HPI
Company Details
Linkedin ID:
henderson-products-inc.
Website:
Employees number:
136
Number of followers:
2,459
NAICS:
None
Industry Type:
Homepage:
hendersonproducts.com
IP Addresses:
0
Company ID:
HEN_3088264
Scan Status:
In-progress
Henderson Products, Inc. Company CyberSecurity Posture
hendersonproducts.com
Henderson Products, Inc. is North America’s leading manufacturer and upfitter of heavy-duty municipal snow and ice work truck equipment. Our products are used by an array of customers including state departments of transportation, cities, counties, townships and other governmental agencies. As a custom manufacturer, we have the unique ability to meet nearly any application and equipment specification our customers require. With six installation and service locations, Henderson Products ensures our customers the most complete snow and ice fighting solutions and service available. In 1946, Henderson Manufacturing was founded by Ollie Henderson in Cedar Rapids, IA to manufacture agricultural attachments and spreading equipment. Henderson Manufacturing moved to Manchester, IA in 1958. Today, our products include a wide range of innovative dump bodies, snow plows, sand & salt spreaders, anti-ice systems, pre-wetting systems and combination bodies for heavy-duty trucks, as well as state-of-the-art brine production and management equipment. All of our products are produced in our 175,000 sq. ft. facility. Unlike most manufacturers, Henderson offers many custom features and benefits in each product category that improve user convenience and safety. Henderson's commitment to customers has earned it the reputation as "The Dependable Ones". This level of customer commitment has helped position Henderson as a preferred source and recognized complete solution supplier of snow and ice control equipment. Henderson is proud to be a part of Douglas Dynamics, North America’s premier manufacturer of vehicle attachments and equipment and home to the most trusted brands in the industry. For more than 65 years, the Company has been innovating products that not only enable people to perform their jobs more efficiently and effectively, but also enable businesses to increase profitability. For more on investor relations, see NYSE: PLOW.
Henderson Products, Inc. A.I CyberSecurity Scoring
HPI Risk Score (AI oriented)Between 750 and 799
HPI
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
HPI Global Score (TPRM)XXXX
HPI
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
HPI Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
HPI Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for HPI
Incidents vs Mechanical Or Industrial Engineering Industry Average (This Year)
No incidents recorded for Henderson Products, Inc. in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Henderson Products, Inc. in 2025.
Incident Types HPI vs Mechanical Or Industrial Engineering Industry Avg (This Year)
No incidents recorded for Henderson Products, Inc. in 2025.
Incident History — HPI (X = Date, Y = Severity)
HPI cyber incidents detection timeline including parent company and subsidiaries
HPI Company Subsidiaries
Henderson Products, Inc. is North America’s leading manufacturer and upfitter of heavy-duty municipal snow and ice work truck equipment. Our products are used by an array of customers including state departments of transportation, cities, counties, townships and other governmental agencies. As a custom manufacturer, we have the unique ability to meet nearly any application and equipment specification our customers require. With six installation and service locations, Henderson Products ensures our customers the most complete snow and ice fighting solutions and service available. In 1946, Henderson Manufacturing was founded by Ollie Henderson in Cedar Rapids, IA to manufacture agricultural attachments and spreading equipment. Henderson Manufacturing moved to Manchester, IA in 1958. Today, our products include a wide range of innovative dump bodies, snow plows, sand & salt spreaders, anti-ice systems, pre-wetting systems and combination bodies for heavy-duty trucks, as well as state-of-the-art brine production and management equipment. All of our products are produced in our 175,000 sq. ft. facility. Unlike most manufacturers, Henderson offers many custom features and benefits in each product category that improve user convenience and safety. Henderson's commitment to customers has earned it the reputation as "The Dependable Ones". This level of customer commitment has helped position Henderson as a preferred source and recognized complete solution supplier of snow and ice control equipment. Henderson is proud to be a part of Douglas Dynamics, North America’s premier manufacturer of vehicle attachments and equipment and home to the most trusted brands in the industry. For more than 65 years, the Company has been innovating products that not only enable people to perform their jobs more efficiently and effectively, but also enable businesses to increase profitability. For more on investor relations, see NYSE: PLOW.
Loading...
