France Travail
Company Details
Linkedin ID:
francetravail
Employees number:
30,500
Number of followers:
1,270,174
NAICS:
92
Industry Type:
Homepage:
francetravail.fr
IP Addresses:
0
Company ID:
FRA_6314703
Scan Status:
In-progress
France Travail Company CyberSecurity Posture
francetravail.fr
France Travail est un acteur majeur du marché de l’emploi en France où il s’investit pour faciliter le retour à l’emploi des demandeurs d’emploi et offrir aux entreprises des réponses adaptées à leurs besoins de recrutement. Les 55 000 collaborateurs de France Travail œuvrent au quotidien pour être le trait d’union entre les demandeurs d’emploi et les entreprises. France Travail is a key player in the French employment market. Its role is to help the unemployed find work and support companies to fulfil their recruitment requirements. Day-to-day, France Travail's 55,000 staff provides that vital link between job seekers and companies.
France Travail A.I CyberSecurity Scoring
France Travail Risk Score (AI oriented)Between 700 and 749
France Travail
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
France Travail Global Score (TPRM)XXXX
France Travail
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
France Travail Company CyberSecurity News & History
Past Incidents
2
Attack Types
2
France Travail
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: France Travail, the French employment agency, experienced a data breach affecting 340,000 users. Personal data, including names, addresses, phone numbers, and jobseeker statuses, were exposed. The breach was caused by an infostealer malware compromising a user account linked to a training organization. The agency assured that passwords and bank details were not affected but warned users about phishing risks. This is the second breach in two years for France Travail.
France Travail
Cyber Attack
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: France Travail suffered a cyberattack attributed to the Russian cybercriminal group **Stormous**, resulting in the theft of personal data from **31,000 job seekers**. The attackers exploited **infostealer malware** installed on victims' personal computers to harvest login credentials, enabling unauthorized access to France Travail’s systems. Compromised data includes **names, dates of birth, addresses, phone numbers, emails, passwords, ID cards, bank statements, tax notices, social security records, and professional histories** (contracts, skills, training). While France Travail acknowledges the breach, it cannot confirm the full scope of exposed data or the exact number of affected individuals. The stolen information poses risks of **phishing, identity theft, and financial fraud**. This incident follows prior breaches in **July 2025 (340,000 records)** and **March 2024 (43 million records)**, highlighting persistent vulnerabilities in the agency’s security posture. France Travail advises users to strengthen password security but has not mandated password resets.
France Travail Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for France Travail
Incidents vs Government Administration Industry Average (This Year)
France Travail has 53.85% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
France Travail has 56.25% more incidents than the average of all companies with at least one recorded incident.
Incident Types France Travail vs Government Administration Industry Avg (This Year)
France Travail reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — France Travail (X = Date, Y = Severity)
France Travail cyber incidents detection timeline including parent company and subsidiaries
France Travail Company Subsidiaries
France Travail est un acteur majeur du marché de l’emploi en France où il s’investit pour faciliter le retour à l’emploi des demandeurs d’emploi et offrir aux entreprises des réponses adaptées à leurs besoins de recrutement. Les 55 000 collaborateurs de France Travail œuvrent au quotidien pour être le trait d’union entre les demandeurs d’emploi et les entreprises. France Travail is a key player in the French employment market. Its role is to help the unemployed find work and support companies to fulfil their recruitment requirements. Day-to-day, France Travail's 55,000 staff provides that vital link between job seekers and companies.
Loading...
