ISO 27001 Certificate
SOC 1 Type I Certificate
SOC 2 Type II Certificate
PCI DSS
HIPAA
RGPD
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions

Cenfri Company CyberSecurity Posture

cenfri.org
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

Founded in 2008, Cenfri is an independent, not-for-profit development consultancy. We have physical offices in Cape Town and Kigali and have worked in more than 40 countries across Africa, the Middle East, Asia and Latin America. ​​Find out more: https://cenfri.org/ ​ In collaboration with our partners, we undertake research and offer capacity building, convening and innovation support to businesses, governments, regulators and donors in Africa and beyond.​

Cenfri A.I CyberSecurity Scoring

Cenfri

Company Details

Linkedin ID:

cenfri

Website:

https://cenfri.org/

Employees number:

77

Number of followers:

12,004

NAICS:

54172

Industry Type:

Think Tanks

Homepage:

cenfri.org

IP Addresses:

0

Company ID:

CEN_3508312

Scan Status:

In-progress

AI scoreCenfri Risk Score (AI oriented)

Between 750 and 799

https://images.rankiteo.com/companyimages/cenfri.jpeg
Cenfri Think Tanks
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreCenfri Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/cenfri.jpeg
Cenfri Think Tanks
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

Cenfri Company CyberSecurity News & History

Past Incidents
0
Attack Types
0
No data available
Ailogo

Cenfri Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

🔒
Incident Predictions locked
Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

🔒
A.I. Risk Score Predictions locked
Access Monitoring Plan
statics

Underwriter Stats for Cenfri

Incidents vs Think Tanks Industry Average (This Year)

No incidents recorded for Cenfri in 2025.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Cenfri in 2025.

Incident Types Cenfri vs Think Tanks Industry Avg (This Year)

No incidents recorded for Cenfri in 2025.

Incident History — Cenfri (X = Date, Y = Severity)

Cenfri cyber incidents detection timeline including parent company and subsidiaries

Cenfri Company Subsidiaries

SubsidiaryImage

Founded in 2008, Cenfri is an independent, not-for-profit development consultancy. We have physical offices in Cape Town and Kigali and have worked in more than 40 countries across Africa, the Middle East, Asia and Latin America. ​​Find out more: https://cenfri.org/ ​ In collaboration with our partners, we undertake research and offer capacity building, convening and innovation support to businesses, governments, regulators and donors in Africa and beyond.​

similarCompanies

Cenfri Similar Companies

New Polity
newpolity.com

New Polity aims to investigate and construct a Christian postliberal worldview, recognizing that the defining characteristic of human societies is their fundamental orientation towards or away from God. We seek to achieve this by first deconstructing the assumed “normalcy” of liberalism—highlightin

Security Report Compare
YTTRO
yttro.com

YTTRO is also known as Mr. Arno Wang Chang Cheng Xu. YTTRISM encompasses traditions, beliefs and practices of/by/for YTTRO. YTT is working much over TIME to make just enough LOVE. ▂▂▂▂▂▂▂▂▂▂▂▂▂▂▂▂ ʟᴏᴠᴇ ʏᴏᴜ ᴀʟʟ ᴀɴᴅ sᴇᴇ ʏᴏᴜ sᴏᴏɴ …Ⓨ © YTTRO · ᴀʟʟ ʟᴏᴠᴇ ʀᴇsᴘᴇᴄᴛᴇᴅ © YTTRO · ᴀʟʟ ʀɪɢʜᴛs ʀᴇsᴇʀ

Security Report Compare
52Launch
52launch.com

52 Launch helps people with ideas get to market. How many times have we all said, "I had that idea"​ when we see an item on the shelf, TV or internet. There are over 7 billion people on this planet and each of us has an idea that could be revolutionary, disruptive, life-changing or just a better way

Security Report Compare
Think Deep UK
tduk.org

Think Deep UK is a group of built environment experts committed to creating resilient, sustainable and liveable cities through smart use of underground space. Mission: - To promote an awareness of the value of underground assets and to create a policy framework that can enable their fair use. - To

Security Report Compare
International Institute for Counter Terrorism (ICT)
ict.org.il

Founded in 1996, the International Institute for Counter-Terrorism (ICT) is one of the leading academic institute for counter-terrorism in the world, facilitating international cooperation in the global struggle against terrorism. ICT is an independent think tank providing expertise in terrorism, co

Security Report Compare
Unstoppables
unstoppables.com.au

☛ For more information: http://unstoppables.com.au/ | We believe the purpose of life is to play hard at everything we do. Uncompromising, unwavering, unbelievable, undeniable and unstoppable! Our highly successful first event was held in Antarctica (yes you read that correctly). 106 entrepreneurs

Security Report Compare
newsone

Cenfri CyberSecurity News

December 05, 2025 04:28 AM
On cybersecurity, online modules don’t cut it

Ignored online training modules aren't going to cut it in an environment that relies on technology for more and more aspects of our academic...

Read Article
December 05, 2025 03:21 AM
USM opens new cybersecurity classroom on campus

The University of Southern Maine opened a new classroom on its Gorham campus Thursday to train students to handle cyber security threats.

Read Article
December 04, 2025 11:47 PM
How to harness AI to advance cybersecurity

Organisations that prioritise AI‍-‍enabled security and a culture of continuous learning are best positioned to navigate the evolving threat...

Read Article
December 04, 2025 11:31 PM
New Jersey opens recruitment for volunteer cyber corps

The New Jersey Civilian Cyber Resilience Corps will start small, organizers said, and emphasize prevention over response.

