iSoftStone
Company Details
Linkedin ID:
isoftstone
Website:
Employees number:
10,001
Number of followers:
153,519
NAICS:
5415
Industry Type:
Homepage:
isoftstoneinc.com
IP Addresses:
0
Company ID:
ISO_1324838
Scan Status:
In-progress
iSoftStone Company CyberSecurity Posture
isoftstoneinc.com
iSoftStone is a global IT service and consulting company that creates value and drives success through technology solutions, service excellence, and digital innovation. We specialize in web and application development, software testing and support, data and content management, digital experience, accessibility, and data for machine learning and AI. With 20 delivery centers and more than 90,000 employees worldwide, iSoftStone is proud to serve some of the world’s most well-known businesses, including 90+ Fortune Global 500 companies.
iSoftStone A.I CyberSecurity Scoring
iSoftStone Risk Score (AI oriented)Between 750 and 799
iSoftStone
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
iSoftStone Global Score (TPRM)XXXX
iSoftStone
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
iSoftStone Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
iSoftStone Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for iSoftStone
Incidents vs IT Services and IT Consulting Industry Average (This Year)
No incidents recorded for iSoftStone in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for iSoftStone in 2025.
Incident Types iSoftStone vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for iSoftStone in 2025.
Incident History — iSoftStone (X = Date, Y = Severity)
iSoftStone cyber incidents detection timeline including parent company and subsidiaries
iSoftStone Company Subsidiaries
iSoftStone is a global IT service and consulting company that creates value and drives success through technology solutions, service excellence, and digital innovation. We specialize in web and application development, software testing and support, data and content management, digital experience, accessibility, and data for machine learning and AI. With 20 delivery centers and more than 90,000 employees worldwide, iSoftStone is proud to serve some of the world’s most well-known businesses, including 90+ Fortune Global 500 companies.
Loading...
iSoftStone Similar Companies
TIVIT
TIVIT is a Brazil-based multinational company that offers enterprise-level digital solutions, and operates in ten countries in Latin America. We help our clients develop their businesses by offering industry-leading digital solutions divided into four main categories: Digital Business, Cloud Solutio
Stefanini Brasil
A Stefanini é uma multinacional brasileira que atua no setor de serviços em TI. Com um suporte em mais de 30 idiomas, a Stefanini, 5ª empresa mais internacionalizada, segundo a Fundação Dom Cabral, atua em mais de 35 países e e está entre as 100 maiores empresas de TI do mundo (BBC News). Uma das ma
Dimension Data is a leading African born technology provider operating in the Middle East and Africa, offering a portfolio of services including systems integration, managed services infrastructure, cloud solutions, business applications, customer experience, and intelligent security solutions. We p
Capgemini
Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 5
UST
UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to op
AlmavivA Group
Almaviva is synonymous with digital innovation. Proven experience, unique skills, ongoing research and in-depth knowledge of a range of public and private market sectors are what make it the leading Italian Group in Information & Communications Technology. Almaviva leads the Country growth and take
Hitachi
Since its founding in 1910, Hitachi has responded to the expectations of society and its customers through technology and innovation. Our mission is to “Contribute to society through the development of superior, original technology and products.” Over the past 100+ years this commitment has led us t
At Avaya, we give our customers the freedom to take their business in the directions that benefit them most. We provide the paths for both customers and their employees where every moment big and small can drive in the moment, memorable experiences. The journey is theirs at the pace that makes sense
Inetum
Inetum is a European leader in digital services. Inetum’s team of 27,000 consultants and specialists strive every day to make a digital impact for businesses, public sector entities and society. Inetum’s solutions aim at contributing to its clients’ performance and innovation as well as the common g
.png)
iSoftStone CyberSecurity News
December 10, 2025 07:03 AM
Key cybersecurity takeaways from the 2026 NDAA
A 4.1% increase in military cyber funding in the FY2026 NDAA budget underpins new requirements for hardened mobile devices,...
December 10, 2025 07:00 AM
Henkel CISO on the messy truth of monitoring factories built across decades
Smart manufacturing struggles with fragile architectures, legacy devices, and uneven monitoring that create cybersecurity weaknesses.
December 10, 2025 06:41 AM
How ransomware crime is evolving into a smart business crime
In early years of its introduction, ransomware appeared as a chaotic, often clumsy attempt by cyber criminals to lock victims out of their...
December 10, 2025 06:34 AM
React2Shell RCE Active
Cybersecurity Insider Newsletter from December 9, 2025.
December 10, 2025 06:31 AM
Ransomware attacks on Hypervisors increase by 700 percent
Cybersecurity researchers at software vendor Huntress have reported a staggering 700 percent surge in ransomware attacks targeting...
December 10, 2025 06:30 AM
The hidden dynamics shaping who produces influential cybersecurity research
Cybersecurity research trends show shifts in team structures, gender balance, and collaboration networks, offering insight into the field.