France Travail Similar Companies
I WORK FOR SA
The OFFICIAL careers page for the South Australian Government. The South Australian Public Sector is the State's largest workforce. We are an employer of choice that reflects the diverse community we serve. Our people are from a range of backgrounds and vocations, from entry level, mid-career and
Centers for Disease Control and Prevention
CDC works 24/7 keeping America safe from health, safety and security threats, both foreign and domestic. Whether diseases start at home or abroad, are chronic or acute, curable or preventable, human error or deliberate attack, CDC fights it and supports communities and citizens to prevent it. CDC is
CONICET
El Consejo Nacional de Investigaciones Científicas y Técnicas (CONICET) es el principal organismo dedicado a la promoción de la ciencia y la tecnología en la Argentina. Su actividad se desarrolla en cuatro grandes áreas: • Ciencias agrarias, ingeniería y de materiales • Ciencias biológicas y de la s
Egyptian Customs Authority
We are working to provide excellent customs service in the field of legitimate trade according to the latest international practices that is characterized by quality, leadership, justice and satisfaction of customers and employees. We also work to make the necessary legislative amendments to achieve
U.S. Census Bureau
The Census Bureau serves as the nation’s leading provider of quality data about its people and economy. We have been headquartered in Suitland, Maryland since 1942, and currently employ about 4,285 staff members. We are part of the U.S. Department of Commerce and overseen by the Economics and Statis
City of Philadelphia
With a workforce of 30,000 people, and opportunities in 1,000 different job categories, the City of Philadelphia is one of the largest employers in Southeastern Pennsylvania. As an employer, we operate through the guiding principles of service, integrity, respect, accountability, collaboration, dive
Västra Götalandsregionen
Region Västra Götaland is governed by democratically elected politicians and with just over 50,000 employees is one of Sweden’s biggest employers. It is tasked with offering good healthcare and dental care and providing the prerequisites for good public health, a rich cultural life, a good enviro
FEMA
Welcome to the official LinkedIn page for the Federal Emergency Management Agency (FEMA). When disaster strikes, America looks to FEMA to support survivors and first responders in communities all across the country. This page provides career related information, job announcements and relevant updat
FDA
The Food and Drug Administration is an agency within the Department of Health and Human Services. The FDA is responsible for protecting the public health by ensuring the safety, efficacy, and security of human and veterinary drugs, biological products, and medical devices; and by ensuring the safet
.png)
France Travail CyberSecurity News
September 26, 2025 07:00 AM
Top 5 Reasons to Attend Tech Show Paris 2025
Discover the Tech Show Paris 2025 Edition: a premier event for technology leaders in cloud, cybersecurity, and data solutions.
September 21, 2025 07:00 AM
The masquerade of data sales allegedly from ANTS
[ZATAZ News English version] – In mid-2025, a ZATAZ alert about a mass sale of civil registry records triggered seven months of...
August 27, 2025 07:00 AM
Auchan suffers second major data breach in less than nine months, exposing customer information
French supermarket giant Auchan has confirmed another significant cyberattack, disclosing on August 21 that the personal data of several...
August 26, 2025 07:00 AM
Cyberattack on French Retailer Auchan Exposes Thousands of Customers’ Data
The attack, disclosed on August 21, 2025, compromised the personal data of "several hundred thousand" customers.
July 28, 2025 07:00 AM
France Travail Suffers Data Breach: 340,000 Jobseekers at Risk
France's national employment agency, France Travail, has confirmed it suffered a data breach that may have affected 340000 job seekers.
July 25, 2025 07:00 AM
News - France Travail data breach exposes information of 340,000 jobseekers
France Travail, the French national public employment agency, has disclosed a new data breach that exposed personal information belonging to...
July 24, 2025 07:00 AM
Cybersecurity News: Goodbye toha, AI deletes live data, Adobe apps advisory activated
Goodbye toha, AI deletes live data, Adobe apps advisory activated, France Travail confirms data breach, Clorox sues Cognizant.
July 24, 2025 07:00 AM
Data Breaches Affect French Employment Agency, Shipbuilder
France Travail, the national employment agency of France, has disclosed a data breach affecting around 340,000 users.
July 24, 2025 07:00 AM
French government agency breach may have exposed data on 340k jobseekers
France's national employment agency has suffered a cyberattack in which threat actors allegedly accessed sensitive data on “hundreds of...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
France Travail CyberSecurity History Information
Official Website of France Travail
The official website of France Travail is https://www.francetravail.fr/accueil/.
