STM
Company Details
Linkedin ID:
international-association-of-stm-publishers
Website:
Employees number:
90
Number of followers:
4,934
NAICS:
511
Industry Type:
Homepage:
stm-assoc.org
IP Addresses:
0
Company ID:
STM_2172317
Scan Status:
In-progress
STM Company CyberSecurity Posture
stm-assoc.org
At STM we support our members in their mission to advance research worldwide. Our over 140 members based in over 20 countries around the world collectively publish 66% of all journal articles and tens of thousands of monographs and reference works. As academic and professional publishers, learned societies, university presses, start-ups and established players we work together to serve society by developing standards and technology to ensure research is of high quality, trustworthy and easy to access. We promote the contribution that publishers make to innovation, openness and the sharing of knowledge and embrace change to support the growth and sustainability of the research ecosystem. As a common good, we provide data and analysis for all involved in the global activity of research.
STM A.I CyberSecurity Scoring
STM Risk Score (AI oriented)Between 750 and 799
STM
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
STM Global Score (TPRM)XXXX
STM
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
STM Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
STM Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for STM
Incidents vs Book and Periodical Publishing Industry Average (This Year)
No incidents recorded for STM in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for STM in 2025.
Incident Types STM vs Book and Periodical Publishing Industry Avg (This Year)
No incidents recorded for STM in 2025.
Incident History — STM (X = Date, Y = Severity)
STM cyber incidents detection timeline including parent company and subsidiaries
STM Company Subsidiaries
At STM we support our members in their mission to advance research worldwide. Our over 140 members based in over 20 countries around the world collectively publish 66% of all journal articles and tens of thousands of monographs and reference works. As academic and professional publishers, learned societies, university presses, start-ups and established players we work together to serve society by developing standards and technology to ensure research is of high quality, trustworthy and easy to access. We promote the contribution that publishers make to innovation, openness and the sharing of knowledge and embrace change to support the growth and sustainability of the research ecosystem. As a common good, we provide data and analysis for all involved in the global activity of research.
Loading...
STM Similar Companies
Quality of Life Publishing Co.
Quality of Life Publishing Co. is an independent publishing company dedicated to educating communities and physicians on palliative care, home care, and end-of-life care. We offer branding on many of our publications, adding your logo, contact information, spot color, or custom artwork to our profes
GODINE
GODINE is an independent publisher located in Boston, Massachusetts. 2020 year marked the company’s 50th anniversary. Founded in 1970, Godine is stronger today than ever thanks to the authors we publish and to readers around the world. GODINE is also home to the Black Sparrow Press, founded in 196
Tellwell Publishing
Tellwell is the only company that gives authors 100% net royalties and lets you as the author know your publishing team. Located in Victoria, BC, Canada, Tellwell exists because we believe most authors want something quite simple: a small, committed team of professionals to help publish a quality
MDC Global
MDC Global represents a wide range of organisations across a number of different industry sectors. We offer an external ‘virtual extension’ to any sales team, tailoring programmes to ensure we exceed each of our clients’ business needs and expectations. Whether you are looking for lead genera
Penguin Random House Speakers Bureau
The Penguin Random House Speakers Bureau is a part of Penguin Random House, the world’s most global trade book publisher. The Speakers Bureau represents an unrivaled roster of speakers whose work is shaping national conversations—on and off the page. We work with venues both across the U.S. and thro
Steve Jackson Games
Steve Jackson Games was founded in 1980 by (no surprise here) Steve Jackson. We now publish books, games, and magazines for game fans. Our best-known games include Munchkin, the irreverent game of dungeon crawling; Zombie Dice, the fast-paced game of brain-eating; GURPS, the "Generic Universal Ro
.png)
STM CyberSecurity News
September 21, 2025 07:00 AM
Defense firm STM reaches 80% domestic production in warships, expands drone exports
Turkish defense company STM has achieved 80% domestic production in its latest I-Class frigate and exported its KARGU kamikaze drones to...
