HPCDHGC A.I CyberSecurity Scoring
19/03/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for H. Paulin & Co - A Division of The Hillman Group Canada in 2026.
No incidents recorded for H. Paulin & Co - A Division of The Hillman Group Canada in 2026.
No incidents recorded for H. Paulin & Co - A Division of The Hillman Group Canada in 2026.
CEVA provides world-class supply chain solutions for large and medium-size national and multinational companies across the globe. As an industry leader, CEVA offers customers complete supply chain design and implementation in contract logistics and freight management, alone or in combination. Together with CMA CGM, a leading worldwide shipping group and CEVA’s strategic partner, we are able to offer our customers end-to-end logistics solutions. CEVA’s integrated global network has over 1,000 facilities in more than 170 countries and 98,000 employees; all dedicated to delivering consistently excellent operations and supply chain solutions.
Founded in 1982, Aramex has emerged as a global leader in logistics and transportation, renowned for its innovative services tailored to businesses and consumers. As a listed company on the Dubai Financial Market (since 2005) and headquartered in the UAE, our strategic location facilitates extensive customer reach worldwide, bridging the gap between East and West. With operations in 600+ cities across 70 countries, Aramex employs over 16,000 professionals. Our success is attributed to four distinct business products that provide scalable, diversified, and end-to- end services for customers. These products are: • International Express, encompassing Aramex's Parcel Forwarding Business (Shop & Ship and MyUS). • Domestic Express • Freight Forwarding • Logistics & Supply Chain Solutions Sustainability is at the core of our vision and mission. To build a truly sustainable business, we leverage our core competencies to make a positive impact as responsible members of the communities we serve. Through partnerships with local and international organizations, we strive to expand our reach and benefit more individuals through targeted programs and initiatives, ensuring long-term positive change and community development. For more information, please visit us: www.aramex.com
As the custodian of ports, rail and pipelines, Transnet’s objective is to ensure a globally competitive freight system that enables sustained growth and diversification of the country’s economy. As a state-owned company, Transnet continues to leave an indelible mark on the lives of all South Africans. With a geographical footprint that covers our entire country, Transnet is inextricably involved in all aspects of life in South Africa. Through the Transnet Foundation - which is the Corporate Social Investment arm of Transnet - we have invested time and money in several diverse programmes around the country that provide much-needed succour to our communities. Looking ahead, Transnet is focused on modernizing infrastructure, driving growth, and enhancing efficiency through strategic partnerships. Our vision is clear: to contribute meaningfully to South Africa’s economic aspirations through sustainable growth and modernization.
Blue Dart Express Ltd., South Asia's premier express air, integrated transportation & distribution company, offers secure and reliable delivery of consignments to over 56,000+ locations in India. Blue Dart is a provider of choice for its stakeholders due to its customer centric approach and aims to further strengthen this partnership. As part of DHL Group’s DHL eCommerce division, Blue Dart accesses the largest and most comprehensive express and logistics network worldwide, covering over 220 countries and territories, and offers an entire spectrum of distribution services including air express, freight forwarding, supply chain solutions, customs clearance etc. The Blue Dart team drives market leadership through its motivated people, dedicated air and ground capacity, cutting-edge technology, wide range of innovative, vertical specific products and value-added services to deliver unmatched standards of service quality to its customers. Blue Dart's market leadership is further validated by its position as the nation’s most innovative and awarded express logistics company for exhibiting reliability, superior brand experience and sustainability which include recognition as one of ‘India's Best Companies to Work For’ by The Great Place to Work® Institute, India, ranked amongst ‘Best Multinational Workplaces in Asia’ by The Great Place to Work® Institute, Asia, voted a ‘Superbrand’ and ‘Reader’s Digest Most Trusted Brand’, listed as one of Fortune 500’s ‘India's Largest Corporations’ and Forbes ‘India's Super 50 Companies’ to name a few. Blue Dart’s Diversity and Inclusion initiatives have also led to it being recognized as one of India’s ‘Best Workplaces for Women’ in 2021 and ‘Best Organizations for Women’ in 2022 by the Economic Times. Blue Dart fulfils its social responsibility of climate protection (GoGreen), disaster management (GoHelp) and education (GoTeach) through its GoPrograms.
