Bromma is the industry's most experienced spreader manufacturer, known worldwide for crane spreaders of exceptional reliability. Today Bromma manufactures more than 2000 spreaders per year of all types. Bromma spreaders are in use in 99 out of the top 100 ports worldwide.
ANDRITZ is an international technology group based in Austria. The company offers a broad portfolio of innovative plants, equipment, systems, services and digital solutions for a wide range of industries and end markets. Sustainability is an integral part of the company’s business strategy and corporate culture: With its extensive portfolio of sustainable products and solutions, ANDRITZ aims to make the greatest possible contribution to a sustainable future and help its customers achieve their sustainability goals. ANDRITZ is a global market leader in all four of its business areas: Pulp & Paper Metals Hydropower Environment & Energy Technological leadership and global presence are cornerstones of the group’s strategy, which is focused on long-term profitable growth. The publicly listed group has around 30,000 employees and over 280 locations in more than 80 countries.
Security & Compliance Standards Overview
No incidents recorded for Bromma in 2026.
No incidents recorded for ANDRITZ in 2026.
Bromma cyber incidents detection timeline including parent company and subsidiaries
ANDRITZ cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.
The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials.
XSS vulnerability in cveInterface.js allows for inject HTML to be passed to display, as cveInterface trusts input from CVE API services
Multiple reflected cross-site scripting (XSS) vulnerabilities in the login.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda and red_url parameters.
A reflected cross-site scripting (XSS) vulnerability in the login_newpwd.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda parameter.
