CCSI
Company Details
Linkedin ID:
cosi---center-of-science-and-industry
Website:
Employees number:
234
Number of followers:
16,870
NAICS:
712
Industry Type:
Homepage:
cosi.org
IP Addresses:
0
Company ID:
COS_1996522
Scan Status:
In-progress
COSI - Center of Science and Industry Company CyberSecurity Posture
cosi.org
COSI provides an exciting and informative atmosphere for those of all ages to discover more about our environment, our accomplishments, our heritage, and ourselves. We motivate a desire toward a better understanding of science, industry, health, and history through involvement in exhibits, demonstrations, and a variety of educational activities and experiences. COSI is for the enrichment of the individual and for a more rewarding life on our planet, Earth.
COSI - Center of Science and Industry A.I CyberSecurity Scoring
CCSI Risk Score (AI oriented)Between 700 and 749
CCSI
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CCSI Global Score (TPRM)XXXX
CCSI
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CCSI Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Center of Science & Industry
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Vermont Attorney General's Office reported a data breach involving the Center of Science & Industry (COSI) on November 1, 2023. The breach was discovered on October 13, 2023, and involved unauthorized access to personal information on or about June 26, 2023. The specific number of individuals affected and the types of personal information involved are currently unknown.
CCSI Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CCSI
Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)
No incidents recorded for COSI - Center of Science and Industry in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for COSI - Center of Science and Industry in 2026.
Incident Types CCSI vs Museums, Historical Sites, and Zoos Industry Avg (This Year)
No incidents recorded for COSI - Center of Science and Industry in 2026.
Incident History — CCSI (X = Date, Y = Severity)
CCSI cyber incidents detection timeline including parent company and subsidiaries
CCSI Company Subsidiaries
COSI provides an exciting and informative atmosphere for those of all ages to discover more about our environment, our accomplishments, our heritage, and ourselves. We motivate a desire toward a better understanding of science, industry, health, and history through involvement in exhibits, demonstrations, and a variety of educational activities and experiences. COSI is for the enrichment of the individual and for a more rewarding life on our planet, Earth.
Loading...
CCSI Similar Companies
Swiss Institute
Founded on May 7th, 1986, the Swiss Institute was officially registered with the State and City of New York as an independent, not-for-profit organization on September 12th, 1986. The Swiss Center Foundation provided important support helping the Swiss Institute to start its program. In 1990, though
Hallands Konstmuseum
Hallands Konstmuseum ligger vackert beläget intill Nissan och Norre Katts park i Halmstad. Här kan du ta del av utställningar, spännande programpunkter och ett härligt kafé med utsikt över Nissan. Hos oss finns det möjlighet att boka spännande konferensupplevelser. Här erbjuds en unik miljö som upp
Queensland Art Gallery | Gallery of Modern Art
The Queensland Art Gallery | Gallery of Modern Art (QAGOMA) is Queensland’s premier visual arts institution, located across two adjacent riverside buildings in the Queensland Cultural Centre at Brisbane’s South Bank. Founded in 1895, the Queensland Art Gallery (QAG) has occupied its current award-wi
Holden Forests & Gardens
Holden Forests & Gardens is made up of two of Northeast Ohio’s most important environmental and cultural institutions — the Holden Arboretum and Cleveland Botanical Garden — whose mission is to advance and inspire a deeper understanding of plants to enhance life. The 12th largest public garden in
San Francisco Zoo & Gardens
The mission of the San Francisco Zoo is to connect all people with wildlife, inspire caring for nature, and advance conservation action. Nestled against the Pacific Ocean, the SF Zoo is an urban oasis. It is home to more than 1,000 exotic, endangered, and rescued animals representing nearly 250 spec
miSci | Museum of Innovation and Science
miSci is Tech Valley's leading science museum, providing multi-media hands-on STEM learning to visitors of all ages. Located in New York’s Capital Region, miSci is mission-driven to celebrate and explore science and technology, past, present and future. The museum explores the area's rich technologi
Maxville Heritage Interpretive Center
Our mission is to gather, preserve, and share the rich history of African American, Indigenous, and immigrant loggers in the Pacific Northwest. We utilize inclusive stories of multicultural logging communities to better connect the experiences of immigrants and migrants to a larger American narrativ
American Museum of Science and Energy
The American Museum of Science and Energy, AMSE, was opened in conjunction with the opening of the gates to Oak Ridge, the secret city that was built to enrich uranium for the bomb dropped on Hiroshima during WWII. The museum tells the history of Oak Ridge's role during the Manhattan Project.
The Wayside Inn
The Wayside Inn is a nonprofit charitable Massachusetts corporation created in 1944 to own, operate, and maintain the Wayside Inn Historic Site, a campus of 9 historic buildings on more than 100 acres. Its mission promotes early American humanities through hospitality, education, and programming, an
.png)
CCSI CyberSecurity News
January 14, 2026 07:24 PM
COSI cuts 15% of staff amid funding changes
COLUMBUS, Ohio (WCMH) — The Center of Science and Industry (COSI) has cut 15% of its staff amid funding changes.
February 23, 2024 08:00 AM
USA Today Readers' Choice Award names COSI second-best science museum in nation
The Center of Science and Industry (COSI) was named the second-best science museum in the nation by USA Today 10Best Readers' Choice Awards.
