HAF
Company Details
Linkedin ID:
hoyt-arboretum-friends
Website:
Employees number:
15
Number of followers:
337
NAICS:
712
Industry Type:
Homepage:
hoytarboretum.org
IP Addresses:
0
Company ID:
HOY_7716560
Scan Status:
In-progress
Hoyt Arboretum Friends Company CyberSecurity Posture
hoytarboretum.org
Hoyt Arboretum is a living museum of trees located in Washington Park in SW Portland, free for the public to enjoy. We offer year-round access to 12 miles of trails, 189 acres of forest, and more than 2,300 species of plants and trees from around the world. 500,000 people are estimated to use Hoyt Arboretum as a living classroom, outdoor gym, and spiritual sanctuary every year. At the heart of the Arboretum is the Visitor Center, a “busy hive of activity,” which offers a gift shop and complimentary hot drinks. There’s also the Bill deWeese Classroom, where one can join public tours, expert-led presentations, and classes on everything from wildlife tracking to botanical illustration. Our Magnolia, Maple and Conifer collections are nationally recognized, and at least 67 of our species are listed as rare or endangered in the wild. The Arboretum is supported by Hoyt Arboretum Friends, a membership-based, 501(c)(3) nonprofit organization working in partnership with Portland Parks & Recreation. The mission of Hoyt Arboretum Friends is to maintain and improve Hoyt Arboretum and its collection for all people through advocacy, resources, awareness and education. Donations to Hoyt Arboretum Friends directly impact species conservation, community science, and accessible recreation for all visitors as well as education programs for youth and adults.
Hoyt Arboretum Friends A.I CyberSecurity Scoring
HAF Risk Score (AI oriented)Between 750 and 799
HAF
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
HAF Global Score (TPRM)XXXX
HAF
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
HAF Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
HAF Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for HAF
Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)
No incidents recorded for Hoyt Arboretum Friends in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Hoyt Arboretum Friends in 2025.
Incident Types HAF vs Museums, Historical Sites, and Zoos Industry Avg (This Year)
No incidents recorded for Hoyt Arboretum Friends in 2025.
Incident History — HAF (X = Date, Y = Severity)
HAF cyber incidents detection timeline including parent company and subsidiaries
HAF Company Subsidiaries
Hoyt Arboretum is a living museum of trees located in Washington Park in SW Portland, free for the public to enjoy. We offer year-round access to 12 miles of trails, 189 acres of forest, and more than 2,300 species of plants and trees from around the world. 500,000 people are estimated to use Hoyt Arboretum as a living classroom, outdoor gym, and spiritual sanctuary every year. At the heart of the Arboretum is the Visitor Center, a “busy hive of activity,” which offers a gift shop and complimentary hot drinks. There’s also the Bill deWeese Classroom, where one can join public tours, expert-led presentations, and classes on everything from wildlife tracking to botanical illustration. Our Magnolia, Maple and Conifer collections are nationally recognized, and at least 67 of our species are listed as rare or endangered in the wild. The Arboretum is supported by Hoyt Arboretum Friends, a membership-based, 501(c)(3) nonprofit organization working in partnership with Portland Parks & Recreation. The mission of Hoyt Arboretum Friends is to maintain and improve Hoyt Arboretum and its collection for all people through advocacy, resources, awareness and education. Donations to Hoyt Arboretum Friends directly impact species conservation, community science, and accessible recreation for all visitors as well as education programs for youth and adults.
Loading...
