KRCC is a non-commercial, member-supported public media service affiliated with, and operated by, Colorado Public Radio in partnership with Colorado College. Our signal covers 20,000 square miles of southeastern Colorado.
CBC/Radio-Canada is Canada's national public broadcaster and a strong advocate of Canadian culture. We offer a unique space and a fresh Canadian perspective with unmatched cultural, musical and documentary programming. We do it in French, English and eight Aboriginal languages. Our activities promote creative work and contribute to the local economy. In television only, our investments in independent Canadian productions fund more than 10,000 jobs across the country. For a complete list of our current job opportunities, visit cbc.radio-canada.ca/jobs
Security & Compliance Standards Overview
No incidents recorded for KRCC in 2026.
No incidents recorded for CBC/Radio-Canada in 2026.
KRCC cyber incidents detection timeline including parent company and subsidiaries
CBC/Radio-Canada cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.
The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials.
XSS vulnerability in cveInterface.js allows for inject HTML to be passed to display, as cveInterface trusts input from CVE API services
Multiple reflected cross-site scripting (XSS) vulnerabilities in the login.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda and red_url parameters.
A reflected cross-site scripting (XSS) vulnerability in the login_newpwd.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda parameter.