Saving people money so they can live better is a big job. That’s why we have one of the largest private distribution networks in the world. Each of our 42 regional U.S. distribution centers is over 1 million square feet, with more than 12 miles of conveyor belts to move 5.5 billion cases of merchandise. Some distribution centers operate 24/7 around the clock to keep the Walmart fleet rolling. It’s all designed to pass on savings to our customers and communities. Working here, you’ll be part of an unrivaled operation that’s leading the way for innovation, efficiency and safety. By joining one of the largest private fleets and distribution networks in the world, you’ll gain the training, teamwork and technology you need to move your career – and 5.5 billion cases of merchandise each year.
Welcome! We are PostNL. Your favorite delivery service is what we want to be. Every day, over 35,000 colleagues work hard to achieve this goal, on your streets and in your neighborhood, in our sorting centers and depots, and at the office. On an average day, we deliver about 1.1 million packages and 7.4 million letters, so chances are we will meet. In addition to delivering, we're always innovating. For example, we're developing more sustainable ways of delivering and clever products and services like delivery preferences. Making your life easier, that is why we continuously work on new and improved products and services. Such as the parcel locker and convenient online services for webshops and other business customers. Will you help us be your favorite delivery service? Come join us and become a colleague! Check out our job opportunities at www.postnl.nl/werkenbij (work with us). See you soon or as we say in Dutch: tot snel!
UPS Supply Chain Solutions offers a comprehensive portfolio of services to enhance customers' business performance, including logistics and distribution, transportation and freight, consulting, customs brokerage, and international trade services. UPS provides the expertise and the scale to meet the total supply chain needs of customers worldwide, whether it requires the movement of goods, information or funds.
GEODIS is a leading global logistics provider acknowledged for its expertise across all aspects of the supply chain. As a growth partner to its clients, GEODIS specializes in four lines of business: Global Freight Forwarding, Global Contract Logistics, Distribution & Express Transport, and European Road Network. With a global network spanning nearly 170 countries and more than 49,400 employees, GEODIS is ranked no. 5 in its sector across the world. In 2022, GEODIS generated €13.7 billion in revenue. GEODIS is a company owned by SNCF group.
Penske Truck Leasing is a Penske Transportation Solutions company headquartered in Reading, Pennsylvania. A leading provider of innovative transportation solutions, Penske operates and maintains nearly 400,000 vehicles and serves its customers from approximately 1,000 maintenance facilities and more than 1,900 truck rental locations across North America. Solutions from Penske include full-service truck leasing, fleet maintenance, truck rentals, used trucks, and a comprehensive array of technologies to keep the world moving forward. Penske Truck Leasing Co., L.P. is a partnership of Penske Corporation, Penske Automotive Group and Mitsui & Co., Ltd.
Latest updates, reports, and threat intel affecting the global network.
Charles “Charlie” H. Hall, Sr., 78, of Santa Cruz, CA passed away Tuesday, June 28, 2022. Originally from Louisville, KY, Charlie was a proud veteran of the...
Vietnam has ordered more than 586,000 people to be evacuated ahead of the arrival of Typhoon Kajiki. The storm is already packing winds of...
The Department of Education (DepEd) Cebu Province Division clarified that its dropout rate is 1.12 percent, not the “highest” as previously reported.
Funeral Mass for Marguerite Ellen (nee Pesta) Paulin, 93, of Kirtland, will be 10 am Saturday at Divine Word Church, 8100 Eagle Road, Kirtland.
The quantitative relationship between angular head movement and semicircular canal function is most often referenced to the well-known torsion-pendulum...
Emily Anne (Paulin) Schilf, 42, passed away suddenly on January 24, 2024, at Northwestern Hospital in McHenry, IL.
Ward, John David (Johnny) Peacefully at Royal Victoria Regional Health Centre, Barrie, on Wednesday May 4, 2022 at the age of 64 years.