France Travail’s AI-Generated Cybersecurity Score
According to Rankiteo, France Travail’s AI-generated cybersecurity score is 739, reflecting their Moderate security posture.
How many security badges does France Travail’ have ?
According to Rankiteo, France Travail currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does France Travail have SOC 2 Type 1 certification ?
According to Rankiteo, France Travail is not certified under SOC 2 Type 1.
Does France Travail have SOC 2 Type 2 certification ?
According to Rankiteo, France Travail does not hold a SOC 2 Type 2 certification.
Does France Travail comply with GDPR ?
According to Rankiteo, France Travail is not listed as GDPR compliant.
Does France Travail have PCI DSS certification ?
According to Rankiteo, France Travail does not currently maintain PCI DSS compliance.
Does France Travail comply with HIPAA ?
According to Rankiteo, France Travail is not compliant with HIPAA regulations.
Does France Travail have ISO 27001 certification ?
According to Rankiteo,France Travail is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of France Travail
France Travail operates primarily in the Government Administration industry.
Number of Employees at France Travail
France Travail employs approximately 30,500 people worldwide.
Subsidiaries Owned by France Travail
France Travail presently has no subsidiaries across any sectors.
France Travail’s LinkedIn Followers
France Travail’s official LinkedIn profile has approximately 1,270,174 followers.
NAICS Classification of France Travail
France Travail is classified under the NAICS code 92, which corresponds to Public Administration.
France Travail’s Presence on Crunchbase
No, France Travail does not have a profile on Crunchbase.
France Travail’s Presence on LinkedIn
Yes, France Travail maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/francetravail.
Cybersecurity Incidents Involving France Travail
As of November 27, 2025, Rankiteo reports that France Travail has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
France Travail has an estimated 11,097 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at France Travail ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach and Cyber Attack.
How does France Travail detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with services shut down, and remediation measures with strengthened security measures, accelerated rollout of 2fa, and recovery measures with services expected to be reactivated on july 24, and communication strategy with notified affected individuals, public statement, and and containment measures with enquête interne en cours, and remediation measures with rappel aux utilisateurs sur la robustesse des mots de passe, and communication strategy with confirmation publique de l'incident via tech & co..
Incident Details
Can you provide details on each incident ?
Title: France Travail Data Breach
Description: The French employment agency, France Travail, has suffered a data breach that could affect hundreds of thousands of jobseekers. The agency sent an email to its users on July 22, warning them of a data breach that was detected on July 13 on its 'employment' portal, which is used by its partners.
Date Detected: 2023-07-13
Date Publicly Disclosed: 2023-07-22
Type: Data Breach
Attack Vector: Infostealer Malware
Vulnerability Exploited: User account compromise
Title: Cyberattaque et vol de données chez France Travail affectant 31 000 demandeurs d'emploi
Description: France Travail a subi une cyberattaque revendiquée par le groupe Stormous, compromettant les données personnelles d'environ 31 000 demandeurs d'emploi. Les pirates affirment avoir accédé à des informations sensibles telles que les noms, adresses, numéros de téléphone, cartes d'identité, relevés bancaires, avis d'imposition et données professionnelles. L'attaque a été réalisée via des logiciels malveillants (infostealers) installés sur les ordinateurs personnels des victimes, permettant un accès légitime au système de France Travail.
Date Detected: 2025-10-29
Date Publicly Disclosed: 2025-10-29
Type: cyberattaque
Attack Vector: logiciels malveillants (infostealers)accès légitime via credentials volés
Vulnerability Exploited: faiblesse des mots de passe utilisateursmanque de protection des terminaux personnels
Threat Actor: Stormous (groupe cybercriminel d'origine russe)
Motivation: vol de donnéesrevente sur le dark webphishing futur
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through User account compromise via infostealer malware and ordinateurs personnels des demandeurs d'emploi (via infostealers).
