What is Insomni'hack's cybersecurity risk score?

Insomni'hack has an AI-generated cybersecurity risk score of 751 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Insomni'hack experienced?

According to Rankiteo, Insomni'hack currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Insomni'hack been affected by any supply chain cyber incidents ?

According to Rankiteo, Insomni'hack has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Insomni'hack have SOC 2 Type 1 certification ?

According to Rankiteo, Insomni'hack is not certified under SOC 2 Type 1.

Does Insomni'hack have SOC 2 Type 2 certification ?

According to Rankiteo, Insomni'hack does not hold a SOC 2 Type 2 certification.

Does Insomni'hack comply with GDPR ?

According to Rankiteo, Insomni'hack is not listed as GDPR compliant.

Does Insomni'hack have PCI DSS certification ?

According to Rankiteo, Insomni'hack does not currently maintain PCI DSS compliance.

Does Insomni'hack comply with HIPAA ?

According to Rankiteo, Insomni'hack is not compliant with HIPAA regulations.

Does Insomni'hack have ISO 27001 certification ?

According to Rankiteo,Insomni'hack is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Insomni'hack operate in ?

Insomni'hack operates primarily in the IT Services and IT Consulting industry.

How many employees does Insomni'hack have ?

Insomni'hack employs approximately None employees people worldwide.

Does Insomni'hack own any subsidiaries ?

Insomni'hack presently has no subsidiaries across any sectors.

How many LinkedIn followers does Insomni'hack have ?

Insomni'hack's official LinkedIn profile has approximately 240 followers.

What is the NAICS classification code for Insomni'hack ?

Insomni'hack is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.

Does Insomni'hack have a Crunchbase profile ?

No, Insomni'hack does not have a profile on Crunchbase.

Does Insomni'hack have a LinkedIn profile ?

Yes, Insomni'hack maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/insomnihack.

How many cybersecurity incidents has Insomni'hack experienced ?

As of June 14, 2026, Rankiteo reports that Insomni'hack has experienced 14 cybersecurity incidents.

How many peer or competitor companies does Insomni'hack have ?

Insomni'hack has an estimated 40,681 peer or competitor companies worldwide.

What types of cybersecurity incidents has Insomni'hack faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Ransomware, Breach and Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Insomni'hack

Boost Score +25 with badge (5 left)

751

/1000

Fair

776

/1000

Fair

Insomni'hack Vendor Cyber Rating & Cyber Score

insomnihack.ch

Add Your Compliance Badge

Insomni’hack is a cybersecurity conference and hacking contest, founded in 2008. Now held over 5 days at the SwissTech Convention Center in Lausanne, the event hosts a broad spectrum of workshops, talks, and on-site CTFs and brings together cybersecurity professionals and enthusiasts from around the world. We deliver cutting-edge technical content alongside a world-class live hacking competition designed to push the boundaries of cyber defence, research and community collaboration. Whether you’re a seasoned cyber-researcher, a professional defender, or a keen enthusiast, Insomni’hack is your hub for innovation, connection and real-world challenge. Join us for the 2026 edition: March 16-20, 2026.

Insomni'hack A.I CyberSecurity Scoring

Scoring History

Insomni'hack

Insomni'hack CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Insomni'hack

Cyber Attack

9/2025

ORA814090225

Orange

Breach

8/2025

ORA1770804300

Orange

Ransomware

100

8/2025

ORA1770316673

Insomni'hack

Cyber Attack

8/2025

ORA1764727825

Orange

Ransomware

100

7/2025

ORA1767980221

Orange Cyberdefense

Cyber Attack

5/2025

ORA1777999109

Insomni'hack

Ransomware

100

3/2025

ORA625031825

Insomni'hack

Breach

7/2024

ORA529082025

Orange

Breach

6/2024

ORA1768849235

Insomni'hack

Cyber Attack

01/2024

ORA214221124

Insomni'hack

Breach

100

09/2022

ORA2131141122

Insomni'hack

Cyber Attack

100

03/2022

ORA2548322

Insomni'hack

Breach

1/2022

ORA957082125

Insomni'hack

Ransomware

07/2020

ORA2911822

Loading…

A.I.