HAF Similar Companies
Archaeological Institute of America
The Archaeological Institute of America (AIA) is North America's oldest and largest organization devoted to the world of archaeology. The AIA is a nonprofit group with some 200,000 Members belonging to 107 Local Societies. Mission: The Institute promotes a vivid and informed public interest in th
Buffalo and Erie County Botanical Gardens
Created from the visions of extraordinary men; David F. Day, Frederick Law Olmsted, John F. Cowell, Frederick A. Lord and William A. Burnham, this masterpiece opened in 1900. Lord & Burnham, premier designers of Victorian glass houses brought these visions to life with their unique design that was b
Pérez Art Museum Miami
Pérez Art Museum Miami is a modern and contemporary art museum dedicated to collecting and exhibiting international art of the 20th and 21st centuries. Pérez Art Museum Miami serves one of the most diverse populations in one of the fastest growing regions in the country, where a unique confluence
Glenbow
Glenbow is a place of confluence: a meeting point for people and communities to join a flow of ideas, knowledge, opinions, and experiences. Our exceptional collection of art, objects, and belongings represents the people and ideas that have shaped our region. We are committed to expanding the access
POW! (Paul Orselli Workshop, Inc.)
For nearly 40 years, Paul Orselli has worked to create inventive science museums and playful children’s museums, including director-level positions at the Discovery Museums in Acton, Massachusetts, the Ann Arbor Hands-On Museum, and the Long Island Children’s Museum. In 2002, Paul became President
Catawba Science Center
Catawba Science Center is a nonprofit science and technology museum serving NC’s western Piedmont region. Special attractions include traveling exhibits, a digital planetarium theater and a marine touch pool with live sharks and stingrays. A community asset and regional destination, Catawba Science
.png)
HAF CyberSecurity News
December 03, 2025 04:05 AM
Zion District 6 schools closed for third day after cybersecurity incident
Zion District 6 schools closed for third day after cybersecurity incident. It's unclear what kind of cyber-attack it was or if any personal...
December 03, 2025 03:58 AM
Okta projects strong quarterly revenue on rising demand for cybersecurity tools
By Jaspreet Singh Dec 2 (Reuters) - Cybersecurity company Okta forecast fourth-quarter revenue above Wall Street estimates on Tuesday,...
December 03, 2025 02:54 AM
How ASU's SEFCOM is changing the world of cybersecurity
The SEFCOM lab is taking new steps in finding cybersecurity solutions with the help of student researchers.
December 03, 2025 12:49 AM
Council adopts citywide cybersecurity program ordinance
The North Ridgeville City Council on Dec. 1 adopted Ordinance 2025-146 to establish a formal city cybersecurity program consistent with Ohio...
December 03, 2025 12:31 AM
Cybersecurity expert warns of new calendar scam that could cost you a fortune
Security experts want the public to be suspicious of emails to automatically send invitations to your mobile phone's calendar.
December 03, 2025 12:22 AM
Cortland council approves nepotism policy, cybersecurity resolution and multiple infrastructure and emergency items
Cortland City Council on Dec. 1 approved several ordinances and resolutions spanning personnel policy, senior services funding,...
December 03, 2025 12:21 AM
All Zion Elementary District 6 schools to remain closed on Wednesday due to cybersecurity incident
All Zion Elementary District 6 schools will be closed on Wednesday, for the third day in a row, following a cybersecurity incident over the...
December 02, 2025 11:58 PM
Senate Hearing Explores U.S. Cybersecurity Threats
The Senate Commerce Subcommittee on Telecommunications and Media held a hearing to investigate how the government can assist with curbing...
December 02, 2025 11:51 PM
Campbell County halts use of emergency notification system after cybersecurity breach
Residents of Campbell County will be without weather warnings and other mass notifications after the county's system was damaged in a...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
HAF CyberSecurity History Information
Official Website of Hoyt Arboretum Friends
The official website of Hoyt Arboretum Friends is http://hoytarboretum.org.
Hoyt Arboretum Friends’s AI-Generated Cybersecurity Score
According to Rankiteo, Hoyt Arboretum Friends’s AI-generated cybersecurity score is 762, reflecting their Fair security posture.
How many security badges does Hoyt Arboretum Friends’ have ?
According to Rankiteo, Hoyt Arboretum Friends currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Hoyt Arboretum Friends have SOC 2 Type 1 certification ?
