CFR
Company Details
Linkedin ID:
council-on-foreign-relations
Website:
Employees number:
2,126
Number of followers:
383,243
NAICS:
54172
Industry Type:
Homepage:
cfr.org
IP Addresses:
0
Company ID:
COU_2232683
Scan Status:
In-progress
Council on Foreign Relations Company CyberSecurity Posture
cfr.org
The mission of the Council on Foreign Relations is to inform U.S. engagement with the world. Founded in 1921, CFR is a nonpartisan, independent national membership organization, think tank, educator, and publisher, including of Foreign Affairs. It generates policy-relevant ideas and analysis, convenes experts and policymakers, and promotes informed public discussion—all to have impact on the most consequential issues facing the United States and the world. CFR's website, www.cfr.org, is a trusted, nonpartisan source of timely analysis and context on international events and trends. CFR publishes the bimonthly Foreign Affairs magazine, widely-considered to be the most influential magazine for the analysis and debate of foreign policy and economics. Follow us: Instagram: https://www.instagram.com/cfr_org/ TikTok: https://www.tiktok.com/@cfr_org X: http://x.com/CFR_org YouTube: https://www.youtube.com/user/cfr/featured Facebook: http://www.facebook.com/councilonforeignrelations
Council on Foreign Relations A.I CyberSecurity Scoring
CFR Risk Score (AI oriented)Between 750 and 799
CFR
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CFR Global Score (TPRM)XXXX
CFR
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CFR Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
CFR Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CFR
Incidents vs Think Tanks Industry Average (This Year)
No incidents recorded for Council on Foreign Relations in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Council on Foreign Relations in 2025.
Incident Types CFR vs Think Tanks Industry Avg (This Year)
No incidents recorded for Council on Foreign Relations in 2025.
Incident History — CFR (X = Date, Y = Severity)
CFR cyber incidents detection timeline including parent company and subsidiaries
CFR Company Subsidiaries
The mission of the Council on Foreign Relations is to inform U.S. engagement with the world. Founded in 1921, CFR is a nonpartisan, independent national membership organization, think tank, educator, and publisher, including of Foreign Affairs. It generates policy-relevant ideas and analysis, convenes experts and policymakers, and promotes informed public discussion—all to have impact on the most consequential issues facing the United States and the world. CFR's website, www.cfr.org, is a trusted, nonpartisan source of timely analysis and context on international events and trends. CFR publishes the bimonthly Foreign Affairs magazine, widely-considered to be the most influential magazine for the analysis and debate of foreign policy and economics. Follow us: Instagram: https://www.instagram.com/cfr_org/ TikTok: https://www.tiktok.com/@cfr_org X: http://x.com/CFR_org YouTube: https://www.youtube.com/user/cfr/featured Facebook: http://www.facebook.com/councilonforeignrelations
Loading...
CFR Similar Companies
TPI Aspen Forum
This premier event gathers leaders from business, government and academia to discuss and debate key public policy issues affecting innovation, technology, and communications. Since 2010, more than 850 policymakers and thought leaders have convened at the St. Regis resort for provocative discussion
Romanian Center for European Policies
The Romanian Center for European Policies (CRPE) was established in 2009 by a group of experts bound by the shared objective of supporting Romania's role in Europe. The mission of the CRPE is to promote Romania as an influential leader in the development of EU agendas and policies. Another missio
Liechtenstein Institute in Vienna, Austria (LIVA)
The Liechtenstein Institute in Vienna, Austria (LIVA) was established in October 2007. The founding of the European branch of the Liechtenstein Institute expanded upon the success of the Liechtenstein Institute on Self-Determination (LISD) of the Woodrow Wilson School of Public and International Aff
IEEFA North America
IEEFA North America is a regional branch of the Institute for Energy Economics and Financial Analysis (IEEFA), a global independent think tank examining issues related to energy markets, trends, and policies. Our mission is to accelerate the transition to a diverse, sustainable and profitable ener
Mission Energy Foundation
'You're building the future. Please build the one you want to live in." – A CLEAN WORLD with CLEAN ENERGY... Throughout the last 14 years Mission Energy Foundation have delivered successful platforms of knowledge dissemination on various subjects like Gasification, Waste-to-Energy, Fly Ash Utilizat
Arab Gulf States Institute
The Arab Gulf States Institute (AGSI) is an independent, nonprofit institution dedicated to highlighting the importance of the relationship between the United States and the Gulf region through free and open exchange of multiple points of view on issues that concern the Gulf. AGSI strives to suppor
.png)
CFR CyberSecurity News
October 09, 2025 08:48 PM
Resources on U.S.-China Relations
CFR Education, the educational arm of the Council on Foreign Relations, aims to empower young people with the essential knowledge, skills, and perspective...
February 12, 2025 08:00 AM
Navigating the Digital Frontier: Cybersecurity and Geopolitics in the Middle East
Cybersecurity has become increasingly important in the Middle East's security in recent years, with digital warfare significantly reshaping...