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach FRA242072325
Data Compromised: Personal data of 340,000 users including names, postal and email addresses, phone numbers, France Travail identifiers, and jobseeker statuses
Systems Affected: KairosEmployment portal
Downtime: Services shut down on July 12, expected to be reactivated on July 24
Incident : cyberattaque FRA2692726102925
Systems Affected: système d'information de France Travail (accès via comptes utilisateurs compromis)
Operational Impact: enquête en cours
Brand Reputation Impact: risque élevé (récidive après incidents de 2024 et juillet 2025)
Identity Theft Risk: élevé (données sensibles exposées)
Payment Information Risk: élevé (relevés bancaires et avis d'imposition compromis)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, postal and email addresses, phone numbers, France Travail identifiers, jobseeker statuses, Noms D'Utilisateurs, Mots De Passe, Noms Complets, Dates De Naissance, Adresses, Numéros De Téléphone, Emails, Cartes D'Identité, Relevés D'Identité Bancaire, Avis D'Imposition, Attestations De Sécurité Sociale, Formations, Contrats De Travail, Compétences Professionnelles, Parcours Professionnels and .
Which entities were affected by each incident ?
Incident : Data Breach FRA242072325
Entity Name: France Travail
Entity Type: Employment Agency
Industry: Employment Services
Location: France
Customers Affected: 340000
Incident : cyberattaque FRA2692726102925
Entity Name: France Travail
Entity Type: agence gouvernementale
Industry: emploi et services publics
Location: France
Customers Affected: 31 000 (estimé)
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach FRA242072325
Containment Measures: Services shut down
Remediation Measures: Strengthened security measures, accelerated rollout of 2FA
Recovery Measures: Services expected to be reactivated on July 24
Communication Strategy: Notified affected individuals, public statement
Incident : cyberattaque FRA2692726102925
Incident Response Plan Activated: True
Containment Measures: enquête interne en cours
Remediation Measures: rappel aux utilisateurs sur la robustesse des mots de passe
Communication Strategy: confirmation publique de l'incident via Tech & Co
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach FRA242072325
Type of Data Compromised: Names, postal and email addresses, phone numbers, France Travail identifiers, jobseeker statuses
Number of Records Exposed: 340000
Sensitivity of Data: Personal data
Incident : cyberattaque FRA2692726102925
Type of Data Compromised: Noms d'utilisateurs, Mots de passe, Noms complets, Dates de naissance, Adresses, Numéros de téléphone, Emails, Cartes d'identité, Relevés d'identité bancaire, Avis d'imposition, Attestations de sécurité sociale, Formations, Contrats de travail, Compétences professionnelles, Parcours professionnels
Number of Records Exposed: 31 000 (estimé, non confirmé)
Sensitivity of Data: très élevée (données personnelles et financières)
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Strengthened security measures, accelerated rollout of 2FA, rappel aux utilisateurs sur la robustesse des mots de passe, .
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by services shut down, enquête interne en cours and .
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : cyberattaque FRA2692726102925
Data Exfiltration: True
How does the company recover data encrypted by ransomware ?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through Services expected to be reactivated on July 24.
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach FRA242072325
Legal Actions: Complaint filed with French authorities, notified CNIL
Regulatory Notifications: Notified CNIL
How does the company ensure compliance with regulatory requirements ?
Ensuring Regulatory Compliance: The company ensures compliance with regulatory requirements through Complaint filed with French authorities, notified CNIL.
Lessons Learned and Recommendations
What recommendations were made to prevent future incidents ?
Incident : cyberattaque FRA2692726102925
Recommendations: renforcement de la sensibilisation des utilisateurs aux infostealers, mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire, surveillance proactive des credentials exposés sur le dark webrenforcement de la sensibilisation des utilisateurs aux infostealers, mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire, surveillance proactive des credentials exposés sur le dark webrenforcement de la sensibilisation des utilisateurs aux infostealers, mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire, surveillance proactive des credentials exposés sur le dark webrenforcement de la sensibilisation des utilisateurs aux infostealers, mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire, surveillance proactive des credentials exposés sur le dark web
References
Where can I find more information about each incident ?
