CCO A.I CyberSecurity Scoring
02/04/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for Cross Catholic Outreach in 2026.
No incidents recorded for Cross Catholic Outreach in 2026.
No incidents recorded for Cross Catholic Outreach in 2026.
Non-profit Organizations
Médecins Sans Frontières (MSF) is an international, independent, medical humanitarian organisation working to provide medical assistance to people affected by conflict, epidemics, disasters, or exclusion from healthcare. Since our founding in 1971, we’ve grown to a global movement delivering humanitarian assistance in over 70 countries. Thanks to our 7 million individual donors, our work remains impartial and independent. Read more about us on msf.org
UNICEF works in some of the world’s toughest places, to reach the world’s most disadvantaged children. To save their lives. To defend their rights. To help them fulfill their potential. Across 190 countries and territories, we work for every child, everywhere, every day, to build a better world for everyone. And we never give up.
Boys & Girls Clubs of America does whatever it takes for America’s youth to have great futures. As the nation's premier (nonprofit) youth development organization, our programs, training and services support millions of kids and teens every year. We hire employees who are recognized as leaders in their field with a passion for improving young lives. We have strong values, embrace diversity and offer great benefits to allow our employees to maintain work/life harmony. Boys & Girls Clubs of America represents the national office, which supports more than 1,000 independent Boys & Girls Club organizations serving youth across more than 5,400 locations. Boys & Girls Clubs are located in cities, towns, public housing and on Native lands throughout the country, and serve military families in BGCA-affiliated Youth Centers on U.S. military installations worldwide. Learn more about us at BGCA.org. Our Mission To enable all young people, especially those who need us most, to reach their full potential as productive, caring, responsible citizens. Our Values Integrity Collaboration Accountability Respect Excellence
AIESEC develops leadership among youth aged 18 to 30 and contributes to strengthening the global employability market by providing an end-to-end international talent recruitment solution for Enterprises, NGOs, and Start-ups. AIESEC is the world's largest youth-run organization developing the leadership potential of young people. Present in 120+ countries and territories across 2600 universities, we provide students and recent graduates with life-changing experiences to intern or volunteer abroad within partner organizations. We partner with organizations ranging from Fortune 500 to local enterprises in developing and sourcing their global talent needs across our network. Through our programs in universities, we provide organizations with access to a global network of young talent who have the capabilities to make a positive impact. For the last seven decades, we have developed over one million leaders ranging from business, civil society, and world leaders, including one Nobel Peace Prize Laureate. Learn more about us at - http://partners.aiesec.org
Save the Children Save the Children is the world's leading independent organisation for children. We work in around 120 countries. Our vision is to live in a world in which every child attains the right to survival, protection, development and participation. Last year Save the Children's programmes and campaigns reached more than 55 million children directly around the world, through our and our partners' work. We work to inspire breakthroughs in the way the world treats children and to achieve immediate and lasting change in their lives. Across all of our work, we pursue several core values: accountability, ambition, collaboration, creativity and integrity.
IEEE is the world’s largest technical professional organization and is a public charity dedicated to advancing technological innovation and excellence for the benefit of humanity. IEEE and its members inspire a global community through its highly cited publications, conferences, technology standards, and professional and educational activities. IEEE is the trusted “voice” for engineering, computing and technology information around the globe. For information about the IEEE - visit http://www.ieee.org.
TED’s mission is to discover and champion the ideas that will shape tomorrow. Powerful ideas, powerfully presented, can move us to feel something, to think differently, to take action and create a brighter future. TED finds these powerful ideas across disciplines and around the globe, from people who passionately seek a deeper understanding of the world and want to make a difference in it. TED’s spotlight, and its engaged, open-minded audience, help these ideas to create real impact: to shift one person’s perspective, to make a difference within a community or to spark global transformation. Ideas change everything.
The Salvation Army is the nation's largest direct provider of social services. Annually, we help millions overcome poverty, addiction, and spiritual and economic hardships by preaching the gospel of Jesus Christ and meeting human needs in His name without discrimination in nearly every zip code. By providing food, shelter, eviction prevention assistance, emergency disaster relief, rehabilitation, after-school and summer youth programs, spiritual enrichment, and more, The Salvation Army is doing the most good at nearly 7,000 centers of operation around the country. The Salvation Army, an international movement, is an evangelical part of the universal Christian church. Its message is based on the Bible. Its ministry is motivated by the love of God. Its mission is to preach the gospel of Jesus Christ and to meet human needs in His name without discrimination.
