ECCITAC A.I CyberSecurity Scoring
04/05/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for Eagle Cornice Company Inc., a Tecta America Company in 2026.
No incidents recorded for Eagle Cornice Company Inc., a Tecta America Company in 2026.
No incidents recorded for Eagle Cornice Company Inc., a Tecta America Company in 2026.
VINCI is a world leader in concessions, energy and construction, employing 280.000 people in more than 120 countries. We design, finance, build and operate infrastructure and facilities that help improve daily life and mobility for all. Because we believe in all-round performance, above and beyond economic results, we are committed to operating in an environmentally and socially responsible manner. You can be part of projects that bring lasting change to urban ecosystems and entire regions. Join the team!
Holcim is the leading partner for sustainable construction with net sales of CHF 15.7 billion in 2025, creating value across the built environment from infrastructure and industry to buildings. We have more than 45 000 employees in 43 attractive markets – across Europe, Latin America and Asia, Middle East & Africa – and have been recognized as a Global Top Employer by the Top Employers Institute. Holcim offers high-value end-to-end Building Materials and Building Solutions, from foundations and flooring to walling and roofing – powered by premium brands including ECOPact, ECOPlanet and ECOCycle.
KEC International Limited, the flagship company of RPG Enterprises is a diversified global infrastructure Engineering, Procurement & Construction (EPC) major, with a presence in the verticals of Power Transmission & Distribution, Railways, Civil, Urban Infrastructure, Oil & Gas Pipelines, Solar, Smart Infra and Cables. KEC is a USD 2.4 billion diversified infrastructure EPC major building infrastructure globally. With over seven decades of experience, footprint in 110+ countries and presently executing projects in 30+ countries, KEC has made an indelible mark on the world map. Through constant and consistent re-engineering KEC reinvents itself to retain its leadership position in the areas of quality, technology, capacity and capability. KEC's strengths lie in the areas of Design, Manufacturing, Supply and Construction of Turnkey Projects of Power Transmission lines of voltages up to 1,200 kV, in setting up Sub-stations and power Distribution Networks, Optical Fibre Cable (OPGW) installations, turnkey railway infrastructure, civil infrastructure projects & renewable energy projects. KEC has one of the largest global annual production capacities of 4,22,000 MTs, which includes the production of towers, poles, hardware, structures for railways & solar. The company has 8 factories in India, UAE and the Americas. The Company has over 9,000 employees from 35+ nationalities.
At Burns & McDonnell, our engineers, construction professionals, architects, planners, technologists and scientists do more than plan, design and construct. With a mission unchanged since 1898 — make our clients successful — we partner with you on the toughest challenges, constantly working to make the world an amazing place. Each professional brings an ownership mentality to projects at our 100% employee-owned firm, which has safety performance among the top 5% of AEC firms. As dedicated owners, we work through challenges until they’re resolved, meeting or exceeding our clients’ goals. We apply this commitment to our communities, too. We live and work in the same cities you call home, so we share a passion to keep them strong and healthy. From fundraising events and community cleanups to educational outreach and mentorship — especially when it comes to sharing our passion for STEM — our professionals work to make our communities thrive.
Consolidated Contractors International company is a leading diversified company carrying out construction, engineering, procurement, development and investment activities internationally. We are committed to providing reliable, amicable, and professional service to our valuable clients, and to being supportive to local businesses and social activities, being friendly to the environment as well as being proactive in the socio-economic environments within which we operate. Our appreciation of our clients' interests, evidenced by meeting their requirements and ensuring high quality work, is the prime directive of our management. Our growth and profitability are maintained through innovation, technical enhancement, and adaptability to all our markets. Our profitability is directed towards sustaining growth and to providing satisfactory returns to our shareholders. Our commitment to growth is firmly linked to our commitment to our employees' continuous development and rewarding careers. We are also devoted to our employee's safety and health, job security, and welfare. Our strength emanates from our distinct culture, strong and close relationships with our clients, employees' competence and loyalty, entrepreneurial and flexible management, capability, dynamism, focus on quality and safety, and commercial acumen.
Fluor Corporation is a global engineering, procurement and construction company. We work with leaders in the energy, infrastructure, life sciences, advanced technologies, mining and metals industries, as well as government agencies, to build a better world. Since our founding in 1912, we have been building a legacy of innovation. Our nearly 27,000 employees provide professional and technical solutions to deliver safe, well-executed, capital-efficient projects for our global clients. At Fluor, we believe in open communication and value the conversations that are fostered through our social media communities. To learn more about our community standards, please visit: https://www.fluor.com/community-standards Fluor has been notified of fraudulent employment offers being made via email, WhatsApp and other channels to prospective candidates. Learn more: https://www.fluor.com/careers/recruitment-fraud-warning
At STRABAG around 86,000 people working on progress at more than 2,400 locations worldwide. Uniqueness and individual strengths characterise both our projects and each of us as individuals. Whether its building construction, civil engineering, road construction, underground engineering, bridge building, tunnelling, construction material production, project development or building management – we are always one step ahead so that we can become the most innovative and sustainable construction technology company in Europe. Diversity, inclusion and equal opportunities are integral to this, who we are as a company and how we work. Together we work as partners to complete projects successfully and grow with new challenges. Together we achieve great things. Let’s progress!