January 21, 2025 08:00 AM
China Has Raised the Cyber Stakes
Over the last few months, US government officials have revealed details about a sophisticated Chinese cyber-operation called “Salt Typhoon.”
December 20, 2024 08:00 AM
Cyber Week in Review: December 20, 2024
U.S. Supreme Court takes TikTok case; House AI Task Force releases report; Namibian telecom hacked; Arm and Qualcomm escalate chip licensing...
December 18, 2024 08:00 AM
Albert named higher education ambassador by Council on Foreign Relations
This opportunity allows us to really hone in on our pedagogical skills for international relations," says Craig Albert, PhD.
November 15, 2024 08:00 AM
Cyber Week in Review: November 15, 2024
U.S. will vote yes on UN Cybercrime Convention; Norway selected to host 2025 Internet Governance Forum; DHS releases responsible AI...
October 25, 2024 07:00 AM
Cyber Week in Review: October 25, 2024
Biden administration releases National Security Memorandum on AI; U.S. to review ICE spyware purchase; China cracks down on puns;...
October 07, 2024 07:00 AM
What Is Quantum Computing?
Quantum computing, once the realm of science fiction, could bring massive economic gains. But it also threatens to upend national security,...
July 05, 2024 07:00 AM
Cyber Month in Review: June 2024
Supreme Court issues Murthy v. Missouri decision; Polish parliament withdraws immunity for lawmaker; UN adopts AI resolution; major privacy...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CFR CyberSecurity History Information
Official Website of Council on Foreign Relations
The official website of Council on Foreign Relations is http://www.cfr.org.
Council on Foreign Relations’s AI-Generated Cybersecurity Score
According to Rankiteo, Council on Foreign Relations’s AI-generated cybersecurity score is 769, reflecting their Fair security posture.
How many security badges does Council on Foreign Relations’ have ?
According to Rankiteo, Council on Foreign Relations currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Council on Foreign Relations have SOC 2 Type 1 certification ?
According to Rankiteo, Council on Foreign Relations is not certified under SOC 2 Type 1.
Does Council on Foreign Relations have SOC 2 Type 2 certification ?
According to Rankiteo, Council on Foreign Relations does not hold a SOC 2 Type 2 certification.
Does Council on Foreign Relations comply with GDPR ?
According to Rankiteo, Council on Foreign Relations is not listed as GDPR compliant.
Does Council on Foreign Relations have PCI DSS certification ?
According to Rankiteo, Council on Foreign Relations does not currently maintain PCI DSS compliance.
Does Council on Foreign Relations comply with HIPAA ?
According to Rankiteo, Council on Foreign Relations is not compliant with HIPAA regulations.
Does Council on Foreign Relations have ISO 27001 certification ?
According to Rankiteo,Council on Foreign Relations is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Council on Foreign Relations
Council on Foreign Relations operates primarily in the Think Tanks industry.
Number of Employees at Council on Foreign Relations
Council on Foreign Relations employs approximately 2,126 people worldwide.
Subsidiaries Owned by Council on Foreign Relations
Council on Foreign Relations presently has no subsidiaries across any sectors.
Council on Foreign Relations’s LinkedIn Followers
Council on Foreign Relations’s official LinkedIn profile has approximately 383,243 followers.
NAICS Classification of Council on Foreign Relations
Council on Foreign Relations is classified under the NAICS code 54172, which corresponds to Research and Development in the Social Sciences and Humanities.
Council on Foreign Relations’s Presence on Crunchbase
Yes, Council on Foreign Relations has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/council-on-foreign-relations.
Council on Foreign Relations’s Presence on LinkedIn
Yes, Council on Foreign Relations maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/council-on-foreign-relations.
Cybersecurity Incidents Involving Council on Foreign Relations
As of December 05, 2025, Rankiteo reports that Council on Foreign Relations has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Council on Foreign Relations has an estimated 812 peer or competitor companies worldwide.
Council on Foreign Relations CyberSecurity History Information
How many cyber incidents has Council on Foreign Relations faced ?
Total Incidents: According to Rankiteo, Council on Foreign Relations has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Council on Foreign Relations ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. Prior to 2.9.8, there is a security issue exists in the exec_in_pod tool of the mcp-server-kubernetes MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (sh -c) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without explicit user intent. This vulnerability is fixed in 2.9.8.
Risk Information
cvss3
Base: 6.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
Description
XML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request.
Description
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.
Description
Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.
Risk Information
cvss4
Base: 9.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed() function, it might lead to high CPU consumption and a potential Denial of Service. Small numbers go through this call stack: NativeNumber.numTo > DToA.JS_dtostr > DToA.JS_dtoa > DToA.pow5mult where pow5mult attempts to raise 5 to a ridiculous power. This vulnerability is fixed in 1.8.1, 1.7.15.1, and 1.7.14.1.
Risk Information
cvss4
Base: 5.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=council-on-foreign-relations' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
