Curiosity Tank
Company Details
Linkedin ID:
curiositytank
Website:
Employees number:
1
Number of followers:
2,853
NAICS:
541
Industry Type:
Homepage:
curiositytank.com
IP Addresses:
0
Company ID:
CUR_3291731
Scan Status:
In-progress
Curiosity Tank Company CyberSecurity Posture
curiositytank.com
Curiosity Tank is a consulting and education firm specializing in human-centered research, design development, and hands-on learning programs. We conduct and teach design and user research to people and corporations around the world. Our solutions are affordable and repeatable. We apply our diverse research methods and traditional graphic design roots to deliver formidable results across all platforms, media, and markets. Our consulting and training services cater to individuals and teams in the following areas: > Design thinking and innovation workshop design and facilitation > Qualitative research > Systems thinking > UX/interaction > Prototyping > Team, product and service design creation and evolution > UX, product and education strategy > Curricula development and execution Let us deliver something remarkable for you. Or better yet, let us help you do it yourself. Curiosity Tank is led by Michele Ronsen, a professional user researcher, designer, coach, and educator with more than 5,000 hours of adult design and user research teaching expertise in academic institutions and 20+ years of corporate training, workshops, design and research for Fortune 500s and start-ups. We love questions! > Learn more about us: www.CuriosityTank.com > Workshops for individuals: www.CuriosityTank.com/workshops > Corporate training: www.curiositytank.com/corporate-workshops > Speaking engagements and other questions: [email protected] Clients include Slack, Zillow, Invisalign, Xero, Microsoft, MileIQ, Autodesk, Square, Facebook, Kaiser Permanente, BNP Paribas, Best Buy, Blue Shield, PayPal, Mapfre, California College of the Arts, UC Berkeley, and many fantastic startups and mom and pop shops.
Curiosity Tank A.I CyberSecurity Scoring
Curiosity Tank Risk Score (AI oriented)Between 700 and 749
Curiosity Tank
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Curiosity Tank Global Score (TPRM)XXXX
Curiosity Tank
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Curiosity Tank Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Curiosity Tank Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Curiosity Tank
Incidents vs Think Tanks Industry Average (This Year)
No incidents recorded for Curiosity Tank in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Curiosity Tank in 2025.
Incident Types Curiosity Tank vs Think Tanks Industry Avg (This Year)
No incidents recorded for Curiosity Tank in 2025.
Incident History — Curiosity Tank (X = Date, Y = Severity)
Curiosity Tank cyber incidents detection timeline including parent company and subsidiaries
Curiosity Tank Company Subsidiaries
Curiosity Tank is a consulting and education firm specializing in human-centered research, design development, and hands-on learning programs. We conduct and teach design and user research to people and corporations around the world. Our solutions are affordable and repeatable. We apply our diverse research methods and traditional graphic design roots to deliver formidable results across all platforms, media, and markets. Our consulting and training services cater to individuals and teams in the following areas: > Design thinking and innovation workshop design and facilitation > Qualitative research > Systems thinking > UX/interaction > Prototyping > Team, product and service design creation and evolution > UX, product and education strategy > Curricula development and execution Let us deliver something remarkable for you. Or better yet, let us help you do it yourself. Curiosity Tank is led by Michele Ronsen, a professional user researcher, designer, coach, and educator with more than 5,000 hours of adult design and user research teaching expertise in academic institutions and 20+ years of corporate training, workshops, design and research for Fortune 500s and start-ups. We love questions! > Learn more about us: www.CuriosityTank.com > Workshops for individuals: www.CuriosityTank.com/workshops > Corporate training: www.curiositytank.com/corporate-workshops > Speaking engagements and other questions: [email protected] Clients include Slack, Zillow, Invisalign, Xero, Microsoft, MileIQ, Autodesk, Square, Facebook, Kaiser Permanente, BNP Paribas, Best Buy, Blue Shield, PayPal, Mapfre, California College of the Arts, UC Berkeley, and many fantastic startups and mom and pop shops.
Loading...
