NCH Türkiye A.I CyberSecurity Scoring
04/05/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for NCH Türkiye in 2026.
No incidents recorded for NCH Türkiye in 2026.
No incidents recorded for NCH Türkiye in 2026.
Chemical Manufacturing
Sika is a specialty chemicals company with a globally leading position in the development and production of systems and products for bonding, sealing, damping, reinforcing, and protection in the building sector and industrial manufacturing. Sika has subsidiaries in 102 countries around the world and, in over 400 factories, produces innovative technologies for customers worldwide. In doing so, it plays a crucial role in enabling the transformation of the construction and transportation sector toward greater environmental compatibility. With more than 34,000 employees, the company generated sales of CHF 11.76 billion in 2024. On Sika's LinkedIn page we share our most important corporate news and job openings, as well as a broad mix of content from our Sika subsidiaries around the world. Your Career at Sika: https://www.sika.com/en/career.html Privacy Notice: https://www.sika.com/en/footer/privacy-notice.html
🏢 About Asahi Kasei The Asahi Kasei Group contributes to life and living for people around the world. Since its foundation in 1922 with ammonia and cellulose fiber business, Asahi Kasei has consistently grown through the proactive transformation of its business portfolio to meet the evolving needs of every age. With more than 50,000 employees around the world, the company contributes to sustainable society by providing solutions to the world’s challenges through its three business sectors of Health Care, Homes, and Material. ⚠️Be cautious of fraudulent communications claiming to be from Asahi Kasei. If someone does not have a verification badge, that person is not authorized to engage in recruitment activities on behalf of Asahi Kasei.
Bayer is a global enterprise with core competencies in the life science fields of healthcare and nutrition. We design our products and services to serve the most essential human needs of health and nutrition. At the same time, we strive to address some of the world’s biggest challenges presented by a growing and aging global population. At Bayer, we’re committed to driving sustainable development and generate a positive impact with our businesses. Through the power of science, we’re pioneering new possibilities that advance life for all of us. That means reimagining how we care for ourselves and one another by empowering everyday health, improving approaches to patient care, and finding better ways to nourish our communities around the world. Data Privacy Statement & Imprint: https://www.bayer.com/en/glob-li-bayer-en-dps-imprint
Dow (NYSE: DOW) is one of the world’s leading materials science companies, serving customers in high-growth markets such as packaging, infrastructure, mobility and consumer applications. Our global breadth, asset integration and scale, customer-focused innovation and leading business positions enable us to achieve profitable growth and help deliver a sustainable future. We operate manufacturing sites in 29 countries and employ approximately 34,600 people. Dow delivered sales of approximately $40 billion in 2025. References to Dow or the Company mean Dow Inc. and its subsidiaries. Learn more about us at www.dow.com.
At IFF, we make joy through science, creativity and heart. As the global leader in flavors, fragrances, food ingredients, health and biosciences, we deliver groundbreaking, sustainable innovations that elevate everyday products—advancing wellness, delighting the senses and enhancing the human experience. With ~22,000 employees across 65 countries, more than 110 manufacturing facilities, 100 R&D centers and 33,000 customers worldwide, we turn possibilities into reality by redefining the limits of science and nature to create a more positive, sustainable future for all. Visit us at www.iff.com to learn how our real-deal experts approach work with an entrepreneurial mindset, working lockstep to defy expectations and create industry-defining solutions that do more good for people and planet
Givaudan is a global leader in Fragrance & Beauty and Taste & Wellbeing. We celebrate the beauty of human experience by creating for happier, healthier lives with love for nature. Together with our customers we deliver food experiences, craft inspired fragrances, and develop beauty and wellbeing solutions that make people look and feel good. With over 163 locations in 52 countries and over 78 production sites, of which 31 are located in Europe, 22 in North America, 17 in Latin America, 8 in Asia-Pacific, and 1 across South Asia, the Middle East, and Africa, we are committed to driving purpose-led growth that makes a positive impact. Givaudan: Human by nature. www.givaudan.com
Covestro is one of the world’s leading manufacturers of high-quality polymer materials and their components. With its innovative products, processes and methods, the company helps enhance sustainability and the quality of life in many areas. Covestro supplies customers around the world in key industries such as mobility, building and living, as well as the electrical and electronics sector. In addition, polymers from Covestro are also used in sectors such as sports and leisure, telecommunications and health, as well as in the chemical industry itself. The company is geared completely to the circular economy. In addition, Covestro aims to achieve climate neutrality for its Scope 1 and Scope 2 emissions by 2035, and the Group’s Scope 3 emissions are also set to be climate neutral by 2050. Covestro generated sales of EUR 14.2 billion in fiscal year 2024. At the end of 2024, the company had 46 production sites worldwide and employed approximately 17,500 people (calculated as full-time equivalents). Data protection information: https://www.covestro.com/en/social-media-privacy-statements
Brenntag is the global market leader in chemicals and ingredients distribution and holds a central role in connecting customers and suppliers of the chemical industry. Headquartered in Essen, Germany, we have more than 18,100 employees worldwide and operate a network of around 600 sites in more than 70 countries. In 2024, the company generated sales of €16.2 billion. The two global divisions, Brenntag Essentials and Brenntag Specialties, provide a diversified and broad portfolio of industrial and specialty chemicals and ingredients as well as tailor-made application, marketing and supply chain solutions, technical and formulation support, comprehensive regulatory know-how and digital solutions for a wide range of industries. Brenntag pursues an ambitious sustainability agenda and is committed to sustainable solutions in its own sector and the industries served. Brenntag SE shares have been listed on the Frankfurt Stock Exchange since 2010 and have been part of the DAX since September 2021. In addition, the Brenntag SE shares are listed in the DAX 30 ESG and DAX ESG Target.