According to Rankiteo, Hoyt Arboretum Friends is not certified under SOC 2 Type 1.
Does Hoyt Arboretum Friends have SOC 2 Type 2 certification ?
According to Rankiteo, Hoyt Arboretum Friends does not hold a SOC 2 Type 2 certification.
Does Hoyt Arboretum Friends comply with GDPR ?
According to Rankiteo, Hoyt Arboretum Friends is not listed as GDPR compliant.
Does Hoyt Arboretum Friends have PCI DSS certification ?
According to Rankiteo, Hoyt Arboretum Friends does not currently maintain PCI DSS compliance.
Does Hoyt Arboretum Friends comply with HIPAA ?
According to Rankiteo, Hoyt Arboretum Friends is not compliant with HIPAA regulations.
Does Hoyt Arboretum Friends have ISO 27001 certification ?
According to Rankiteo,Hoyt Arboretum Friends is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Hoyt Arboretum Friends
Hoyt Arboretum Friends operates primarily in the Museums, Historical Sites, and Zoos industry.
Number of Employees at Hoyt Arboretum Friends
Hoyt Arboretum Friends employs approximately 15 people worldwide.
Subsidiaries Owned by Hoyt Arboretum Friends
Hoyt Arboretum Friends presently has no subsidiaries across any sectors.
Hoyt Arboretum Friends’s LinkedIn Followers
Hoyt Arboretum Friends’s official LinkedIn profile has approximately 337 followers.
Hoyt Arboretum Friends’s Presence on Crunchbase
No, Hoyt Arboretum Friends does not have a profile on Crunchbase.
Hoyt Arboretum Friends’s Presence on LinkedIn
Yes, Hoyt Arboretum Friends maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/hoyt-arboretum-friends.
Cybersecurity Incidents Involving Hoyt Arboretum Friends
As of December 03, 2025, Rankiteo reports that Hoyt Arboretum Friends has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Hoyt Arboretum Friends has an estimated 2,134 peer or competitor companies worldwide.
Hoyt Arboretum Friends CyberSecurity History Information
How many cyber incidents has Hoyt Arboretum Friends faced ?
Total Incidents: According to Rankiteo, Hoyt Arboretum Friends has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Hoyt Arboretum Friends ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.11.1, vllm has a critical remote code execution vector in a config class named Nemotron_Nano_VL_Config. When vllm loads a model config that contains an auto_map entry, the config class resolves that mapping with get_class_from_dynamic_module(...) and immediately instantiates the returned class. This fetches and executes Python from the remote repository referenced in the auto_map string. Crucially, this happens even when the caller explicitly sets trust_remote_code=False in vllm.transformers_utils.config.get_config. In practice, an attacker can publish a benign-looking frontend repo whose config.json points via auto_map to a separate malicious backend repo; loading the frontend will silently run the backend’s code on the victim host. This vulnerability is fixed in 0.11.1.
Risk Information
cvss3
Base: 7.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Description
fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Angular Template Compiler. It occurs because the compiler's internal security schema is incomplete, allowing attackers to bypass Angular's built-in security sanitization. Specifically, the schema fails to classify certain URL-holding attributes (e.g., those that could contain javascript: URLs) as requiring strict URL security, enabling the injection of malicious scripts. This vulnerability is fixed in 21.0.2, 20.3.15, and 19.2.17.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Gin-vue-admin is a backstage management system based on vue and gin. In 2.8.6 and earlier, attackers can delete any file on the server at will, causing damage or unavailability of server resources. Attackers can control the 'FileMd5' parameter to delete any file and folder.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Portkey.ai Gateway is a blazing fast AI Gateway with integrated guardrails. Prior to 1.14.0, the gateway determined the destination baseURL by prioritizing the value in the x-portkey-custom-host request header. The proxy route then appends the client-specified path to perform an external fetch. This can be maliciously used by users for SSRF attacks. This vulnerability is fixed in 1.14.0.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=hoyt-arboretum-friends' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
