MBC
Company Details
Linkedin ID:
moon-and-back-co
Website:
Employees number:
9
Number of followers:
135
NAICS:
None
Industry Type:
Homepage:
moonandback.co
IP Addresses:
0
Company ID:
MOO_5627513
Scan Status:
In-progress
Moon and Back Co. Company CyberSecurity Posture
moonandback.co
Born from family and close friendships, the Moon & Back team are spread all over the globe and love to travel near or far, to capture your wedding day. Bound by a unique but shared vision, we’re passionate about the couples we work with, the weddings we shoot and the stories we tell. Each celebration is a completely different adventure for us, an exciting story waiting to unfold. From 5000 frames, we’ll distil your day into a cinematic sequence of moments completely your own. A film that feels real, long after the day has passed.
Moon and Back Co. A.I CyberSecurity Scoring
MBC Risk Score (AI oriented)Between 750 and 799
MBC
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
MBC Global Score (TPRM)XXXX
MBC
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
MBC Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
MBC Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for MBC
Incidents vs Movies, Videos, and Sound Industry Average (This Year)
No incidents recorded for Moon and Back Co. in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Moon and Back Co. in 2025.
Incident Types MBC vs Movies, Videos, and Sound Industry Avg (This Year)
No incidents recorded for Moon and Back Co. in 2025.
Incident History — MBC (X = Date, Y = Severity)
MBC cyber incidents detection timeline including parent company and subsidiaries
MBC Company Subsidiaries
Born from family and close friendships, the Moon & Back team are spread all over the globe and love to travel near or far, to capture your wedding day. Bound by a unique but shared vision, we’re passionate about the couples we work with, the weddings we shoot and the stories we tell. Each celebration is a completely different adventure for us, an exciting story waiting to unfold. From 5000 frames, we’ll distil your day into a cinematic sequence of moments completely your own. A film that feels real, long after the day has passed.
Loading...
MBC Similar Companies
Toy Box Entertainment
We are an entertainment marketing agency that creates audio-visual advertising campaigns for major Hollywood studios. But we're not your typical "trailer house." We are a production company with a history of writing, producing and directing projects of all sizes. Whether it is a special shoo
Dubai International Film Festival
The Dubai International Film Festival (DIFF) is the leading film festival in the Middle East. Since its inception in 2004, the festival has served as an influential platform for Arab filmmakers and talent at an international level, by spearheading the cinema movement in the region. The 11th edition
NOON Visual Creatives
Noon Multimedia was established in London in 2005. Since then we have worked to provide technical and audio-visual services for television channels, media organisations and others requiring television production. We are not limited to the UK, our work spans Europe and the Arab region. The compan
SoapBox Productions and Organizing
SoapBox Productions and Organizing is a film and social activism 501c3 nonprofit specializing in multimedia storytelling for structural social change. Our mission is to utilize media to power, frame, and sustain social movements that advance holistic solutions to root problems. In tandem with grassr
Film Faction, LLC
We are a Faction of filmmakers who have come together to grow in the art of film. What we create is a timeline to our passion for film and the industry. Though we started off small, we are constantly growing. Everyday our Faction is expanding as we hope for more and more people to join us in our pas
Galaxy Studios nv
In the heart of Europe Galaxy Studios stands out as one of the most cutting edge residential studio complexes of this day, both in technology and creativity. Equiped for virtually every audio-surround format, its combination of three pristine studios, acoustically excellent recording areas, state-o
.png)
MBC CyberSecurity News
October 03, 2025 07:00 AM
French cybersecurity startup MokN raises €2.6 million to combat credential theft
The company will also expand into the US.
May 15, 2024 07:00 AM
To the Moon and back(doors): Lunar landing in diplomatic missions
ESET researchers provide technical analysis of the Lunar toolset, likely used by the Turla APT group, that infiltrated a European ministry...
February 03, 2023 06:25 PM
Data Breaches That Have Happened This Year (2025 Update)
Business of all sizes have fallen victim to data breaches over the last few years, resulting in millions of dollars being lost.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
MBC CyberSecurity History Information
Official Website of Moon and Back Co.
The official website of Moon and Back Co. is https://moonandback.co/.
Moon and Back Co.’s AI-Generated Cybersecurity Score
According to Rankiteo, Moon and Back Co.’s AI-generated cybersecurity score is 754, reflecting their Fair security posture.
How many security badges does Moon and Back Co.’ have ?
