AIAC A.I CyberSecurity Scoring
28/11/2025
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for Al-Mansour Iraqi Automotive Co. in 2026.
No incidents recorded for Al-Mansour Iraqi Automotive Co. in 2026.
No incidents recorded for Al-Mansour Iraqi Automotive Co. in 2026.
A USD 19.4 billion multinational group based in Mumbai, India, Mahindra provides employment opportunities to over 256,000 people across 100 countries. Mahindra operates in the key industries that drive economic growth, enjoying a leadership position in tractors, utility vehicles, information technology, financial services and vacation ownership. In addition, Mahindra enjoys a strong presence in the agribusiness, aerospace, components, consulting services, defence, energy, industrial equipment, logistics, real estate, retail, steel, commercial vehicles and two wheeler industries. The Automotive and Farm Equipment Business is the largest contributor of the Mahindra Group’s revenue. With 30,000+ full time employees spread across 20 locations, Mahindra has a strong presence in India. Further it propels an entire manufacturing ecosystem of 1,200 suppliers and 3,500 dealers, thereby creating direct and indirect employment for over 200,000 individuals. Our Farm Equipment business is the number 1 tractor company in the world by volume. In addition to our focus on maintaining a leading position in the core tractor mechanization business, we strive to deliver on our aspiration of “Farm Tech Prosperity” thus enabling our customers and our communities to RISE. Our Automotive business is a full-range mobility player with a presence in almost every segment of the automobile industry. Our product portfolio ranges from world class SUVs, premium luxury UVs, sedans, pick-ups, light, medium and heavy commercial vehicles to three-wheelers. All these cater to a diverse customer base spanning across rural and semi-urban customers. Leveraging our growing dominance, domestic & international market penetration and recent strategic acquisitions, we aim to provide world class exeperience to our customers and team members.
Doing something different is never easy. It requires courage, optimism and grit. Core to our mission is building a team of adventurous individuals determined to make a positive impact on the world. This means challenging ourselves constantly. Stretching beyond the bounds of conventional thinking. Reframing old problems. Seeking new solutions. And operating comfortably in a space of uncertainty. While our backgrounds are diverse, our team shares a love of the outdoors and a desire to protect it for future generations. Do you like doing the impossible? We’d love to hear from you.
LEONI is a global provider of products, solutions and services for energy and data management in the automotive industry. The group of companies has around 87,000 employees in 21 countries and generated consolidated sales of EUR 5 billion in 2024. The partnership between LEONI and Luxshare Group has been effective since mid-2025. LEONI's largest customer group comprises the global car, commercial vehicle and component supply industry. The company is one of the world's largest suppliers of complex wiring systems and customer-specific cable harnesses. It’s value chain also comprises related components, from development to production. As an innovation partner with distinctive development and systems expertise, LEONI supports its customers on the path to increasingly sustainable and connected mobility concepts, from autonomous driving to alternative drives as well as charging systems. To this end, LEONI develops wiring systems that reduce complexity and enable higher levels of automation through zonal architecture, for example. Imprint: https://www.leoni.com/en/imprint/ Privacy statement: https://www.leoni.com/en/data-protection/
With its four brands BMW, MINI, Rolls-Royce and BMW Motorrad, the BMW Group is the world’s leading premium manufacturer of automobiles and motorcycles and also provides premium financial services. The BMW Group production network comprises over 30 production sites worldwide; the company has a global sales network in more than 140 countries. In 2024, the BMW Group sold over 2.45 million passenger vehicles and more than 210,000 motorcycles worldwide. The profit before tax in the financial year 2024 was € 11.0 billion on revenues amounting to € 142.4 billion. As of 31 December 2024, the BMW Group had a workforce of 159,104 employees. The economic success of the BMW Group has always been based on long-term thinking and responsible action. Sustainability is a key element of the BMW Group’s corporate strategy and covers all products from the supply chain and production to the end of their useful life.
FORVIA comprises the complementary technology and industrial strengths of Faurecia and HELLA. With over 249 industrial sites and 78 R&D centers, 150,000 people, including more than 15,000 engineers across 40+ countries, FORVIA provides a unique and comprehensive approach to the automotive challenges of today and tomorrow. Composed of 6 business groups with 24 product lines, and a strong IP portfolio of over 12,900 patents, FORVIA is focused on becoming the preferred innovation and integration partner for OEMs worldwide. FORVIA aims to be a change maker committed to foreseeing and making the mobility transformation happen.
Volvo Trucks supplies complete transport solutions for discerning professional customers with its full range of medium- and heavy-duty trucks. Customer support is provided via a global network of dealers with 2,200 service points in about 130 countries. Volvo trucks are assembled in 12 countries across the globe. In 2024 approximately 134,000 Volvo trucks were delivered worldwide. Volvo Trucks is part of the Volvo Group, one of the world’s leading manufacturers of trucks, buses, construction equipment and marine and industrial engines. The group also provides complete solutions for financing and service. Volvo Trucks’ work is based on the core values of quality, safety and environmental care.
