ISO 27001 Certificate
SOC 1 Type I Certificate
SOC 2 Type II Certificate
PCI DSS
HIPAA
RGPD
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

The Chartered Institute of Fundraising is the professional body for UK fundraising. We champion our members’ excellence in fundraising. We support fundraisers through professional development and education. We connect fundraisers across all sectors and skill sets to share and learn with each other. So that together we can best serve our causes and communities both now and in the future. Our social media moderation guidelines can be found here: https://www.ciof.org.uk/SocialMediaModerationGuidelines

Chartered Institute of Fundraising A.I CyberSecurity Scoring

CIF

Company Details

Linkedin ID:

institute-of-fundraising

Employees number:

151

Number of followers:

41,236

NAICS:

561

Industry Type:

Fundraising

Homepage:

ciof.org.uk

IP Addresses:

0

Company ID:

CHA_2077748

Scan Status:

In-progress

AI scoreCIF Risk Score (AI oriented)

Between 750 and 799

https://images.rankiteo.com/companyimages/institute-of-fundraising.jpeg
CIF Fundraising
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreCIF Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/institute-of-fundraising.jpeg
CIF Fundraising
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

CIF Company CyberSecurity News & History

Past Incidents
0
Attack Types
0
No data available
Ailogo

CIF Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

🔒
Incident Predictions locked
Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

🔒
A.I. Risk Score Predictions locked
Access Monitoring Plan
statics

Underwriter Stats for CIF

Incidents vs Fundraising Industry Average (This Year)

No incidents recorded for Chartered Institute of Fundraising in 2025.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Chartered Institute of Fundraising in 2025.

Incident Types CIF vs Fundraising Industry Avg (This Year)

No incidents recorded for Chartered Institute of Fundraising in 2025.

Incident History — CIF (X = Date, Y = Severity)

CIF cyber incidents detection timeline including parent company and subsidiaries

CIF Company Subsidiaries

SubsidiaryImage

The Chartered Institute of Fundraising is the professional body for UK fundraising. We champion our members’ excellence in fundraising. We support fundraisers through professional development and education. We connect fundraisers across all sectors and skill sets to share and learn with each other. So that together we can best serve our causes and communities both now and in the future. Our social media moderation guidelines can be found here: https://www.ciof.org.uk/SocialMediaModerationGuidelines

Loading...
similarCompanies

CIF Similar Companies

Active Fusion

Our mission is to help every child to develop a love for being active by unlocking potential and creating positive habits for life. We offer coached sports sessions to schools, an apprenticeship programme and help teachers to become more confident in delivering physical education lessons to childr

Cherrydale Fundraising

Cherrydale, America‘s most trusted online fundraising company, makes giving easy. Since 1907, we have helped schools, groups and teams nationwide raise over $2 billion. We can help you customize a fundraising program in over 50 ways for your school, church, club or nonprofit organization! Cherryda

Chemung County Humane Society & SPCA

Here at the SPCA we strive to not only provide our animals with the best possible homes, but also to keep families and pets together. We partner with a number of local organizations to offer programs to the public to complete the mission of keeping animals in their homes. We have been providing the

Alchemist Accelerator

The Alchemist Accelerator is a venture-backed initiative focused on accelerating the development of seed-stage ventures that monetize from enterprises (not consumers). The accelerator’s primary screening criteria is on teams, with primacy placed on having distinctive technical co-founders. The accel

Fundraising For A Cause

Fundraising For A Cause provides awareness products and fundraising merchandise to help people reach their goals easier than ever. No matter what sort of items strike your fancy, we’re all about providing you the highest returns at the lowest cost. We're the largest manufacturer of awareness produc

Lam Research Heart & Soles Run

When school children exercise and eat better, they learn better. That’s why the Silicon Valley Leadership Group Foundation, Lam Research and the Santa Clara County Office of Education have teamed up to produce the Lam Research Heart & Soles Run. This run was created to fund health, fitness, and wel

newsone

CIF CyberSecurity News

September 10, 2025 07:00 AM
Topics - The changing shape of face-to-face fundraising

We explore how face-to-face fundraising is changing to improve the donor experience and boost support.

June 13, 2025 07:00 AM
Four in five fundraisers ‘have ethical concerns about using AI’

Most fundraisers are reporting ethical concerns around using artificial intelligence (AI) in their work, a report has found.

June 10, 2025 07:00 AM
Report highlights fundraisers’ ethical concerns about AI use

Many fundraisers have ethical concerns around the use of artificial intelligence tools in the charity sector, according to a new report.

September 12, 2023 07:00 AM
Telephone fundraising in the digital age: Mapping charities’ future

The telephone continues to fulfil critical functions such as sales, customer service, internal communications but is gradually being...

faq

Frequently Asked Questions

Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.

CIF CyberSecurity History Information

Official Website of Chartered Institute of Fundraising

The official website of Chartered Institute of Fundraising is http://www.ciof.org.uk.

