Excellent
Woonin is een woningcorporatie met duurzame en betaalbare huurwoningen voor mensen met een laag inkomen. Woonin zet zich in voor leefbare buurten en staat dichtbij huurders. Utrecht - Nieuwegein - Houten - Wijk bij Duurstede
Excellent
Tiara Marga Trakindo was established 16 August, 2000, as the parent company for the Tiara Marga Trakindo (TMT) Group of companies. There currently are 14 companies in the TMT Group separated into three sub-holdings: PT Trakindo Utama (the Caterpillar Equipment dealer for Indonesia); PT ABM Investama (which has six companies involved in mining, energy and related services); and TMT itself, which has six companies in diversified industries. The TMT sub-holding includes the following companies: - PT Chakra Jawara (CJ), the Iveco truck dealer for Indonesia. - PT Chitra Paratama (CP), a Michelin commercial and earth-moving tire dealer. - PT Tri Swardana Utama (TSU), a Mercedes Benz truck dealer. - PT Mitra Solusi Telematika, an IT company. - PT Chandra Sakti Utama Leasing, a financial leasing company. The ABM sub-holding includes the following companies: - PT Cipta Kridatama (CK), a mining contracting company - PT Cipta Krida Bahari (CKB Logistics), an integrated logistics company - PT Alfa Trans Raya (ATR), a shipping company that is a subsidiary of CKB Logistics. - PT Sumberdaya Sewatama (SS), a power generation rental company. - PT Sanggar Sarana Baja (SSB), a steel fabrication and services company. - PT Tunas Inti Abadi (TIA), a mine site owner.
Security & Compliance Standards Overview
No incidents recorded for Woonin in 2025.
No incidents recorded for Tiara Marga Trakindo in 2025.
Woonin cyber incidents detection timeline including parent company and subsidiaries
Tiara Marga Trakindo cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
Improper Protection Against Voltage and Clock Glitches in FPGA devices, could allow an attacker with physical access to undervolt the platform resulting in a loss of confidentiality.
Malicious code was inserted into the Nx (build system) package and several related plugins. The tampered package was published to the npm software registry, via a supply-chain attack. Affected versions contain code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts.
Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.
Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the /api/admin/assign-badge endpoint lacks proper access control, allowing any authenticated user to assign high-privilege badges (e.g., Staff) to themselves. This could lead to privilege escalation and impersonation of administrative roles. This issue has been patched in version 2.2.0.
parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeState function of parse version 5.3.0 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.