March 31, 2022 07:00 AM
COSI, NASA, U.S. Department of State Deliver STEM at the World Fair
COSI, NASA and the U.S. State Department partnered to distribute NASA Learning Lunchbox STEM Kits to Help Showcase U.S. Innovation at the...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CCSI CyberSecurity History Information
Official Website of COSI - Center of Science and Industry
The official website of COSI - Center of Science and Industry is http://www.cosi.org.
COSI - Center of Science and Industry’s AI-Generated Cybersecurity Score
According to Rankiteo, COSI - Center of Science and Industry’s AI-generated cybersecurity score is 722, reflecting their Moderate security posture.
How many security badges does COSI - Center of Science and Industry’ have ?
According to Rankiteo, COSI - Center of Science and Industry currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has COSI - Center of Science and Industry been affected by any supply chain cyber incidents ?
According to Rankiteo, COSI - Center of Science and Industry has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does COSI - Center of Science and Industry have SOC 2 Type 1 certification ?
According to Rankiteo, COSI - Center of Science and Industry is not certified under SOC 2 Type 1.
Does COSI - Center of Science and Industry have SOC 2 Type 2 certification ?
According to Rankiteo, COSI - Center of Science and Industry does not hold a SOC 2 Type 2 certification.
Does COSI - Center of Science and Industry comply with GDPR ?
According to Rankiteo, COSI - Center of Science and Industry is not listed as GDPR compliant.
Does COSI - Center of Science and Industry have PCI DSS certification ?
According to Rankiteo, COSI - Center of Science and Industry does not currently maintain PCI DSS compliance.
Does COSI - Center of Science and Industry comply with HIPAA ?
According to Rankiteo, COSI - Center of Science and Industry is not compliant with HIPAA regulations.
Does COSI - Center of Science and Industry have ISO 27001 certification ?
According to Rankiteo,COSI - Center of Science and Industry is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of COSI - Center of Science and Industry
COSI - Center of Science and Industry operates primarily in the Museums, Historical Sites, and Zoos industry.
Number of Employees at COSI - Center of Science and Industry
COSI - Center of Science and Industry employs approximately 234 people worldwide.
Subsidiaries Owned by COSI - Center of Science and Industry
COSI - Center of Science and Industry presently has no subsidiaries across any sectors.
COSI - Center of Science and Industry’s LinkedIn Followers
COSI - Center of Science and Industry’s official LinkedIn profile has approximately 16,870 followers.
NAICS Classification of COSI - Center of Science and Industry
COSI - Center of Science and Industry is classified under the NAICS code 712, which corresponds to Museums, Historical Sites, and Similar Institutions.
COSI - Center of Science and Industry’s Presence on Crunchbase
Yes, COSI - Center of Science and Industry has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/cosi-2.
COSI - Center of Science and Industry’s Presence on LinkedIn
Yes, COSI - Center of Science and Industry maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cosi---center-of-science-and-industry.
Cybersecurity Incidents Involving COSI - Center of Science and Industry
As of January 23, 2026, Rankiteo reports that COSI - Center of Science and Industry has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
COSI - Center of Science and Industry has an estimated 2,178 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at COSI - Center of Science and Industry ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Data Breach at Center of Science & Industry (COSI)
Description: The Vermont Attorney General's Office reported a data breach involving the Center of Science & Industry (COSI) on November 1, 2023. The breach was discovered on October 13, 2023, and involved unauthorized access to personal information on or about June 26, 2023. The specific number of individuals affected and the types of personal information involved are currently unknown.
Date Detected: 2023-10-13
Date Publicly Disclosed: 2023-11-01
Type: Data Breach
Attack Vector: Unauthorized Access
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
Which entities were affected by each incident ?
Incident : Data Breach COS506072825
Entity Name: Center of Science & Industry (COSI)
Entity Type: Non-profit Organization
Industry: Education
References
Where can I find more information about each incident ?
Incident : Data Breach COS506072825
Source: Vermont Attorney General's Office
Date Accessed: 2023-11-01
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Vermont Attorney General's OfficeDate Accessed: 2023-11-01.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-10-13.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2023-11-01.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Vermont Attorney General's Office.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
Description
Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Description
Azure Entra ID Elevation of Privilege Vulnerability
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Description
Moonraker is a Python web server providing API access to Klipper 3D printing firmware. In versions 0.9.3 and below, instances configured with the "ldap" component enabled are vulnerable to LDAP search filter injection techniques via the login endpoint. The 401 error response message can be used to determine whether or not a search was successful, allowing for brute force methods to discover LDAP entries on the server such as user IDs and user attributes. This issue has been fixed in version 0.10.0.
Risk Information
cvss4
Base: 2.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versions 3.7.0 and above allow an authenticated user to execute arbitrary system commands on the host server by injecting shell metacharacters into backup filenames. The BackupManager fails to sanitize the filenames of uploaded backups. The system persists user-uploaded files directly to the host filesystem using the raw originalname provided in the request. This allows an attacker to stage a file containing shell metacharacters (e.g., $(id).tar.gz) at a predictable path, which is later referenced during the restore process. The successful storage of the file is what allows the subsequent restore command to reference and execute it. This issue has been fixed in version 4.7.0.
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=cosi---center-of-science-and-industry' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