Chartered Institute of Fundraising’s AI-Generated Cybersecurity Score

According to Rankiteo, Chartered Institute of Fundraising’s AI-generated cybersecurity score is 759, reflecting their Fair security posture.

How many security badges does Chartered Institute of Fundraising’ have ?

According to Rankiteo, Chartered Institute of Fundraising currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Does Chartered Institute of Fundraising have SOC 2 Type 1 certification ?

According to Rankiteo, Chartered Institute of Fundraising is not certified under SOC 2 Type 1.

Does Chartered Institute of Fundraising have SOC 2 Type 2 certification ?

According to Rankiteo, Chartered Institute of Fundraising does not hold a SOC 2 Type 2 certification.

Does Chartered Institute of Fundraising comply with GDPR ?

According to Rankiteo, Chartered Institute of Fundraising is not listed as GDPR compliant.

Does Chartered Institute of Fundraising have PCI DSS certification ?

According to Rankiteo, Chartered Institute of Fundraising does not currently maintain PCI DSS compliance.

Does Chartered Institute of Fundraising comply with HIPAA ?

According to Rankiteo, Chartered Institute of Fundraising is not compliant with HIPAA regulations.

Does Chartered Institute of Fundraising have ISO 27001 certification ?

According to Rankiteo,Chartered Institute of Fundraising is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Industry Classification of Chartered Institute of Fundraising

Chartered Institute of Fundraising operates primarily in the Fundraising industry.

Number of Employees at Chartered Institute of Fundraising

Chartered Institute of Fundraising employs approximately 151 people worldwide.

Subsidiaries Owned by Chartered Institute of Fundraising

Chartered Institute of Fundraising presently has no subsidiaries across any sectors.

Chartered Institute of Fundraising’s LinkedIn Followers

Chartered Institute of Fundraising’s official LinkedIn profile has approximately 41,236 followers.

Chartered Institute of Fundraising’s Presence on Crunchbase

No, Chartered Institute of Fundraising does not have a profile on Crunchbase.

Chartered Institute of Fundraising’s Presence on LinkedIn

Yes, Chartered Institute of Fundraising maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/institute-of-fundraising.

Cybersecurity Incidents Involving Chartered Institute of Fundraising

As of December 21, 2025, Rankiteo reports that Chartered Institute of Fundraising has not experienced any cybersecurity incidents.

Number of Peer and Competitor Companies

Chartered Institute of Fundraising has an estimated 1,146 peer or competitor companies worldwide.

Chartered Institute of Fundraising CyberSecurity History Information

How many cyber incidents has Chartered Institute of Fundraising faced ?

Total Incidents: According to Rankiteo, Chartered Institute of Fundraising has faced 0 incidents in the past.

What types of cybersecurity incidents have occurred at Chartered Institute of Fundraising ?

Incident Types: The types of cybersecurity incidents that have occurred include .

Incident Details

What are the most common types of attacks the company has faced ?

Additional Questions

cve

Latest Global CVEs (Not Company-Specific)

Description

Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating the requesting user. Due to improper privilege handling and a time-of-check time-of-use race condition combined with symbolic link and mount point manipulation, a local authenticated attacker can coerce the service into deleting arbitrary directories with SYSTEM privileges. This can be exploited to delete protected system folders such as C:\\Config.msi and subsequently achieve execution as NT AUTHORITY\\SYSTEM via MSI rollback techniques.

Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description

The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to unauthorized modification of data due to a missing capability check on the 'cs_update_application_status_callback' function in all versions up to, and including, 7.7. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject cross-site scripting into the 'status' parameter of applied jobs for any user.

Risk Information
cvss3
Base: 7.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Description

The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.7 via the 'cs_update_application_status_callback' due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Candidate-level access and above, to send a site-generated email with injected HTML to any user.

Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Description

The FiboSearch – Ajax Search for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `thegem_te_search` shortcode in all versions up to, and including, 1.32.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This vulnerability requires TheGem theme (premium) to be installed with Header Builder mode enabled, and the FiboSearch "Replace search bars" option enabled for TheGem integration.

Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Description

The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajax_get_members function. This is due to the use of a predictable low-entropy token (5 hex characters derived from md5 of post ID) to identify member directories and insufficient authorization checks on the unauthenticated AJAX endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, display names, user roles (including administrator accounts), profile URLs, and user IDs by enumerating predictable directory_id values or brute-forcing the small 16^5 token space.

Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Access Data Using Our API

SubsidiaryImage

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=institute-of-fundraising' -H 'apikey: YOUR_API_KEY_HERE'

What Do We Measure ?

revertimgrevertimgrevertimgrevertimg
Incident
revertimgrevertimgrevertimgrevertimg
Finding
revertimgrevertimgrevertimgrevertimg
Grade
revertimgrevertimgrevertimgrevertimg
Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network Security

Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)

Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)

Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat Intelligence

Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Top LeftTop RightBottom LeftBottom Right
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
Users Love Us Badge