At-Bay A.I CyberSecurity Scoring
02/04/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for At-Bay in 2026.
No incidents recorded for At-Bay in 2026.
No incidents recorded for At-Bay in 2026.
Insurance
At Liberty Mutual, we believe progress happens when people feel secure. For more than 110 years we have helped people and businesses embrace today and confidently pursue tomorrow by providing protection for the unexpected and delivering it with care. A Fortune 100 company with more than 40,000 employees in 28 countries and economies, we are the ninth largest global property and casualty insurer and generate more than $50 billion in annual consolidated revenue. We operate through three strategic business units: US Retail Markets, providing auto, home, renters and other personal and small commercial lines property and casualty insurance to individuals and small businesses countrywide; Global Risk Solutions, delivering a full range of comprehensive commercial and specialty insurance, reinsurance and surety solutions to mid-size and large businesses worldwide; and Liberty Mutual Investments, deploying more than $100 billion of long-term capital globally across its integrated platform to drive economic growth, power innovation and secure Liberty Mutual’s promises. For more information, visit www.libertymutualinsurance.com.
IAG is Australia and New Zealand's largest general insurance company with a purpose to make your world a safer place, whether you are a customer, partner, employee, shareholder or part of the communities IAG serves across Australia and New Zealand. Our businesses have helped people recover from natural disasters, accidents and loss since 1851. In Australia and New Zealand we provide insurance under many leading brands, including NRMA Insurance, CGU, SGIO, SGIC and WFI; and NZI, State, AMI and Lumley Insurance (New Zealand). We also have interests in general insurance joint ventures in Malaysia and India. Increasingly, we see our role extending beyond paying claims to increasing awareness of risk, and helping communities reduce and prevent risk. We believe it is our responsibility as an industry leader to use our influence and role as a major investor, purchaser and employer for the good of everyone. For further information please visit www.iag.com.au.
HDFC ERGO General Insurance Company Limited was promoted by erstwhile Housing Development Finance Corporation Ltd. (HDFC), India’s premier Housing Finance Institution and ERGO International AG, the primary insurance entity of Munich Re Group. Consequent to the implementation of the Scheme of Amalgamation of HDFC with and into HDFC Bank Limited, one of India’s leading private sector bank (Bank), the Company has become a subsidiary of the Bank. The Company offers complete range of general insurance products ranging from motor, health, travel, home and personal accident in the retail space and products like property, marine and liability insurance in the corporate space. With a network of branches spread across wide distribution network and a 24x7 support team, the Company has been offering seamless customer service and innovative products to its customers.
Helvetia Baloise is the largest multi-line insurer in Switzerland and one of the leading insurance groups in Europe. Every day, more than 22,000 employees are committed to supporting around 13 million customers with insurance, pension and financial solutions – from private individuals and SMEs to international customer groups such as speciality and reinsurance. Headquartered in Basel, Switzerland, Helvetia Baloise is active in a total of eight European markets and in the global speciality markets, combining strong Swiss roots with a clear international orientation. Helvetia Baloise creates security and opens up opportunities, both now and in the future. Through profitable growth and business activities geared towards long-term stability, we facilitate individual solutions for customers, secure an attractive and reliable investment for our shareholders, promote strong partnerships and offer our employees attractive prospects. The Helvetia Baloise Holding Ltd share (HBAN) is traded on SIX Swiss Exchange.
Somos la empresa aseguradora multirramo 100% mexicana de mayor experiencia y solidez de nuestro país. Por más de 116 años hemos protegido a las familias mexicanas, respaldando sus sueños, historias, emociones y vivencias. Estamos orgullosos de formar parte de uno de los conglomerados empresariales más importantes de México GRUPO BAL, el cual está constituido por instituciones de gran prestigio y destacadas en cada uno de sus sectores: seguros, pensiones, financiero, comercial, industrial y educativo. Nuestro compromiso con las familias mexicanas, clientes, colaboradores y fuerza productora va más allá de brindarles protección financiera, buscamos incidir de manera positiva en su vida y la construcción de su futuro y patrimonio. Cada una de nuestras acciones tiene un sentido de responsabilidad social que nos permite contribuir con el desarrollo de México y que forman parte esencial de nuestra filosofía empresarial “Vivir es increíble”, mensaje que nos llena de amor y pasión por la vida y que buscamos transmitir en todo momento. Síguenos en nuestras redes sociales @GNPSEGUROS
Hi, we’re HUB. We advise businesses and individuals on how to reach their goals. When you partner with us, you’re at the center of a vast network of risk, insurance, employee benefits, retirement and wealth management specialists that bring clarity to a changing world with tailored solutions and unrelenting advocacy. So you’re ready for tomorrow. About Hub International Headquartered in Chicago, Illinois, Hub International Limited (Hub) is a leading full-service global insurance broker providing property and casualty, life and health, employee benefits, investment and risk management products and services. From offices located throughout North America, Hub’s vast network of specialists provides peace of mind on what matters most by protecting clients through unrelenting advocacy and tailored insurance solutions. For more information, please visit hubinternational.com.
We are a leading provider of insurance and reinsurance offering innovative risk management solutions for businesses worldwide. We partner with those who move the world forward, navigating complex risks and working across diverse industries to support and empower our clients. Note: We are currently experiencing some technical issues with our recruitment platform which we hope to resolve shortly, please be patient with us, thank you for your interest in jobs at AXA XL.