As North America’s largest equipment rental company, with 1600+ stores across North America, Europe, Australia and New Zealand, we serve construction and industrial companies, utilities, municipalities, homeowners, and communities, with the goal of fulfilling customer needs and surpassing expectations. We go beyond equipment. We are the world’s largest fleet of problem solvers, with best-in-class specialty solutions, safety training and 24/7 support to empower your success. For more updates - Follow us on Twitter: www.UnitedRentals.com/Twitter Like us on Facebook: www.UnitedRentals.com/Facebook Join us on Google+: www.UnitedRentals.com/Google See more videos: www.UnitedRentals.com/YouTube
Skanska Group uses knowledge & foresight to shape the way people live, work, and connect. More than 138 years in the making, we’re one of the world’s largest development and construction companies, with 2024 revenue totaling SEK 177 billion. We operate in select markets throughout the Nordics, Europe and the United States. Together with our customers and the collective expertise of our 26,300 + teammates, we create innovative and sustainable solutions that support healthy living beyond our lifetime. Founded in Sweden in 1887 as a maker of concrete, we were driven by a dual purpose: to innovate and build what’s good for people and society. Today we develop, design and build everything from healthy and green office buildings to smart homes and infrastructure. We partner to innovate, and we continue to hold our founding values at the heart of everything we do. Skanska Linkedin Page House Rules We welcome and encourage participation. However, there are some rules we ask everyone to follow in order to maintain a friendly and respectful community. We will remove any posted content that is not aligned with Skanska's values and Code of Conduct, including: Text, images or video containing profanity, sexually graphic or offensive language, spam, illegal content – laws that govern the use of copyrights, trade secrets, etc. will be followed.
Latest updates, reports, and threat intel affecting the global network.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.22 and 4.0.0-RC1 through 4.17.15, an attacker with only a GitHub account can plant a JavaScript payload in a craftcms/cms issue title. When a Craft admin uses the CraftSupport widget’s "Give feedback" screen and types a search term that returns the poisoned issue, the payload executes in the admin’s control panel session. No control panel account or elevated privileges are required on the attacker’s side. This issue has been fixed in versions 4.17.16 and 5.9.23.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDeleteFolder() only requires the deleteAssets:<volume-uid> permission for the target folder. It never enforces deletePeerAssets:<volume-uid>, even though Assets::deleteFoldersByIds() cascades deletion to every descendant folder and every asset inside, regardless of the uploader's assigned privileges. A low-privilege user who has been granted folder-management rights on a shared volume can therefore destroy assets uploaded by other users (peer assets), bypassing the per-asset peer-permission check that the sibling actionDeleteAsset endpoint correctly applies. This issue has been fixed in versions 4.17.15 and 5.9.22.
Craft CMS is a content management system (CMS). Versions 5.0.0-RC1 through 5.9.20, and 4.0.0-RC1 through 4.17.13 contain an authorization issue in the AssetsController::actionReplaceFile that can delete a source asset without source delete permission by supplying both assetId and sourceAssetId. AssetsController::actionReplaceFile() supports replacing a target asset file using another existing asset as the source. The action loads: assetId -> $assetToReplace and sourceAssetId -> $sourceAsset, then enforces replace permissions using ($assetToReplace ?: $sourceAsset). When both IDs are provided, this expression resolves to the target asset so no permission check is performed against the source asset volume. When both assets are present, Craft copies the source file into the target and then deletes the source asset. There is no deletion check for for the source asset. An authenticated user who can replace files in one volume can delete assets in another volume where they do not have delete permission, as long as they can obtain a sourceAssetId, leading to broken content references and data loss. This issue has been fixed in versions 4.17.14 and 5.9.21.
Description: To issue and renew TLS certificates on behalf of customers, Cloudflare's Universal SSL feature automatically manages the CAA RRset for the customer's zone. This auto-managed RRset is permissive by design (e.g. 'issue "letsencrypt.org"' without parameters). On Universal SSL zones, Cloudflare's authoritative DNS serves this auto-managed RRset at query time, superseding any customer-configured CAA records on the zone. When a customer publishes a stricter CAA record using the RFC 8657 accounturi or validationmethods parameters, the Certificate Authority does not observe those parameters when evaluating the served RRset under RFC 8659. As a result, the RFC 8657 account-binding and validation-method-binding protections are not enforced end-to-end on Universal SSL zones. Successful exploitation could result in issuance of a browser-trusted TLS certificate to an attacker, enabling MITM against the affected domain. Exploitation is non-trivial in practice: an attacker would need to hold an ACME account at one of the Certificate Authorities in the served CAA RRset and to simultaneously satisfy domain control validation across the multiple geographically distinct Network Perspectives the CA relies on for Multi-Perspective Issuance Corroboration. Cloudflare prefixes are anycast-announced from hundreds of locations globally, raising the bar against single-vantage-point BGP hijacks. Any resulting misissuance of a browser-trusted certificate is subject to Certificate Transparency logging required by major browsers, and would be visible to CT monitoring. Mitigation: Customers requiring strict RFC 8657 enforcement need to disable Universal SSL on the affected zone. Universal SSL's automatic CAA management and customer-set RFC 8657 accounturi and validationmethods enforcement are mutually exclusive by the nature of the issue, so there is no in-product workaround that preserves both. Certificate Transparency monitoring is recommended for all customers as a general detection control. Credits: David Osipov (ORCID: https://orcid.org/0009-0005-2713-9242), independent researcher
Out of bounds read and write in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.