What is the official website of Herd MSL ?

The official website of Herd MSL is https://www.herdmsl.com.au/.

What is Herd MSL's cybersecurity risk score?

Herd MSL has an AI-generated cybersecurity risk score of 750 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Herd MSL experienced?

According to Rankiteo, Herd MSL currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Herd MSL been affected by any supply chain cyber incidents ?

According to Rankiteo, Herd MSL has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Herd MSL have SOC 2 Type 1 certification ?

According to Rankiteo, Herd MSL is not certified under SOC 2 Type 1.

Does Herd MSL have SOC 2 Type 2 certification ?

According to Rankiteo, Herd MSL does not hold a SOC 2 Type 2 certification.

Does Herd MSL comply with GDPR ?

According to Rankiteo, Herd MSL is not listed as GDPR compliant.

Does Herd MSL have PCI DSS certification ?

According to Rankiteo, Herd MSL does not currently maintain PCI DSS compliance.

Does Herd MSL comply with HIPAA ?

According to Rankiteo, Herd MSL is not compliant with HIPAA regulations.

Does Herd MSL have ISO 27001 certification ?

According to Rankiteo,Herd MSL is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Herd MSL operate in ?

Herd MSL operates primarily in the Public Relations and Communications Services industry.

How many employees does Herd MSL have ?

Herd MSL employs approximately 46 people worldwide.

Does Herd MSL own any subsidiaries ?

Herd MSL presently has no subsidiaries across any sectors.

How many LinkedIn followers does Herd MSL have ?

Herd MSL's official LinkedIn profile has approximately 5,612 followers.

What is the NAICS classification code for Herd MSL ?

Herd MSL is classified under the NAICS code 54182, which corresponds to Public Relations Agencies.

Does Herd MSL have a Crunchbase profile ?

No, Herd MSL does not have a profile on Crunchbase.

Does Herd MSL have a LinkedIn profile ?

Yes, Herd MSL maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/herd-msl.

How many cybersecurity incidents has Herd MSL experienced ?

As of June 14, 2026, Rankiteo reports that Herd MSL has experienced 2 cybersecurity incidents.

How many peer or competitor companies does Herd MSL have ?

Herd MSL has an estimated 4,608 peer or competitor companies worldwide.

What types of cybersecurity incidents has Herd MSL faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Herd MSL

Boost Score +25 with badge (5 left)

750

/1000

Fair

775

/1000

Fair

Herd MSL Vendor Cyber Rating & Cyber Score

herdmsl.com.au

Add Your Compliance Badge

Herd MSL has offices in Sydney, Australia and Auckland, New Zealand. Our strength is our ability to solve complex business problems through outstanding creative ideas, technically excellent execution and content led, multi-channel campaigns. Our difference is our dynamic, fearless and ambitious team – more than 70 specialists passionate about creative and integrated campaigns with impact. Our skills span creative, communication, social media, content and paid media Herd MSL is part of Publicis Groupe, the world's third largest communication group.

Herd MSL A.I CyberSecurity Scoring

Scoring History

Herd MSL

Herd MSL CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Herd MSL

Breach

100

6/2011

EPS153827123

Herd MSL

Breach

4/2011

EPS458072625

Loading…

A.I.

Herd MSL Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Herd MSL

Incidents vs Public Relations and Communications Services Industry Avg (This Year)

No incidents recorded for Herd MSL in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Herd MSL in 2026.

Incident Types Herd MSL vs Public Relations and Communications Services Industry Avg (This Year)

No incidents recorded for Herd MSL in 2026.

Incident History - Herd MSL (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Herd MSL Subsidiaries