Insomni'hack Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Insomni'hack

Incidents vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for Insomni'hack in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Insomni'hack in 2026.

Incident Types Insomni'hack vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for Insomni'hack in 2026.

Incident History - Insomni'hack (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Insomni'hack Subsidiaries

Insomni'hack

IT Services and IT Consulting

Website: https://insomnihack.ch/?utm_source=linkedIn-page&utm_medium=about-page&utm_campaign=Insomnihack

Company Size: 51-200 employees

OrangeTelecommunications

Imagine with OrangeTechnology, Information and Internet

Orange BusinessIT Services and IT Consulting

Orange EgyptTelecommunications

Orange MarocTelecommunications

Orange TunisieTelecommunications

Orange BankBanking

Orange JordanTelecommunications

Orange MaliTelecommunications

Orange EspañaTelecommunications

Orange PolskaTelecommunications

Orange MarineTelecommunications

Orange WholesaleTelecommunications

GlobecastBroadcast Media Production and Distribution

TOTEMTelecommunications

Elettra TlcTelecommunications

Orange LuxembourgTelecommunications

ParnasseTelecommunications

Viaccess-OrcaTelecommunications

Targeted TV AdvertisingBroadcast Media Production and Distribution

Orange Money Africa and Middle EastTelecommunications

Femmes EntrepreneusesTelecommunications

Internet na doma DSLTelecommunications

Orange ProTélécommunications

Orange EU PolicyTelecommunications

Orange CyberdefenseIT Services and IT Consulting

SensePostComputer and Network Security

Loading…

Insomni'hack Similar Companies

Mastercard

mastercard.com

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re building a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

Luxoft

cb luxoft.com

Luxoft, a DXC Technology Company (NYSE: DXC), is a digital strategy and software engineering firm providing bespoke technology solutions that drive business change for customers the world over. Acquired by U.S. company DXC Technology in 2019, Luxoft is a global operation in 44 cities and 21 countries with an international, agile workforce of nearly 18,000 people. It combines a unique blend of engineering excellence and deep industry expertise, helping over 425 global clients innovate in the areas of automotive, financial services, travel and hospitality, healthcare, life sciences, media and telecommunications. DXC Technology is a leading Fortune 500 IT services company which helps global companies run their mission critical systems. Together, DXC and Luxoft offer a differentiated customer-value proposition for digital transformation by combining Luxoft’s front-end digital capabilities with DXC’s expertise in IT modernization and integration. Follow our profile for regular updates and insights into technology and business needs.

NTT DATA North America

nttdata.com

NTT DATA, Inc. is a trusted global innovator of business and technology services. We're committed to helping clients innovate, optimize and transform for long-term success. Our R&D investments help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity.

Globant

cb globant.link

At Globant, we create the digitally-native products that people love. We bridge the gap between businesses and consumers through technology and creativity, leveraging our experience as an AI powerhouse. We dare to digitally transform organizations and strive to delight their customers. - We have more than 30,000 employees and are present in 33 countries across 5 continents, working for companies like Google, Electronic Arts, and Santander, among others. - We were named a Worldwide Leader in AI Services (2023) and a Worldwide Leader in CX Improvement Services (2020) by IDC MarketScape report. - We are the fastest-growing IT brand and the 5th strongest IT brand globally (2024), according to Brand Finance. - We were featured as a business case study at Harvard, MIT, and Stanford. - We are active members of The Green Software Foundation (GSF) and the Cybersecurity Tech Accord. For more information, visit https://bit.ly/globant_com Follow us: http://www.twitter.com/globant http://www.youtube.com/Globant http://www.facebook.com/Globant https://instagram.com/Globant https://www.tiktok.com/@globant

AlmavivA Experience

almavivaexperience.com.br

Líder em transformação digital nos mercados de Customer Experience e Debt Collection na América Latina. Combinamos tecnologia, inteligência e excelência operacional para entregar soluções completas que antecipam as necessidades dos nossos Clientes. São mais de 530 milhões de interações anuais, metade em canais digitais, para um portfólio de 60+ clientes. Siga-nos e acompanhe como transformamos experiências em resultados.