December 10, 2025 06:17 AM
CyberWeek 2025 highlights Israel’s role in global cybersecurity
This week saw CyberWeek 2025 kick off in Tel Aviv for the 15th consecutive year, after being postponed from its usual summer slot due to the...
December 10, 2025 06:15 AM
Cybersecurity Certifications: Boost Your Career with CompTIA Security+
Discover the best cybersecurity certifications, from entry-level to advanced. Learn how CompTIA Security+ can launch your career in cyber...
December 10, 2025 06:05 AM
The Cybersecurity Battle Shaping Africa’s Entertainment Future
In East Africa, cybersecurity has emerged as one of the defining challenges of our time.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
iSoftStone CyberSecurity History Information
Official Website of iSoftStone
The official website of iSoftStone is http://www.isoftstoneinc.com.
iSoftStone’s AI-Generated Cybersecurity Score
According to Rankiteo, iSoftStone’s AI-generated cybersecurity score is 771, reflecting their Fair security posture.
How many security badges does iSoftStone’ have ?
According to Rankiteo, iSoftStone currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does iSoftStone have SOC 2 Type 1 certification ?
According to Rankiteo, iSoftStone is not certified under SOC 2 Type 1.
Does iSoftStone have SOC 2 Type 2 certification ?
According to Rankiteo, iSoftStone does not hold a SOC 2 Type 2 certification.
Does iSoftStone comply with GDPR ?
According to Rankiteo, iSoftStone is not listed as GDPR compliant.
Does iSoftStone have PCI DSS certification ?
According to Rankiteo, iSoftStone does not currently maintain PCI DSS compliance.
Does iSoftStone comply with HIPAA ?
According to Rankiteo, iSoftStone is not compliant with HIPAA regulations.
Does iSoftStone have ISO 27001 certification ?
According to Rankiteo,iSoftStone is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of iSoftStone
iSoftStone operates primarily in the IT Services and IT Consulting industry.
Number of Employees at iSoftStone
iSoftStone employs approximately 10,001 people worldwide.
Subsidiaries Owned by iSoftStone
iSoftStone presently has no subsidiaries across any sectors.
iSoftStone’s LinkedIn Followers
iSoftStone’s official LinkedIn profile has approximately 153,519 followers.
NAICS Classification of iSoftStone
iSoftStone is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.
iSoftStone’s Presence on Crunchbase
No, iSoftStone does not have a profile on Crunchbase.
iSoftStone’s Presence on LinkedIn
Yes, iSoftStone maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/isoftstone.
Cybersecurity Incidents Involving iSoftStone
As of December 10, 2025, Rankiteo reports that iSoftStone has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
iSoftStone has an estimated 37,375 peer or competitor companies worldwide.
iSoftStone CyberSecurity History Information
How many cyber incidents has iSoftStone faced ?
Total Incidents: According to Rankiteo, iSoftStone has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at iSoftStone ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a Stored Cross-Site Scripting (XSS) vulnerability in the /WeGIA/html/geral/configurar_senhas.php endpoint. The application does not sanitize user-controlled data before rendering it inside the employee selection dropdown. The application retrieves employee names from the database and injects them directly into HTML <option> elements without proper escaping. This issue is fixed in version 3.5.5.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.0.0-rc.1 through 4.7.0 are vulnerable to DOM-Based XSS through the Zitadel V2 logout endpoint. The /logout endpoint insecurely routes to a value that is supplied in the post_logout_redirect GET parameter. As a result, unauthenticated remote attacker can execute malicious JS code on Zitadel users’ browsers. To carry out an attack, multiple user sessions need to be active in the same browser, however, account takeover is mitigated when using Multi-Factor Authentication (MFA) or Passwordless authentication. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.7.0 and below are vulnerable to an unauthenticated, full-read SSRF vulnerability. The ZITADEL Login UI (V2) treats the x-zitadel-forward-host header as a trusted fallback for all deployments, including self-hosted instances. This allows an unauthenticated attacker to force the server to make HTTP requests to arbitrary domains, such as internal addresses, and read the responses, enabling data exfiltration and bypassing network-segmentation controls. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Description
NiceGUI is a Python-based UI framework. Versions 3.3.1 and below are vulnerable to directory traversal through the App.add_media_files() function, which allows a remote attacker to read arbitrary files on the server filesystem. This issue is fixed in version 3.4.0.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.
Risk Information
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/FreePBX/framework/commit/04224253156543cd9932b90458660b2f19fc0e35#diff-72f14a52840a61504a8e03cd195035b44e488aecd634b001bc6412a04bdc940bR20-R50
- https://github.com/FreePBX/security-reporting/security/advisories/GHSA-9jvh-mv6x-w698
- https://www.freepbx.org/watch-what-we-do-with-security-fixes-%f0%9f%91%80
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=isoftstone' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