Herd MSL

Public Relations and Communications Services

Website: https://www.herdmsl.com.au/

Company Size: 46

Publicis GroupeAdvertising Services

Leo BurnettAdvertising Services

Amazon Advertising CommunityAdvertising Services

The Mistaken Identity ProjectAdvertising Services

SapientRazorfish MENA | Now Publicis SapientBusiness Consulting and Services

HollerAdvertising Services

Rewilded RetreatsWellness and Fitness Services

StarcomAdvertising Services

Starcom AustraliaAdvertising Services

Prodigious WorldwideAdvertising Services

Prodigious SoundsAdvertising Services

Publicis Health MediaAdvertising Services

Digitas UKAdvertising Services

Level StudiosAdvertising Services

Digitas North AmericaAdvertising Services

(m)PHASIZEAdvertising Services

Digitas New ZealandAdvertising Services

Sapient Public Sector | Now Publicis SapientBusiness Consulting and Services

Optimedia USAdvertising Services

FallonAdvertising Services

Saatchi & Saatchi NZAdvertising Services

Balance InternetTechnology, Information and Internet

Publicis ProductionAdvertising Services

PublicisdrugstoreRetail

Razorfish ANZAdvertising Services

Performics UKAdvertising Services

Kaplan Thaler ProductionsAdvertising Services

Spark Foundry NZAdvertising Services

Performics AustraliaAdvertising Services

PROXIMEDIA FRANCETechnology, Information and Internet

LeSHOPAdvertising Services

Team One Exhibits, Inc.Events Services

Saatchi & SaatchiAdvertising Services

Saatchi & Saatchi (We Are Saatchi)Advertising Services

Saatchi & Saatchi IndiaAdvertising Services

F/Nazca Saatchi & SaatchiAdvertising Services

Team OneAdvertising Services

Saatchi & Saatchi SynergizeAdvertising Services

Saatchi & Saatchi SingaporeAdvertising Services

Saatchi & Saatchi XAdvertising Services

Breakout Room NZAdvertising Services

Publicis Groupe SingaporeAdvertising Services

Publicis Re:SourcesAdvertising Services

Arc WorldwideAdvertising Services

BBH GlobalAdvertising Services

BBH LondonAdvertising Services

BBH USAAdvertising Services

VivaKiAdvertising Services

RUNAdvertising Services

Publicis Groupe UKAdvertising Services

Publicis Groupe ANZAdvertising Services

North StrategicPublic Relations and Communications Services

RokkanAdvertising Services

MSL (Global)Public Relations and Communications Services

MSL IndiaPublic Relations and Communications Services

Women's Forum for the Economy & SocietyInternational Affairs

MSL UKAdvertising Services

MSL UK Employee ExperiencePublic Relations and Communications Services

Publicis ConsultantsPublic Relations and Communications Services

PublicisLiveEvents Services

Espalhe MSLAdvertising Services

JKLPublic Relations and Communications Services

MSL Group CanadaPublic Relations and Communications Services

20:20 MSLPublic Relations and Communications Services

ECA2 SHOW DESIGN & PRODUCTIONEntertainment Providers

20:20 MEDIAPublic Relations and Communications Services

MSLGROUP ChinaPublic Relations and Communications Services

MSLGROUP Corporate & Brand Citizenship/PurPlePublic Relations and Communications Services

Capital MSL Middle EastPublic Relations and Communications Services

Capital MSLPublic Relations and Communications Services

Winner & AssociatesPublic Relations and Communications Services

MSLGROUP Technology PracticePublic Relations and Communications Services

MSL WarsawPublic Relations and Communications Services

MSLGROUP Financial Communications PracticePublic Relations and Communications Services

PDI, Inc.Pharmaceutical Manufacturing

Interpace BiosciencesBiotechnology Research

Leo Burnett AustraliaAdvertising Services

MBMAdvertising Services

Third Horizon ConsultingBusiness Consulting and Services

Saatchi & Saatchi UKAdvertising Services

EpsilonAdvertising Services

Catapult MarketingAdvertising Services

Epsilon APACAdvertising Services

Epsilon EMEAAdvertising Services

Epsilon Alumni (Official)Advertising Services

Epsilon LATAMAdvertising Services

Sapient Global MarketsBusiness Consulting and Services

Loading…

Herd MSL Similar Companies

International Mission of Mercy (IMM)

immusa.org

International Mission of Mercy (IMM) was founded in 1991 by Satish Mehtani, a veteran of disaster relief missions in Kuwait, Japan and at the World Trade Center following September 11, 2001. IMM is a certified 501(c)(3) nonprofit organization whose goals are to serve people of all cultures following natural or man-made disasters, including weather-related catastrophes and violent uprisings. Mr. Mehtani and his wife Sneh are honored and proud to live in freedom in the United States. To pay tribute to their good luck, they have pledged a portion of their resources from Mehtani Restaurant Group, a 30-year-old, national portfolio of seven fine-dining Indian, Pan-Asian and Italian restaurants, and an award-winning catered events business, to rebuild communities and care for affected populations around the world. The professional team committed to IMM includes renowned physicians in the fields of pediatrics, geriatrics, orthopedics, infectious disease, ophthalmology, pain management, obstetrics and gynecology, internal medicine, psychology, physical therapy, nuclear medicine and more. Also on the distinguished Board of Directors is a former U.S. Ambassador, a retired Major General USA, attorneys, the Manhattan Chamber of Commerce CEO and respected leaders in the community. IMM provides satellite feeding centers capable of serving up to 10,000 people per day, using foods and designing recipes common to the culture of the region.

Loading…

NEWS

Herd MSL CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

November 24, 2025 08:00 AM

Herd MSL Unveils Reputation Resilience Council To Support New & Existing Clients

Herd MSL Australia has launched the Reputation Resilience Council, a service designed to support existing and new clients in navigating a...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…