AeC

aec.com.br

A AeC é apontada consistentemente como a líder brasileira na entrega de soluções de experiência do cliente e gestão de processos terceirizados. Servindo as principais marcas do mercado nacional, conquistou nos três últimos anos a posição de Empresa do Ano de BPO pela conceituada Frost and Sullivan. Líder também nas práticas de ESG, recebe há oito anos consecutivos o título de Melhor Empresa de Serviços pelo Prêmio Época Negócios 360°. Com um olhar inovador, o seu diferencial está no modo como integra o cuidado com as pessoas e aplica tecnologia de ponta em seus processos, como inteligência artificial, robotic process automation, serviços em nuvem e ferramentas de analytics e segurança. Atualmente, a AeC conta com mais de 52 mil colaboradores em 20 unidades distribuídas por sete estados do país. É certificada pelo instituto Great Place to Work como uma das melhores empresas para se trabalhar. Com uma combinação única de Tecnologia e Calor Humano, a mais de 30 anos de história conquistando, apenas no último ano, 27 importantes prêmios e reconhecimentos do mercado. Venha evoluir conosco! Entre em contato com a gente através do e-mail: [email protected]

Lenovo

cb lenovo.com

Lenovo is a US$69 billion revenue global technology powerhouse, ranked #196 in the Fortune Global 500, and serving millions of customers every day in 180 markets. Focused on a bold vision to deliver Smarter Technology for All, Lenovo has built on its success as the world’s largest PC company with a full-stack portfolio of AI-enabled, AI-ready, and AI-optimized devices (PCs, workstations, smartphones, tablets), infrastructure (server, storage, edge, high performance computing and software defined infrastructure), software, solutions, and services. Lenovo’s continued investment in world-changing innovation is building a more equitable, trustworthy, and smarter future for everyone, everywhere. Lenovo is listed on the Hong Kong stock exchange under Lenovo Group Limited (HKSE: 992) (ADR: LNVGY). To find out more visit https://www.lenovo.com, and read about the latest news via our StoryHub at https://news.lenovo.com/. To learn more about our career opportunities, visit our careers page at http://jobs.lenovo.com/.

Allianz Technology

allianz.com

With its headquarters in Munich, Germany, Allianz Technology is Allianz's global IT service provider and delivers IT solutions that drive the group's digitalization. With more than 11,000 employees in more than 20 countries around the world, Allianz Technology is tasked to run, optimize, transform, and innovate the infrastructure, applications, and services together with Allianz companies to co-create the best customer experience. We service the entire spectrum of digitalization - from one of the industry's largest IT infrastructure projects that spans data centres, networks, and security, to application platforms ranging from workplace services to digital interaction. In short: We deliver comprehensive end-to-end IT solutions for Allianz in the digital age. We are the backbone of Allianz.

Zebra Technologies

zebra.com

Zebra provides the foundation for intelligent operations with an award-winning portfolio of connected frontline, asset visibility and automation solutions. Organizations globally across retail, manufacturing, transportation, logistics, healthcare, and other industries rely on us to deliver outcomes today while driving innovation for what’s next. Together with our partners, we create new ways of working that improve productivity and empower organizations to be better every day. Learn more at www.zebra.com.

Loading…

NEWS

Insomni'hack CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

April 04, 2025 07:00 AM

Cyber security conference - Insomni'hack

On Wednesday 13 March, Dr. Anastasiia Kucherenko from the Gen Learning Center took part in the Insomni'hack cybersecurity conference.

Read Article

December 24, 2024 08:00 AM

Breaking Into Cybersecurity: Essential Skills and Certifications in Spain

Mastering essential skills like network security, ethical hacking, and communication, along with certifications such as CISSP and CompTIA CySA+, is crucial.

Read Article

March 06, 2024 04:18 AM

InsomniHack 2024

Insomni'hack is a security conference and hacking contest founded and organized by SCRT S.A. - which is now Orange Cyberdefense Switzerland - since 2008.

Read Article

March 03, 2023 08:00 AM

Safety Net: Hackers for hire help companies find their weak spots

Hackers are being hired by more companies and governments for their expertise to spot vulnerabilities to cyberattacks. Read more.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…