We don't just make history -- we make the future. Ford put the world on wheels over a century ago, and our teams are re-inventing icons and creating groundbreaking connected and electric vehicles for the next century. We believe in serving our customers, our communities, and the world. If you do, too, come move the world and make the future with us. Ford is a global company with shared ideals and a deep sense of family. From our earliest days as a pioneer of modern transportation, we have sought to make the world a better place – one that benefits lives, communities and the planet. We are here to provide the means for every person to move and pursue their dreams, serving as a bridge between personal freedom and the future of mobility. In that pursuit, our 186,000 employees around the world help to set the pace of innovation every day. Privacy Policy: https://www.ford.com/help/privacy/
Volkswagen is a brand for the heart and for the people – likeable, great quality with trend-setting designs – from the T1 and the Beetle to the Golf and today’s ID. Buzz. We are carrying over Volkswagen’s traditional strengths into the new world of mobility. Carbon neutral. Digital. For all. Legal notice: https://www.volkswagen.de/de/mehr/rechtliches/legal-notices-social-media.html Imprint: https://www.volkswagenag.com/en/meta/provider-identification.html DAT: https://www.volkswagen.de/de/mehr/rechtliches/dat.html
Mercedes-Benz USA, LLC (MBUSA), a Daimler Company, is responsible for the Distribution and Marketing of Mercedes-Benz and smart products in the United States. MBUSA was founded in 1965 and prior to that Mercedes-Benz cars were sold in the United States by Mercedes-Benz Car Sales, Inc., a subsidiary of the Studebaker-Packard corporation. Today MBUSA has over 300 dealerships with more than 1400 employees. For employment opportunities please visit: http://bit.ly/2tFzlOV. For information on how to get the most out of your Mercedes-Benz vehicle, visit the Owners' Support instructional videos section of our site: http://www.mbusa.com/mercedes/owners/videos
Latest updates, reports, and threat intel affecting the global network.
HedgeDoc is an open source, real-time collaborative markdown notes application. Prior to 1.11.0, the GitHub Gist export flow created an OAuth2 state value but only checked that it was present rather than validating it against the value expected for the user's session. Because the state was not properly validated, an attacker could forge a callback URL containing their own valid GitHub OAuth code. When processing the callback, HedgeDoc used the victim's logged-in session to select which note to export, but the attacker's authorization code to determine which GitHub account received it. As a result, a logged-in victim who clicked a crafted link could export their own private, protected, or limited note directly into a Gist controlled by the attacker. This issue has been fixed in version 1.11.0.
HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, HedgeDoc was vulnerable to a YAML alias bomb due to unsafe processing of the note frontmatter. HedgeDoc parsed frontmatter with js-yaml.load (js-yaml v3) via @hedgedoc/meta-marked, which resolved YAML anchor aliases. A compact malicious payload could therefore expand into a huge object structure, consuming excessive CPU. This expansion ran on every request to the publish view (/s/<shortid>) and, when placed under the opengraph key, the editor view (/<noteId>). A ten-level alias bomb could block the single Node.js event loop for roughly 235 seconds per request, causing concurrent requests to hang or drop and rendering the instance unavailable (DoS). Because the note was stored in the database, the impact survived process restarts until the note was removed. toobusy-js did not reliably mitigate the worst cases, as the event loop was saturated before the middleware could respond. This issue was fixed in version 1.11.0.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts. When building the extension hash (via extensions(), extensions_by_long_name(), extensions_by_oid(), or has_extension_oid()), the code passes OBJ_obj2txt()'s return value as the hash-key length; because that value is the OID's full text length rather than the bytes written to the fixed-size buffer (129 bytes), an OID whose text is longer than the 129-byte buffer causes a read past the allocation, exposing adjacent heap memory as the returned hash key. extensions_by_name() uses the static shortname path and is not affected.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3_EXT_d2i(ext) returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth_att dereference its result without a NULL check. keyid_data also dereferences akid->keyid, which is NULL for an empty AKI SEQUENCE (DER 30 00) even when the parse succeeds. A caller invoking an affected helper on an extension from an untrusted certificate triggers a SIGSEGV that crashes the Perl process.
Cockpit CMS contains a path traversal vulnerability in the Bucket file storage API (/system/buckets/api). The api() method in modules/System/Controller/Buckets.php sanitizes the bucket name with preg_replace('/[^a-zA-Z0-9-_\\.]/','', $bucket), which permits '..' and '../' sequences. The sanitized value is interpolated into a Flysystem path as uploads://buckets/{bucket}. Flysystem's WhitespacePathNormalizer resolves 'buckets/..' to the empty string (the uploads storage root) without raising PathTraversalDetected because the '..' has a preceding component to consume. An authenticated low-privileged user can send a crafted request with a '../' bucket name to list, upload, and delete files across all buckets, including those belonging to other users or roles
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.