Mary Paulin Obituary. MARY H. PAULIN (nee Sega); 96, Beloved wife of the late August J. Sr.; Loving mother of Dale, Carol Fazekas (Larry), Helen Paulin-Rudolph...
Mary H. Paulin (nee Sega); 96, Beloved wife of the late August J. Sr.; Loving mother of Dale, Carol Fazekas (Larry), Helen Paulin-Rudolph (Vincent) and August...
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.22 and 4.0.0-RC1 through 4.17.15, an attacker with only a GitHub account can plant a JavaScript payload in a craftcms/cms issue title. When a Craft admin uses the CraftSupport widget’s "Give feedback" screen and types a search term that returns the poisoned issue, the payload executes in the admin’s control panel session. No control panel account or elevated privileges are required on the attacker’s side. This issue has been fixed in versions 4.17.16 and 5.9.23.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDeleteFolder() only requires the deleteAssets:<volume-uid> permission for the target folder. It never enforces deletePeerAssets:<volume-uid>, even though Assets::deleteFoldersByIds() cascades deletion to every descendant folder and every asset inside, regardless of the uploader's assigned privileges. A low-privilege user who has been granted folder-management rights on a shared volume can therefore destroy assets uploaded by other users (peer assets), bypassing the per-asset peer-permission check that the sibling actionDeleteAsset endpoint correctly applies. This issue has been fixed in versions 4.17.15 and 5.9.22.
Craft CMS is a content management system (CMS). Versions 5.0.0-RC1 through 5.9.20, and 4.0.0-RC1 through 4.17.13 contain an authorization issue in the AssetsController::actionReplaceFile that can delete a source asset without source delete permission by supplying both assetId and sourceAssetId. AssetsController::actionReplaceFile() supports replacing a target asset file using another existing asset as the source. The action loads: assetId -> $assetToReplace and sourceAssetId -> $sourceAsset, then enforces replace permissions using ($assetToReplace ?: $sourceAsset). When both IDs are provided, this expression resolves to the target asset so no permission check is performed against the source asset volume. When both assets are present, Craft copies the source file into the target and then deletes the source asset. There is no deletion check for for the source asset. An authenticated user who can replace files in one volume can delete assets in another volume where they do not have delete permission, as long as they can obtain a sourceAssetId, leading to broken content references and data loss. This issue has been fixed in versions 4.17.14 and 5.9.21.
Description: To issue and renew TLS certificates on behalf of customers, Cloudflare's Universal SSL feature automatically manages the CAA RRset for the customer's zone. This auto-managed RRset is permissive by design (e.g. 'issue "letsencrypt.org"' without parameters). On Universal SSL zones, Cloudflare's authoritative DNS serves this auto-managed RRset at query time, superseding any customer-configured CAA records on the zone. When a customer publishes a stricter CAA record using the RFC 8657 accounturi or validationmethods parameters, the Certificate Authority does not observe those parameters when evaluating the served RRset under RFC 8659. As a result, the RFC 8657 account-binding and validation-method-binding protections are not enforced end-to-end on Universal SSL zones. Successful exploitation could result in issuance of a browser-trusted TLS certificate to an attacker, enabling MITM against the affected domain. Exploitation is non-trivial in practice: an attacker would need to hold an ACME account at one of the Certificate Authorities in the served CAA RRset and to simultaneously satisfy domain control validation across the multiple geographically distinct Network Perspectives the CA relies on for Multi-Perspective Issuance Corroboration. Cloudflare prefixes are anycast-announced from hundreds of locations globally, raising the bar against single-vantage-point BGP hijacks. Any resulting misissuance of a browser-trusted certificate is subject to Certificate Transparency logging required by major browsers, and would be visible to CT monitoring. Mitigation: Customers requiring strict RFC 8657 enforcement need to disable Universal SSL on the affected zone. Universal SSL's automatic CAA management and customer-set RFC 8657 accounturi and validationmethods enforcement are mutually exclusive by the nature of the issue, so there is no in-product workaround that preserves both. Certificate Transparency monitoring is recommended for all customers as a general detection control. Credits: David Osipov (ORCID: https://orcid.org/0009-0005-2713-9242), independent researcher
Out of bounds read and write in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.