CROSSMARK
Company Details
Linkedin ID:
crossmark
Website:
Employees number:
9,463
Number of followers:
63,879
NAICS:
5416
Industry Type:
Homepage:
crossmark.com
IP Addresses:
0
Company ID:
CRO_2090980
Scan Status:
In-progress
CROSSMARK Company CyberSecurity Posture
crossmark.com
Crossmark offers service-based solutions to help your brand grow in store and online. With the sales and marketing expertise at our disposal, we can provide you with the ultimate end-to-end service. That means better decision making, actionable insights, unearthing exciting new retail opportunities, and giving you an instant understanding of your current and future performance.
CROSSMARK A.I CyberSecurity Scoring
CROSSMARK Risk Score (AI oriented)Between 700 and 749
CROSSMARK
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CROSSMARK Global Score (TPRM)XXXX
CROSSMARK
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CROSSMARK Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Crossmark, Inc.
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: The Maine Office of the Attorney General reported a data breach involving Crossmark, Inc. on April 15, 2024. The breach occurred on March 15, 2024, due to an inadvertent disclosure of personal information, specifically a spreadsheet containing names and Social Security numbers, affecting a total of 1,295 individuals.
CROSSMARK Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CROSSMARK
Incidents vs Business Consulting and Services Industry Average (This Year)
No incidents recorded for CROSSMARK in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for CROSSMARK in 2025.
Incident Types CROSSMARK vs Business Consulting and Services Industry Avg (This Year)
No incidents recorded for CROSSMARK in 2025.
Incident History — CROSSMARK (X = Date, Y = Severity)
CROSSMARK cyber incidents detection timeline including parent company and subsidiaries
CROSSMARK Company Subsidiaries
Crossmark offers service-based solutions to help your brand grow in store and online. With the sales and marketing expertise at our disposal, we can provide you with the ultimate end-to-end service. That means better decision making, actionable insights, unearthing exciting new retail opportunities, and giving you an instant understanding of your current and future performance.
Loading...
CROSSMARK Similar Companies
Capgemini Invent
Capgemini Invent is the digital innovation, consulting and transformation brand of the Capgemini Group, a global business line that combines market leading expertise in strategy, technology, data science and creative design, to help CxOs envision and build what’s next for their businesses. For more
Choosing a digital partner is about more than capabilities — it’s about collaboration and character. Unrealistic overhauls and off-the-shelf products ignore what matters most — your unique needs, culture, goals, and your legacy data and technology environments. At EXL, our collaboration is built o
Straive
Wisdom, the ability to apply knowledge to the real world with discernment, is critical for today’s enterprise. However, wisdom becomes available to the enterprise after the iterative application of knowledge to multiple long-tail experiments. Straive helps clients operationalize the Data →Insights
Slalom
Slalom is a fiercely human business and technology consulting company that leads with outcomes to bring more value, in all ways, always. We team with leaders who expect more. So we bring more. From strategy through delivery, our agile teams across 53 offices in 12 countries collaborate with you to
Applus+ is a worldwide leader in the testing, inspection, and certification sector. We are a trusted partner, enhancing the quality and safety of our clients’ assets and infrastructures while safeguarding their operations and improving their environmental performance. Our innovative approach, techni
KPMG India
KPMG entities in India are established under the laws of India and are owned and managed (as the case may be) by established Indian professionals. Established in September 1993, the KPMG entities have rapidly built a significant competitive presence in the country. Today we operate from offices acro
ZS
ZS is a management consulting and technology firm that partners with companies to improve life and how we live it. We transform ideas into impact by bringing together data, science, technology and human ingenuity to deliver better outcomes for all. Founded in 1983, ZS has more than 13,000 employees
Stefanini Group
Global Tech Consulting Company All in One. Stefanini is a Brazilian multinational company with 37 years of experience and presence in 41 countries. With more than 35,000 employees, we co-create solutions for a better future, driving digital transformation with a focus on real results. We oper
Advantage Solutions
At Advantage Solutions, we're the unseen architects behind your everyday purchases. From pantry staples to your online shopping carts, we ensure your favorite goods are always in stock and within reach by connecting manufacturers to the right retailers and teaming up with retailers to figure out the
.png)
CROSSMARK CyberSecurity News
July 23, 2025 07:00 AM
Crossmark, Bob Doll Launch 2 Active ETFs
Crossmark Global Investments has entered the ETF space with two actively managed exchange-traded funds — Crossmark Large Cap Growth ETF...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CROSSMARK CyberSecurity History Information
Official Website of CROSSMARK
The official website of CROSSMARK is http://www.crossmark.com.