HPI Similar Companies
Tesla
Tesla is accelerating the world’s transition to sustainable abundance. To achieve our mission, we're building a world powered by solar, enabled by battery storage and transported by electric vehicles. We’re committed to hiring and developing top talent from around the world for any given disciplin
With its four brands BMW, MINI, Rolls-Royce and BMW Motorrad, the BMW Group is the world’s leading pre-mium manufacturer of automobiles and motorcycles and also provides premium financial services. The BMW Group production network comprises over 30 production sites worldwide; the company has a globa
Scania Group
Scania is a world-leading provider of transport solutions committed to a better tomorrow. Our purpose is to drive the shift towards a sustainable transport system. In doing so, we are creating a world of mobility that’s better for business, society and our environment. Employing more than 50,000 pe
Grammer AG
Company profile GRAMMER AG, which has its head office in Ursensollen, specializes in the development and production of complex components and systems for automotive interiors as well as suspension driver and passenger seats for onroad and offroad vehicles. In the Automotive product area, the Company
LEONI
LEONI is a global provider of products, solutions and services for energy and data management in the automotive industry. The group of companies has around 87,000 employees in 21 countries and generated consolidated sales of EUR 5 billion in 2024. The partnership between LEONI and Luxshare Group has
Mercedes-Benz AG
"Love of invention will never end." - Carl Benz Learn more about us as we continue to pioneer the future of driving excellence. Data privacy: mb4.me/provider_privacy Mercedes-Benz AG Mercedesstraße 120 70372 Stuttgart Germany Phone: +49 7 11 17-0 E-Mail: [email protected] For inquiries
.png)
HPI CyberSecurity News
June 28, 2025 01:34 PM
Cyber Security Services | Cyber Risk
Kroll merges elite security and data risk expertise with frontline intelligence from thousands of incident response, regulatory compliance, financial crime...
February 21, 2024 08:00 AM
IBM marks monumental shift in valid account attacks
X-Force identified a 71% increase in valid account credential attacks, the most common point of entry last year.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
HPI CyberSecurity History Information
Official Website of Henderson Products, Inc.
The official website of Henderson Products, Inc. is http://www.hendersonproducts.com.
Henderson Products, Inc.’s AI-Generated Cybersecurity Score
According to Rankiteo, Henderson Products, Inc.’s AI-generated cybersecurity score is 755, reflecting their Fair security posture.
How many security badges does Henderson Products, Inc.’ have ?
According to Rankiteo, Henderson Products, Inc. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Henderson Products, Inc. have SOC 2 Type 1 certification ?
According to Rankiteo, Henderson Products, Inc. is not certified under SOC 2 Type 1.
Does Henderson Products, Inc. have SOC 2 Type 2 certification ?
According to Rankiteo, Henderson Products, Inc. does not hold a SOC 2 Type 2 certification.
Does Henderson Products, Inc. comply with GDPR ?
According to Rankiteo, Henderson Products, Inc. is not listed as GDPR compliant.
Does Henderson Products, Inc. have PCI DSS certification ?
According to Rankiteo, Henderson Products, Inc. does not currently maintain PCI DSS compliance.
Does Henderson Products, Inc. comply with HIPAA ?
According to Rankiteo, Henderson Products, Inc. is not compliant with HIPAA regulations.
Does Henderson Products, Inc. have ISO 27001 certification ?
According to Rankiteo,Henderson Products, Inc. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Henderson Products, Inc.
Henderson Products, Inc. operates primarily in the Mechanical Or Industrial Engineering industry.
Number of Employees at Henderson Products, Inc.
Henderson Products, Inc. employs approximately 136 people worldwide.
Subsidiaries Owned by Henderson Products, Inc.
Henderson Products, Inc. presently has no subsidiaries across any sectors.
Henderson Products, Inc.’s LinkedIn Followers
Henderson Products, Inc.’s official LinkedIn profile has approximately 2,459 followers.
Henderson Products, Inc.’s Presence on Crunchbase
No, Henderson Products, Inc. does not have a profile on Crunchbase.
Henderson Products, Inc.’s Presence on LinkedIn
Yes, Henderson Products, Inc. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/henderson-products-inc..
Cybersecurity Incidents Involving Henderson Products, Inc.
As of November 28, 2025, Rankiteo reports that Henderson Products, Inc. has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Henderson Products, Inc. has an estimated 2,056 peer or competitor companies worldwide.
Henderson Products, Inc. CyberSecurity History Information
How many cyber incidents has Henderson Products, Inc. faced ?
Total Incidents: According to Rankiteo, Henderson Products, Inc. has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Henderson Products, Inc. ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=henderson-products-inc.' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