Read Article
December 04, 2025 11:21 PM
7AI raises $130M to automate cybersecurity investigations with AI agents

Cybersecurity automation startup 7AI Inc. today announced that it has closed a $130 million funding round led by Index Ventures.

Read Article
December 04, 2025 11:21 PM
Exclusive: Palo Alto Networks CEO says AI demands a new focus on threat detection

AI is the future of threat detection—not just defense, Arora tells Axios.

Read Article
December 04, 2025 11:20 PM
How Agentic AI Can Boost Cyber Defense

Transurban head of cyber defense Muhammad Ali Paracha shares how his team uses agentic AI to triage and score security threats at Black Hat...

Read Article
December 04, 2025 10:59 PM
Senate Bill Would Reaffirm State, Local Cyber Grant Program

The federal measure, which has been referred to committee, would continue the State and Local Cybersecurity Grant Program that has supported...

Read Article
December 04, 2025 10:33 PM
DHS, cyber industry mobilize to get CISA director nominee confirmed

A new obstacle in the confirmation process for a key Trump cybersecurity nominee has prompted government and industry officials to mount a...

Read Article
faq

Frequently Asked Questions

Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.

Cenfri CyberSecurity History Information

Official Website of Cenfri

The official website of Cenfri is https://cenfri.org/.

Cenfri’s AI-Generated Cybersecurity Score

According to Rankiteo, Cenfri’s AI-generated cybersecurity score is 750, reflecting their Fair security posture.

How many security badges does Cenfri’ have ?

According to Rankiteo, Cenfri currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Does Cenfri have SOC 2 Type 1 certification ?

According to Rankiteo, Cenfri is not certified under SOC 2 Type 1.

Does Cenfri have SOC 2 Type 2 certification ?

According to Rankiteo, Cenfri does not hold a SOC 2 Type 2 certification.

Does Cenfri comply with GDPR ?

According to Rankiteo, Cenfri is not listed as GDPR compliant.

Does Cenfri have PCI DSS certification ?

According to Rankiteo, Cenfri does not currently maintain PCI DSS compliance.

Does Cenfri comply with HIPAA ?

According to Rankiteo, Cenfri is not compliant with HIPAA regulations.

Does Cenfri have ISO 27001 certification ?

According to Rankiteo,Cenfri is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Industry Classification of Cenfri

Cenfri operates primarily in the Think Tanks industry.

Number of Employees at Cenfri

Cenfri employs approximately 77 people worldwide.

Subsidiaries Owned by Cenfri

Cenfri presently has no subsidiaries across any sectors.

Cenfri’s LinkedIn Followers

Cenfri’s official LinkedIn profile has approximately 12,004 followers.

NAICS Classification of Cenfri

Cenfri is classified under the NAICS code 54172, which corresponds to Research and Development in the Social Sciences and Humanities.

Cenfri’s Presence on Crunchbase

No, Cenfri does not have a profile on Crunchbase.

Cenfri’s Presence on LinkedIn

Yes, Cenfri maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cenfri.

Cybersecurity Incidents Involving Cenfri

As of December 05, 2025, Rankiteo reports that Cenfri has not experienced any cybersecurity incidents.

Number of Peer and Competitor Companies

Cenfri has an estimated 812 peer or competitor companies worldwide.

Cenfri CyberSecurity History Information

How many cyber incidents has Cenfri faced ?

Total Incidents: According to Rankiteo, Cenfri has faced 0 incidents in the past.

What types of cybersecurity incidents have occurred at Cenfri ?

Incident Types: The types of cybersecurity incidents that have occurred include .

Incident Details

What are the most common types of attacks the company has faced ?

Additional Questions

cve

Latest Global CVEs (Not Company-Specific)

Description

MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. Prior to 2.9.8, there is a security issue exists in the exec_in_pod tool of the mcp-server-kubernetes MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (sh -c) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without explicit user intent. This vulnerability is fixed in 2.9.8.

Published
Date
2025-12-03
Updated
Date
2025-12-03
Risk Information
cvss3
Base: 6.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
References
Description

XML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request.

Published
Date
2025-12-03
Updated
Date
2025-12-03
References
Description

An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.

Published
Date
2025-12-03
Updated
Date
2025-12-03
References
Description

Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.

Published
Date
2025-12-03
Updated
Date
2025-12-03
Risk Information
cvss4
Base: 9.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed() function, it might lead to high CPU consumption and a potential Denial of Service. Small numbers go through this call stack: NativeNumber.numTo > DToA.JS_dtostr > DToA.JS_dtoa > DToA.pow5mult where pow5mult attempts to raise 5 to a ridiculous power. This vulnerability is fixed in 1.8.1, 1.7.15.1, and 1.7.14.1.

Published
Date
2025-12-03
Updated
Date
2025-12-03
Risk Information
cvss4
Base: 5.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References

Access Data Using Our API

SubsidiaryImage

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=cenfri' -H 'apikey: YOUR_API_KEY_HERE'
Try It API Documentation rapidRapid

What Do We Measure ?

revertimgrevertimgrevertimgrevertimg
Incident
revertimgrevertimgrevertimgrevertimg
Finding
revertimgrevertimgrevertimgrevertimg
Grade
revertimgrevertimgrevertimgrevertimg
Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network Security

Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)

Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)

Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat Intelligence

Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Top LeftTop RightBottom LeftBottom Right
Rankiteo
By Rankiteo
View on G2.com
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
View latest reports → View all security reports →
Users Love Us Badge