A trusted partner for millions of customers, Ecolab (NYSE:ECL) is a global sustainability leader offering water, hygiene and infection prevention solutions and services that protect people and the resources vital to life. Building on more than a century of innovation, Ecolab has annual sales of $16 billion, employs approximately 48,000 associates and operates in more than 170 countries around the world. The company delivers comprehensive science-based solutions, data-driven insights and world-class service to advance food safety, maintain clean and safe environments, and optimize water and energy use. Ecolab’s innovative solutions improve operational efficiencies and sustainability for customers in the food, healthcare, high tech, life sciences, hospitality and industrial markets. For more Ecolab news and information, visit www.ecolab.com.
Latest updates, reports, and threat intel affecting the global network.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.22 and 4.0.0-RC1 through 4.17.15, an attacker with only a GitHub account can plant a JavaScript payload in a craftcms/cms issue title. When a Craft admin uses the CraftSupport widget’s "Give feedback" screen and types a search term that returns the poisoned issue, the payload executes in the admin’s control panel session. No control panel account or elevated privileges are required on the attacker’s side. This issue has been fixed in versions 4.17.16 and 5.9.23.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDeleteFolder() only requires the deleteAssets:<volume-uid> permission for the target folder. It never enforces deletePeerAssets:<volume-uid>, even though Assets::deleteFoldersByIds() cascades deletion to every descendant folder and every asset inside, regardless of the uploader's assigned privileges. A low-privilege user who has been granted folder-management rights on a shared volume can therefore destroy assets uploaded by other users (peer assets), bypassing the per-asset peer-permission check that the sibling actionDeleteAsset endpoint correctly applies. This issue has been fixed in versions 4.17.15 and 5.9.22.
Craft CMS is a content management system (CMS). Versions 5.0.0-RC1 through 5.9.20, and 4.0.0-RC1 through 4.17.13 contain an authorization issue in the AssetsController::actionReplaceFile that can delete a source asset without source delete permission by supplying both assetId and sourceAssetId. AssetsController::actionReplaceFile() supports replacing a target asset file using another existing asset as the source. The action loads: assetId -> $assetToReplace and sourceAssetId -> $sourceAsset, then enforces replace permissions using ($assetToReplace ?: $sourceAsset). When both IDs are provided, this expression resolves to the target asset so no permission check is performed against the source asset volume. When both assets are present, Craft copies the source file into the target and then deletes the source asset. There is no deletion check for for the source asset. An authenticated user who can replace files in one volume can delete assets in another volume where they do not have delete permission, as long as they can obtain a sourceAssetId, leading to broken content references and data loss. This issue has been fixed in versions 4.17.14 and 5.9.21.
Description: To issue and renew TLS certificates on behalf of customers, Cloudflare's Universal SSL feature automatically manages the CAA RRset for the customer's zone. This auto-managed RRset is permissive by design (e.g. 'issue "letsencrypt.org"' without parameters). On Universal SSL zones, Cloudflare's authoritative DNS serves this auto-managed RRset at query time, superseding any customer-configured CAA records on the zone. When a customer publishes a stricter CAA record using the RFC 8657 accounturi or validationmethods parameters, the Certificate Authority does not observe those parameters when evaluating the served RRset under RFC 8659. As a result, the RFC 8657 account-binding and validation-method-binding protections are not enforced end-to-end on Universal SSL zones. Successful exploitation could result in issuance of a browser-trusted TLS certificate to an attacker, enabling MITM against the affected domain. Exploitation is non-trivial in practice: an attacker would need to hold an ACME account at one of the Certificate Authorities in the served CAA RRset and to simultaneously satisfy domain control validation across the multiple geographically distinct Network Perspectives the CA relies on for Multi-Perspective Issuance Corroboration. Cloudflare prefixes are anycast-announced from hundreds of locations globally, raising the bar against single-vantage-point BGP hijacks. Any resulting misissuance of a browser-trusted certificate is subject to Certificate Transparency logging required by major browsers, and would be visible to CT monitoring. Mitigation: Customers requiring strict RFC 8657 enforcement need to disable Universal SSL on the affected zone. Universal SSL's automatic CAA management and customer-set RFC 8657 accounturi and validationmethods enforcement are mutually exclusive by the nature of the issue, so there is no in-product workaround that preserves both. Certificate Transparency monitoring is recommended for all customers as a general detection control. Credits: David Osipov (ORCID: https://orcid.org/0009-0005-2713-9242), independent researcher
Out of bounds read and write in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.