is bypassed, potentially a remote/off-link attacker whose packets would otherwise be rejected — can have forged Router Advertisement, Neighbor Solicitation, and Neighbor Advertisement messages accepted. A forged RA lets the attacker reconfigure the victim's default router, on-link prefixes (SLAAC), MTU, reachable/retransmit timers, and (with CONFIG_NET_IPV6_RA_RDNSS) DNS servers, while forged NS/NA enable neighbor-cache poisoning, enabling man-in-the-middle, traffic redirection, and denial of service. The flaw is an input-validation/authentication weakness rather than a memory-safety issue: the underlying packet-parsing primitives (net_pkt_get_data, net_pkt_read, net_pkt_skip) are independently bounds-safe and the validated 'length' is the true buffer length, so skipping the length check causes no out-of-bounds access. The defect has existed since the logic was introduced in 2018 and shipped in all releases through v4.4.0; it is fixed by splitting the condition so any failing check drops the packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Impact Score

5.2

Exploitability

2.8

REFERENCES

CVE-2026-51219

SUMMARY

A heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service (DoS) via a crafted payload.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-51218

SUMMARY

A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of snap7 v1.4.3 allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-10648

SUMMARY

mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it for NULL. smp_packet_alloc() uses net_buf_alloc(K_NO_WAIT) against the shared MCUmgr packet pool (CONFIG_MCUMGR_TRANSPORT_NETBUF_COUNT, default 4), which returns NULL when the pool is exhausted. In default builds the __ASSERT_NO_MSG in net_buf_reset is a no-op, so net_buf_simple_reset writes through the NULL pointer (buf->len = 0; buf->data = buf->__buf), causing a fault/crash. The fragment data reaches this code from attacker-controlled bytes on the MCUmgr serial/UART/shell-console transports (smp_uart.c, smp_raw_uart.c, smp_shell.c), and a fresh buffer is allocated at the start of essentially every new packet. An attacker on the serial/console link can flood the transport to drive the 4-entry buffer pool to exhaustion and induce the NULL dereference, crashing the device (denial of service). The defect was introduced after the original MCUmgr rework and shipped in Zephyr v4.4.0. The fix moves the NULL check ahead of net_buf_reset.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 6.2)

cvss3

Base Score: 6.2

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.5

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…