Curiosity Tank Similar Companies
Clean Energy Canada
Clean Energy Canada is an initiative of the Centre for Dialogue at Simon Fraser University, in Vancouver, British Columbia. We work to accelerate our nation’s transition to clean and renewable energy systems. We do so by telling the story of the global shift to clean and low-carbon energy sources
Institute for Economics & Peace
We create a paradigm shift in the way people think about #peace. The official account of the Institute for Economics & Peace. We use data driven research to show that peace is a positive, tangible and achievable measure of human well-being and development. IEP is the world’s leading think tank dedi
Evolution Green
We are a group of healthy lifestyle and business experts who offer effective strategies, high impact stories and fresh ideas, to enhance the quality of life of audiences and companies. We are powerful motivators and communicators who offer public speaking, strategic consulting, seminars and workshop
EuropaNova
EuropaNova est une association d intérêt général, fondée en 2003, à l’initiative de Guillaume Klossa, Président, par de jeunes actifs européens souhaitant accélérer la marche vers une puissance publique européenne démocratique, économique et sociale, capable de résister aux crises et aux tentations
Knology
Knology is a collective of over 30 scientists, writers, and educators dedicated to using research to untangle complex social issues. Equity, transparency, and deliberation are the foundation of our work process, and we respect the unique perspectives of each member of our team. These perspectives ar
Scitor Veritas
Scitor Veritas seeks to uncover the symptoms that keep business leaders up at night. Uncovering the root causes of pain allows us to design solutions that meet the needs of our clients versus "selling" clients a tactically driven band-aid. We are not the right consultant for all problems and
.png)
Curiosity Tank CyberSecurity News
April 05, 2025 07:00 AM
Aquarius, Daily Horoscope Today, April 05, 2025: Intellectual curiosity will be at its peak
Horoscope Today News: Aquarius, your intellectual curiosity is at its peak today, making it ideal for learning new subjects.
September 09, 2019 07:00 AM
On Hacking, Ethics and Op-Eds: How Justin Sherman Became a Cybersecurity Policy Wonk
Justin Sherman started teaching himself computer coding in 8th grade. Around the same time, he took his first civics class.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Curiosity Tank CyberSecurity History Information
Official Website of Curiosity Tank
The official website of Curiosity Tank is http://www.curiositytank.com.
Curiosity Tank’s AI-Generated Cybersecurity Score
According to Rankiteo, Curiosity Tank’s AI-generated cybersecurity score is 747, reflecting their Moderate security posture.
How many security badges does Curiosity Tank’ have ?
According to Rankiteo, Curiosity Tank currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Curiosity Tank have SOC 2 Type 1 certification ?
According to Rankiteo, Curiosity Tank is not certified under SOC 2 Type 1.
Does Curiosity Tank have SOC 2 Type 2 certification ?
According to Rankiteo, Curiosity Tank does not hold a SOC 2 Type 2 certification.
Does Curiosity Tank comply with GDPR ?
According to Rankiteo, Curiosity Tank is not listed as GDPR compliant.
Does Curiosity Tank have PCI DSS certification ?
According to Rankiteo, Curiosity Tank does not currently maintain PCI DSS compliance.
Does Curiosity Tank comply with HIPAA ?
According to Rankiteo, Curiosity Tank is not compliant with HIPAA regulations.
Does Curiosity Tank have ISO 27001 certification ?
According to Rankiteo,Curiosity Tank is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Curiosity Tank
Curiosity Tank operates primarily in the Think Tanks industry.
Number of Employees at Curiosity Tank
Curiosity Tank employs approximately 1 people worldwide.
Subsidiaries Owned by Curiosity Tank
Curiosity Tank presently has no subsidiaries across any sectors.
Curiosity Tank’s LinkedIn Followers
Curiosity Tank’s official LinkedIn profile has approximately 2,853 followers.
Curiosity Tank’s Presence on Crunchbase
No, Curiosity Tank does not have a profile on Crunchbase.
Curiosity Tank’s Presence on LinkedIn
Yes, Curiosity Tank maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/curiositytank.
Cybersecurity Incidents Involving Curiosity Tank
As of December 05, 2025, Rankiteo reports that Curiosity Tank has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Curiosity Tank has an estimated 812 peer or competitor companies worldwide.
Curiosity Tank CyberSecurity History Information
How many cyber incidents has Curiosity Tank faced ?
Total Incidents: According to Rankiteo, Curiosity Tank has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Curiosity Tank ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. Prior to 2.9.8, there is a security issue exists in the exec_in_pod tool of the mcp-server-kubernetes MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (sh -c) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without explicit user intent. This vulnerability is fixed in 2.9.8.
Risk Information
cvss3
Base: 6.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
Description
XML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request.
Description
An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.
Description
Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.
Risk Information
cvss4
Base: 9.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed() function, it might lead to high CPU consumption and a potential Denial of Service. Small numbers go through this call stack: NativeNumber.numTo > DToA.JS_dtostr > DToA.JS_dtoa > DToA.pow5mult where pow5mult attempts to raise 5 to a ridiculous power. This vulnerability is fixed in 1.8.1, 1.7.15.1, and 1.7.14.1.
Risk Information
cvss4
Base: 5.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=curiositytank' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