ALSAC is the largest healthcare-related charity in the United States. Founded in 1957 by Danny Thomas, our sole mission is to raise the funds and awareness needed to operate and maintain St. Jude Children's Research Hospital®. While our headquarters can be found in Memphis, Tennessee, we have additional offices in more than 30 locations across the country and in Puerto Rico with positions in fundraising, marketing, digital, information technology, legal, finance and many other disciplines all supporting our lifesaving mission - Finding cures. Saving children. ® At ALSAC, we believe in hiring the best and brightest from around the globe, and in 2020 we were named #1 on Fast Company's 100 Best Workplaces for Innovators. With a concerted focus on diversity and inclusion, we value and respect the contributions of all of our employees. Our work environment encourages everyone to be their authentic selves as we strive together towards a day when “no child dies in the dawn of life.” As we look to the future, we understand that we must be relentlessly innovative. Our work helps fuel the groundbreaking research and treatment at St. Jude and ensures that families never receive a bill from St. Jude for treatment, travel, housing or food — because all a family should worry about is helping their child live. View our career opportunities at https://www.stjude.org/jobs/alsac.html and follow ALSAC across social media using @stjude. To learn more about the research hospital, follow St. Jude Children's Research Hospital on LinkedIn. For specific career opportunities available through the hospital, visit www.stjude.org/JoinOurMission.
Latest updates, reports, and threat intel affecting the global network.
Strauss Borrelli PLLC, a leading data breach law firm, is investigating Cross Catholic Outreach, Inc. regarding its recent data breach.
HedgeDoc is an open source, real-time collaborative markdown notes application. Prior to 1.11.0, the GitHub Gist export flow created an OAuth2 state value but only checked that it was present rather than validating it against the value expected for the user's session. Because the state was not properly validated, an attacker could forge a callback URL containing their own valid GitHub OAuth code. When processing the callback, HedgeDoc used the victim's logged-in session to select which note to export, but the attacker's authorization code to determine which GitHub account received it. As a result, a logged-in victim who clicked a crafted link could export their own private, protected, or limited note directly into a Gist controlled by the attacker. This issue has been fixed in version 1.11.0.
HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, HedgeDoc was vulnerable to a YAML alias bomb due to unsafe processing of the note frontmatter. HedgeDoc parsed frontmatter with js-yaml.load (js-yaml v3) via @hedgedoc/meta-marked, which resolved YAML anchor aliases. A compact malicious payload could therefore expand into a huge object structure, consuming excessive CPU. This expansion ran on every request to the publish view (/s/<shortid>) and, when placed under the opengraph key, the editor view (/<noteId>). A ten-level alias bomb could block the single Node.js event loop for roughly 235 seconds per request, causing concurrent requests to hang or drop and rendering the instance unavailable (DoS). Because the note was stored in the database, the impact survived process restarts until the note was removed. toobusy-js did not reliably mitigate the worst cases, as the event loop was saturated before the middleware could respond. This issue was fixed in version 1.11.0.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts. When building the extension hash (via extensions(), extensions_by_long_name(), extensions_by_oid(), or has_extension_oid()), the code passes OBJ_obj2txt()'s return value as the hash-key length; because that value is the OID's full text length rather than the bytes written to the fixed-size buffer (129 bytes), an OID whose text is longer than the 129-byte buffer causes a read past the allocation, exposing adjacent heap memory as the returned hash key. extensions_by_name() uses the static shortname path and is not affected.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3_EXT_d2i(ext) returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth_att dereference its result without a NULL check. keyid_data also dereferences akid->keyid, which is NULL for an empty AKI SEQUENCE (DER 30 00) even when the parse succeeds. A caller invoking an affected helper on an extension from an untrusted certificate triggers a SIGSEGV that crashes the Perl process.
Cockpit CMS contains a path traversal vulnerability in the Bucket file storage API (/system/buckets/api). The api() method in modules/System/Controller/Buckets.php sanitizes the bucket name with preg_replace('/[^a-zA-Z0-9-_\\.]/','', $bucket), which permits '..' and '../' sequences. The sanitized value is interpolated into a Flysystem path as uploads://buckets/{bucket}. Flysystem's WhitespacePathNormalizer resolves 'buckets/..' to the empty string (the uploads storage root) without raising PathTraversalDetected because the '..' has a preceding component to consume. An authenticated low-privileged user can send a crafted request with a '../' bucket name to list, upload, and delete files across all buckets, including those belonging to other users or roles
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.