CROSSMARK’s AI-Generated Cybersecurity Score
According to Rankiteo, CROSSMARK’s AI-generated cybersecurity score is 726, reflecting their Moderate security posture.
How many security badges does CROSSMARK’ have ?
According to Rankiteo, CROSSMARK currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does CROSSMARK have SOC 2 Type 1 certification ?
According to Rankiteo, CROSSMARK is not certified under SOC 2 Type 1.
Does CROSSMARK have SOC 2 Type 2 certification ?
According to Rankiteo, CROSSMARK does not hold a SOC 2 Type 2 certification.
Does CROSSMARK comply with GDPR ?
According to Rankiteo, CROSSMARK is not listed as GDPR compliant.
Does CROSSMARK have PCI DSS certification ?
According to Rankiteo, CROSSMARK does not currently maintain PCI DSS compliance.
Does CROSSMARK comply with HIPAA ?
According to Rankiteo, CROSSMARK is not compliant with HIPAA regulations.
Does CROSSMARK have ISO 27001 certification ?
According to Rankiteo,CROSSMARK is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of CROSSMARK
CROSSMARK operates primarily in the Business Consulting and Services industry.
Number of Employees at CROSSMARK
CROSSMARK employs approximately 9,463 people worldwide.
Subsidiaries Owned by CROSSMARK
CROSSMARK presently has no subsidiaries across any sectors.
CROSSMARK’s LinkedIn Followers
CROSSMARK’s official LinkedIn profile has approximately 63,879 followers.
NAICS Classification of CROSSMARK
CROSSMARK is classified under the NAICS code 5416, which corresponds to Management, Scientific, and Technical Consulting Services.
CROSSMARK’s Presence on Crunchbase
No, CROSSMARK does not have a profile on Crunchbase.
CROSSMARK’s Presence on LinkedIn
Yes, CROSSMARK maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/crossmark.
Cybersecurity Incidents Involving CROSSMARK
As of December 27, 2025, Rankiteo reports that CROSSMARK has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
CROSSMARK has an estimated 18,530 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at CROSSMARK ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Data Breach at Crossmark, Inc.
Description: The Maine Office of the Attorney General reported a data breach involving Crossmark, Inc. on April 15, 2024. The breach occurred on March 15, 2024, due to an inadvertent disclosure of personal information, specifically a spreadsheet containing names and Social Security numbers, affecting a total of 1,295 individuals.
Date Detected: 2024-03-15
Date Publicly Disclosed: 2024-04-15
Type: Data Breach
Attack Vector: Inadvertent Disclosure
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach CRO418072825
Data Compromised: Names, Social security numbers
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Social Security Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach CRO418072825
Entity Name: Crossmark, Inc.
Entity Type: Company
Customers Affected: 1295
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach CRO418072825
Type of Data Compromised: Names, Social security numbers
Number of Records Exposed: 1295
Sensitivity of Data: High
File Types Exposed: Spreadsheet
References
Where can I find more information about each incident ?
Incident : Data Breach CRO418072825
Source: Maine Office of the Attorney General
Date Accessed: 2024-04-15
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2024-04-15.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2024-03-15.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2024-04-15.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, Social Security numbers and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Names and Social Security numbers.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 134.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Maine Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was found in UTT 进取 512W up to 1.7.7-171114. This vulnerability affects the function strcpy of the file /goform/formConfigNoticeConfig. The manipulation of the argument timestart results in buffer overflow. The attack may be performed from remote. The exploit has been made public and could be used.
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability has been found in UTT 进取 512W up to 1.7.7-171114. This affects the function strcpy of the file /goform/APSecurity. The manipulation of the argument wepkey1 leads to buffer overflow. The attack is possible to be carried out remotely. The exploit has been disclosed to the public and may be used.
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was detected in ketr JEPaaS up to 7.2.8. Affected by this vulnerability is the function postilService.loadPostils of the file /je/postil/postil/loadPostil. Performing manipulation of the argument keyWord results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security vulnerability has been detected in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function submitOrderPayment of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java. Such manipulation of the argument orderSn leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The real existence of this vulnerability is still doubted at the moment. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A weakness has been identified in youlaitech youlai-mall 1.0.0/2.0.0. This impacts the function getMemberByMobile of the file mall-ums/ums-boot/src/main/java/com/youlai/mall/ums/controller/app/MemberController.java. This manipulation causes improper access controls. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=crossmark' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
