Strong
Flashpoint Advisors are former big four accountants and consultants focused on serving small private businesses. Our passion is working with business owners to improve their access to reliable and timely financial information, M&A strategies, and growth capital. http://www.flashpointadvisors.com
Strong
We are Prudential. For Every Life, For Every Future. Prudential has been providing familiar, trusted financial security to people for over 175 years. We are headquartered in Hong Kong and have dual primary listings on the Stock Exchange of Hong Kong and the London Stock Exchange. We are served by around 65,000 average monthly active agents and more than 200 bank partners. Prudential is focused on opportunities in the most exciting growth markets in Asia and Africa. With access to over 4 billion people in both these regions, we are investing in broadening our presence and building our leadership in the life and asset management markets. Visit our websites for more information: Prudential plc: https://www.prudentialplc.com/ Prudence Foundation: https://www.prudentialplc.com/en/prudence-foundation
Security & Compliance Standards Overview
No incidents recorded for Flashpoint Advisors in 2025.
No incidents recorded for Prudential plc in 2025.
Flashpoint Advisors cyber incidents detection timeline including parent company and subsidiaries
Prudential plc cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Improper Protection Against Voltage and Clock Glitches in FPGA devices, could allow an attacker with physical access to undervolt the platform resulting in a loss of confidentiality.
Malicious code was inserted into the Nx (build system) package and several related plugins. The tampered package was published to the npm software registry, via a supply-chain attack. Affected versions contain code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts.
Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.
Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the /api/admin/assign-badge endpoint lacks proper access control, allowing any authenticated user to assign high-privilege badges (e.g., Staff) to themselves. This could lead to privilege escalation and impersonation of administrative roles. This issue has been patched in version 2.2.0.
parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeState function of parse version 5.3.0 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.