Incident : Data Breach FRA242072325
Source: Next
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Next, and Source: Tech & CoDate Accessed: 2025-10-29.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : cyberattaque FRA2692726102925
Investigation Status: en cours (équipes internes de France Travail)
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Notified affected individuals, public statement and Confirmation Publique De L'Incident Via Tech & Co.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach FRA242072325
Customer Advisories: Email notification to users, public statement
Incident : cyberattaque FRA2692726102925
Stakeholder Advisories: Vigilance Accrue Sur La Robustesse Des Mots De Passe.
Customer Advisories: risque de phishing accru ; surveillance des comptes bancaires recommandée
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Email notification to users, public statement, Vigilance Accrue Sur La Robustesse Des Mots De Passe, Risque De Phishing Accru ; Surveillance Des Comptes Bancaires Recommandée and .
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach FRA242072325
Entry Point: User account compromise via infostealer malware
Incident : cyberattaque FRA2692726102925
Entry Point: ordinateurs personnels des demandeurs d'emploi (via infostealers)
High Value Targets: Données Personnelles Et Professionnelles Des Demandeurs D'Emploi,
Data Sold on Dark Web: Données Personnelles Et Professionnelles Des Demandeurs D'Emploi,
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach FRA242072325
Root Causes: User account compromise via infostealer malware
Corrective Actions: Strengthened security measures, accelerated rollout of 2FA
Incident : cyberattaque FRA2692726102925
Root Causes: Utilisation D'Infostealers Sur Les Terminaux Personnels, Réutilisation De Credentials Compromis, Manque De Contrôle Sur Les Appareils Personnels Accédant Au Système,
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Strengthened security measures, accelerated rollout of 2FA.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Stormous (groupe cybercriminel d'origine russe).
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-07-13.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-10-29.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Personal data of 340,000 users including names, postal and email addresses, phone numbers, France Travail identifiers, and jobseeker statuses and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was KairosEmployment portal and système d'information de France Travail (accès via comptes utilisateurs compromis).
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Services shut down and enquête interne en cours.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Personal data of 340,000 users including names, postal and email addresses, phone numbers, France Travail identifiers and and jobseeker statuses.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 371.0.
Regulatory Compliance
What was the most significant legal action taken for a regulatory violation ?
Most Significant Legal Action: The most significant legal action taken for a regulatory violation was Complaint filed with French authorities, notified CNIL.
Lessons Learned and Recommendations
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire, renforcement de la sensibilisation des utilisateurs aux infostealers and surveillance proactive des credentials exposés sur le dark web.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Tech & Co and Next.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is en cours (équipes internes de France Travail).
Stakeholder and Customer Advisories
What was the most recent stakeholder advisory issued ?
Most Recent Stakeholder Advisory: The most recent stakeholder advisory issued was vigilance accrue sur la robustesse des mots de passe, .
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued were an Email notification to users, public statement and risque de phishing accru ; surveillance des comptes bancaires recommandée.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker were an ordinateurs personnels des demandeurs d'emploi (via infostealers) and User account compromise via infostealer malware.
Post-Incident Analysis
What was the most significant root cause identified in post-incident analysis ?
Most Significant Root Cause: The most significant root cause identified in post-incident analysis was User account compromise via infostealer malware, utilisation d'infostealers sur les terminaux personnelsréutilisation de credentials compromismanque de contrôle sur les appareils personnels accédant au système.
What was the most significant corrective action taken based on post-incident analysis ?
Most Significant Corrective Action: The most significant corrective action taken based on post-incident analysis was Strengthened security measures, accelerated rollout of 2FA.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=francetravail' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