September 20, 2025 07:00 AM
Defense firm chief says drones becoming key to warfare
STM head says autonomous systems and UAVs will play bigger role in future conflicts - Anadolu Ajansı.
September 18, 2025 07:00 AM
‘We want to create new technologies, not catch up,’ says STM’s Ozgur Guleryuz at TEKNOFEST
Türkiye's leading defence engineering firm STM is leveraging cutting-edge technology and youth engagement to meet national defence needs...
August 07, 2025 07:00 AM
Malicious Go, npm Packages Deliver Cross-Platform Malware, Trigger Remote Data Wipes
Cybersecurity researchers have discovered a set of 11 malicious Go packages that are designed to download additional payloads from remote...
May 27, 2025 07:00 AM
World's First Post-Quantum Cybersecurity ASICs: Slovak Pioneer Revolutionizes Defense Tech at DSEI Japan 2025
TOKYO, JAPAN - EQS Newswire - 27 May 2025 - Decent Cybersecurity, the only Slovak company with its own stand at DSEI Japan 2025,...
May 16, 2025 07:00 AM
Decent Cybersecurity to Showcase Post-Quantum Solutions at DSEI Japan 2025
Decent Cybersecurity announces its participation at DSEI Japan 2025 as the only Slovak cybersecurity company exhibiting at this premier...
March 31, 2025 07:00 AM
Preparing for the EU Space Act and its potential influence on the future of space traffic management
The law will provide a common framework that ensures a consistent EU-wide approach to space safety and sustainability issues.
March 10, 2025 07:25 PM
Aerospace Tech Week Europe
Aerospace Tech Week (ATW) Europe, an event dedicated to aerospace technology, is set to return on 2-3 April 2025 at the MOC Event Center Messe München,...
March 04, 2025 08:00 AM
STMicroelectronics introduces line of GNSS receivers
STMicroelectronics has unveiled the Teseo VI family of GNSS receivers. The new receivers integrate multi-constellation and quad-band signal processing on a...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
STM CyberSecurity History Information
Official Website of STM
The official website of STM is http://www.stm-assoc.org.
STM’s AI-Generated Cybersecurity Score
According to Rankiteo, STM’s AI-generated cybersecurity score is 752, reflecting their Fair security posture.
How many security badges does STM’ have ?
According to Rankiteo, STM currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does STM have SOC 2 Type 1 certification ?
According to Rankiteo, STM is not certified under SOC 2 Type 1.
Does STM have SOC 2 Type 2 certification ?
According to Rankiteo, STM does not hold a SOC 2 Type 2 certification.
Does STM comply with GDPR ?
According to Rankiteo, STM is not listed as GDPR compliant.
Does STM have PCI DSS certification ?
According to Rankiteo, STM does not currently maintain PCI DSS compliance.
Does STM comply with HIPAA ?
According to Rankiteo, STM is not compliant with HIPAA regulations.
Does STM have ISO 27001 certification ?
According to Rankiteo,STM is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of STM
STM operates primarily in the Book and Periodical Publishing industry.
Number of Employees at STM
STM employs approximately 90 people worldwide.
Subsidiaries Owned by STM
STM presently has no subsidiaries across any sectors.
STM’s LinkedIn Followers
STM’s official LinkedIn profile has approximately 4,934 followers.
NAICS Classification of STM
STM is classified under the NAICS code 511, which corresponds to Publishing Industries (except Internet).
STM’s Presence on Crunchbase
No, STM does not have a profile on Crunchbase.
STM’s Presence on LinkedIn
Yes, STM maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/international-association-of-stm-publishers.
Cybersecurity Incidents Involving STM
As of November 28, 2025, Rankiteo reports that STM has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
STM has an estimated 4,881 peer or competitor companies worldwide.
STM CyberSecurity History Information
How many cyber incidents has STM faced ?
Total Incidents: According to Rankiteo, STM has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at STM ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description
Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.
Description
Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=international-association-of-stm-publishers' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