What makes Lockton stand apart is also what makes us better: independence. Our private ownership empowers our 13,100+ Associates doing business in over 140+ countries to focus solely on clients' risk and insurance needs. With expertise that reaches around the globe, we deliver the deep understanding needed to accomplish remarkable results.
China Life Insurance (Group) Company, headquartered in Beijing, is a large state-owned financial and insurance company. Its predecessor,PICC was founded in 1949 and the PICC (Life) Co.,Ltd was set up in 1996 after its separation from the former PICC. In 1999, it was renamed China Life Insurance Company. With the approval of the State Council and the China Insurance Regulatory Commission, the former China Life Insurance Company was restructured as China Life Insurance (Group) Company in 2003. It has China Life Insurance Company Limited, China Life Asset Management Company Limited, China Life Property & Casualty Insurance Company Limited, China Life Pension Company Limited, China Life Ecommerce Company Limited, China Life Insurance (Overseas) Company Limited, China Life Investment Holding Company Limited and Insurance Professional College as its subsidiaries. Its business covers life insurance, property & casualty insurance, pension plans (corporate annuity), asset management, alternative investment, overseas operations and e-commerce. Through capital-links, it has invested in several banks, security firms and other non-financial institutions.
Latest updates, reports, and threat intel affecting the global network.
Encryption is complicated, even for adversaries looking for the easiest way to ruin a CIO's day. Researchers are seeing ransomware actors...
Best Stand-Alone Cyber Security Insurance Companies in the U.S. rankings highlight key players in the cybersecurity insurance market based...
Learn about job roles, skills, salary, and the future scope of cybersecurity in India and abroad.
AI is becoming a bigger part of cybersecurity. Some advances in this area will be showcased at the 2026 NADA Show.
More than 80% of crimes involve a vehicle, according to Berla Corporation, a cybersecurity company.
Which cyber defenses actually work against current threats? An analysis of cyber-insurance claims data shows six technologies companies...
The holidays are a perfect time to show appreciation to the security pros in your life—or even to treat yourself. For people who live in...
Cybercriminals can't be stopped. At best, they can be held at bay until they find another way to breach a system.
Ayelet Kutner, CTO, At-Bay, was speaking at a panel held as part of Calcalist and Commit's AI Week. The panel also included: Ariel Salpeter,...
HedgeDoc is an open source, real-time collaborative markdown notes application. Prior to 1.11.0, the GitHub Gist export flow created an OAuth2 state value but only checked that it was present rather than validating it against the value expected for the user's session. Because the state was not properly validated, an attacker could forge a callback URL containing their own valid GitHub OAuth code. When processing the callback, HedgeDoc used the victim's logged-in session to select which note to export, but the attacker's authorization code to determine which GitHub account received it. As a result, a logged-in victim who clicked a crafted link could export their own private, protected, or limited note directly into a Gist controlled by the attacker. This issue has been fixed in version 1.11.0.
HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, HedgeDoc was vulnerable to a YAML alias bomb due to unsafe processing of the note frontmatter. HedgeDoc parsed frontmatter with js-yaml.load (js-yaml v3) via @hedgedoc/meta-marked, which resolved YAML anchor aliases. A compact malicious payload could therefore expand into a huge object structure, consuming excessive CPU. This expansion ran on every request to the publish view (/s/<shortid>) and, when placed under the opengraph key, the editor view (/<noteId>). A ten-level alias bomb could block the single Node.js event loop for roughly 235 seconds per request, causing concurrent requests to hang or drop and rendering the instance unavailable (DoS). Because the note was stored in the database, the impact survived process restarts until the note was removed. toobusy-js did not reliably mitigate the worst cases, as the event loop was saturated before the middleware could respond. This issue was fixed in version 1.11.0.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts. When building the extension hash (via extensions(), extensions_by_long_name(), extensions_by_oid(), or has_extension_oid()), the code passes OBJ_obj2txt()'s return value as the hash-key length; because that value is the OID's full text length rather than the bytes written to the fixed-size buffer (129 bytes), an OID whose text is longer than the 129-byte buffer causes a read past the allocation, exposing adjacent heap memory as the returned hash key. extensions_by_name() uses the static shortname path and is not affected.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3_EXT_d2i(ext) returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth_att dereference its result without a NULL check. keyid_data also dereferences akid->keyid, which is NULL for an empty AKI SEQUENCE (DER 30 00) even when the parse succeeds. A caller invoking an affected helper on an extension from an untrusted certificate triggers a SIGSEGV that crashes the Perl process.
Cockpit CMS contains a path traversal vulnerability in the Bucket file storage API (/system/buckets/api). The api() method in modules/System/Controller/Buckets.php sanitizes the bucket name with preg_replace('/[^a-zA-Z0-9-_\\.]/','', $bucket), which permits '..' and '../' sequences. The sanitized value is interpolated into a Flysystem path as uploads://buckets/{bucket}. Flysystem's WhitespacePathNormalizer resolves 'buckets/..' to the empty string (the uploads storage root) without raising PathTraversalDetected because the '..' has a preceding component to consume. An authenticated low-privileged user can send a crafted request with a '../' bucket name to list, upload, and delete files across all buckets, including those belonging to other users or roles
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.