According to Rankiteo, Moon and Back Co. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Moon and Back Co. have SOC 2 Type 1 certification ?
According to Rankiteo, Moon and Back Co. is not certified under SOC 2 Type 1.
Does Moon and Back Co. have SOC 2 Type 2 certification ?
According to Rankiteo, Moon and Back Co. does not hold a SOC 2 Type 2 certification.
Does Moon and Back Co. comply with GDPR ?
According to Rankiteo, Moon and Back Co. is not listed as GDPR compliant.
Does Moon and Back Co. have PCI DSS certification ?
According to Rankiteo, Moon and Back Co. does not currently maintain PCI DSS compliance.
Does Moon and Back Co. comply with HIPAA ?
According to Rankiteo, Moon and Back Co. is not compliant with HIPAA regulations.
Does Moon and Back Co. have ISO 27001 certification ?
According to Rankiteo,Moon and Back Co. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Moon and Back Co.
Moon and Back Co. operates primarily in the Movies, Videos, and Sound industry.
Number of Employees at Moon and Back Co.
Moon and Back Co. employs approximately 9 people worldwide.
Subsidiaries Owned by Moon and Back Co.
Moon and Back Co. presently has no subsidiaries across any sectors.
Moon and Back Co.’s LinkedIn Followers
Moon and Back Co.’s official LinkedIn profile has approximately 135 followers.
NAICS Classification of Moon and Back Co.
Moon and Back Co. is classified under the NAICS code None, which corresponds to Others.
Moon and Back Co.’s Presence on Crunchbase
No, Moon and Back Co. does not have a profile on Crunchbase.
Moon and Back Co.’s Presence on LinkedIn
Yes, Moon and Back Co. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/moon-and-back-co.
Cybersecurity Incidents Involving Moon and Back Co.
As of December 21, 2025, Rankiteo reports that Moon and Back Co. has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Moon and Back Co. has an estimated 1,804 peer or competitor companies worldwide.
Moon and Back Co. CyberSecurity History Information
How many cyber incidents has Moon and Back Co. faced ?
Total Incidents: According to Rankiteo, Moon and Back Co. has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Moon and Back Co. ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating the requesting user. Due to improper privilege handling and a time-of-check time-of-use race condition combined with symbolic link and mount point manipulation, a local authenticated attacker can coerce the service into deleting arbitrary directories with SYSTEM privileges. This can be exploited to delete protected system folders such as C:\\Config.msi and subsequently achieve execution as NT AUTHORITY\\SYSTEM via MSI rollback techniques.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to unauthorized modification of data due to a missing capability check on the 'cs_update_application_status_callback' function in all versions up to, and including, 7.7. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject cross-site scripting into the 'status' parameter of applied jobs for any user.
Risk Information
cvss3
Base: 7.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.7 via the 'cs_update_application_status_callback' due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Candidate-level access and above, to send a site-generated email with injected HTML to any user.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Description
The FiboSearch – Ajax Search for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `thegem_te_search` shortcode in all versions up to, and including, 1.32.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This vulnerability requires TheGem theme (premium) to be installed with Header Builder mode enabled, and the FiboSearch "Replace search bars" option enabled for TheGem integration.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
References
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L104
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L94
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3420841%40ajax-search-for-woocommerce%2Ftrunk&old=3398612%40ajax-search-for-woocommerce%2Ftrunk&sfp_email=&sfph_mail=#file136
- https://wordpress.org/plugins/ajax-search-for-woocommerce
- https://www.wordfence.com/threat-intel/vulnerabilities/id/8149103e-105d-401d-8a15-b07d131baaac?source=cve
Description
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajax_get_members function. This is due to the use of a predictable low-entropy token (5 hex characters derived from md5 of post ID) to identify member directories and insufficient authorization checks on the unauthenticated AJAX endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, display names, user roles (including administrator accounts), profile URLs, and user IDs by enumerating predictable directory_id values or brute-forcing the small 16^5 token space.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
References
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/class-functions.php#L41
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-ajax-common.php#L61
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L205
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L2795
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/templates/members.php#L26
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3421362%40ultimate-member%2Ftrunk&old=3408617%40ultimate-member%2Ftrunk&sfp_email=&sfph_mail=
- https://www.wordfence.com/threat-intel/vulnerabilities/id/61337d2d-d15a-45f2-b730-fc034eb3cd31?source=cve
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=moon-and-back-co' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
