RNZ A.I CyberSecurity Scoring
23/02/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for Randstad New Zealand in 2026.
No incidents recorded for Randstad New Zealand in 2026.
No incidents recorded for Randstad New Zealand in 2026.
ManpowerGroup® (NYSE: MAN), the leading global workforce solutions company, helps organizations transform in a fast-changing world of work by sourcing, assessing, developing and managing the talent that enables them to win. We develop innovative solutions for hundreds of thousands of organizations every year, providing them with skilled talent while finding meaningful, sustainable employment for millions of people across a wide range of industries and skills. Our expert family of brands – Manpower, Experis and Talent Solutions – creates substantially more value for candidates and clients across more than 80 countries and territories and has done so for 75 years. We are recognized consistently for our diversity - as a best place to work for Women, Inclusion, Equality and Disability and in 2023 ManpowerGroup was named one of the World's Most Ethical Companies for the 14th year - all confirming our position as the brand of choice for in-demand talent. See how ManpowerGroup is powering the future of work: www.manpowergroup.com
Randstad North America, Inc. is a wholly-owned subsidiary of Randstad N.V., the world's largest HR services provider. Driven to become the world's most valued 'working life partner', supporting as many people as possible in realizing their true potential throughout their working life, we provide companies with the high quality, diverse, and agile workforces they need while helping people get rewarding jobs and stay relevant in the ever-changing world of work. In 2021, Randstad had on average 39,530 corporate employees and generated revenue of € 24.6 billion. Randstad's North American operations comprise 5,700+ associates and a deployed workforce of more than 86,000 in the U.S. and Canada. In addition to staffing and recruitment, Randstad offers outsourcing, consulting and workforce management solutions for generalist and specialist disciplines, including technology, engineering, accounting and finance, clinical and non-clinical healthcare, human resources, legal, life sciences, manufacturing and logistics, office and administration and sales and marketing. Global concepts available to North American client companies include RPO, MSP, integrated talent solutions, payrolling and independent contractor management and career transition services. Learn more at www.randstadusa.com or www.randstad.ca.
Manpower is the global leader in contingent and permanent recruitment workforce solutions. We provide the agility businesses need with a continuum of staffing solutions. By leveraging our trusted brands, we have built a deeper talent pool to provide our clients access to the people they need, faster. We effectively assess and develop skills, keeping our associates ahead of the curve, so they can get the jobs done each time, every time.
Aya Healthcare is the largest healthcare talent software and staffing company in the United States. Aya operates the world’s largest digital staffing platform delivering every component of healthcare-focused labor services, including travel nursing and allied health, per diem, permanent staff hiring, interim leadership, locum tenens and non-clinical professionals. Aya’s software suite, which includes vendor management, float pool technology, provider services and predictive analytics, provides hospital systems greater efficiencies and superior operating results. While technology drives efficiency and scale, Aya employees power the company to deliver unparalleled accountability and exceptional experiences for our clients and clinicians. Due to our passionate employees coupled with our unique corporate culture, we've been recognized as a top workplace by Fortune, Inc. Magazine, Modern Healthcare and the San Diego Union-Tribune. To learn more about Aya Healthcare, visit www.ayahealthcare.com
We are leaders in specialist recruitment and workforce solutions, offering advisory services such as learning and skill development, career transitions and employer brand positioning. As the Leadership Partner to our customers, we invest in lifelong partnerships that empower people and businesses to succeed. We help you achieve your career goals and deliver your business needs by combining meaningful innovation with our global scale and insights. Last year we helped over 280,000 people find their next career. Join the millions of people around the world that our specialist recruitment consultants provide with up-to-date information on career options, interesting insights and specific industry trends. We help our customers define and implement strategies to create inclusive and equitable workplaces. Through harnessing and analysing data, we support business decision making and advise on how to access Talent Networks. We also assist in identifying attractive employer propositions by truly understanding a company’s identity, and support clients with all aspects of their Early Careers proposition, from strategic planning through to operational execution. Hays is the market leader in the UK and Asia Pacific and one of the market leaders in Continental Europe and Latin America. The c.12,800 people we employ around the world partner with clients and candidates to power the world of work. Every day our expert consultants help thousands of candidates find their next role, and they also help clients reshape workforces and deal with talent shortages. In the year to 30 June 2021, we placed 77,000 people in permanent jobs and 244,000 people into temporary roles. For more information about our global network, strategy and Group financial results, visit www.haysplc.com
TrueBlue (NYSE: TBI) is a leading provider of specialized workforce solutions. As The People Company®, we put people first—advancing our mission to connect people and work while delivering smart, scalable solutions that help businesses grow and communities thrive. Since our founding, TrueBlue has connected more than 10 million people with work and served over 3 million clients across a variety of industries. Powered by proprietary, digitally enabled platforms and decades of expertise, our brands—PeopleReady, PeopleScout, Staff Management | SMX, Centerline, SIMOS, and Healthcare Staffing Professionals—provide a full spectrum of flexible staffing, workforce management, and recruitment solutions that bring precision, speed, and scale to the changing world of work. Learn more at www.trueblue.com.
TeamLease Services is one of India’s leading people supply chain companies offering a range of solutions to 3500+ employers for their hiring, productivity and scale challenges. A Fortune India 500 company listed on the NSE & BSE, TeamLease has hired 20 lakhs+ people over the last 20 years. One of India’s fastest growing employers, TeamLease also operates India’s first NAAC Accredited Skill University and India’s fastest growing PPP Degree Apprenticeship Program. The Company offers solutions to large, medium and small clients across the 3Es of Employment (over 2.9 lakhs associates/trainees), Employability (over 5 lakhs students) and Ease-of-doing Business (over 1000 employers). In FY2015, TeamLease rolled out DA (Degree Apprenticeship) to provide on-the-job training to apprentices. The Company, in partnership with the Government of Gujarat, set up TeamLease Skills University (TLSU), India’s first vocational university, at Vadodara. In FY2015, TeamLease rolled out NETAP (National Employability through Apprenticeship Program) to provide on-the-job training to apprentices. For more details, visit http://group.teamlease.com/
Welcome to the Michael Page global company profile. Michael Page has five decades of expertise in professional services recruitment. We were established in London in 1976, and over this period we've grown organically to become one of the best-known and most respected consultancies, with an office network spanning six continents. While size has its advantages, it doesn't define us - the nature of our organic growth means that each new office is integrated into the region that it serves. It also means that as an employer looking to hire, or as a candidate aiming to grow your career you have the best of both worlds; a team that understands the market and geography you operate in, plus the resources and expertise of an international network at your disposal. Our teams are broken down to focus on industry, assignment type, salary level and location, so your hiring requirements or job search will all be handled by a specialist who knows your sector inside-out. We are confident that our expertise can add value to your recruitment or job search process – get in touch to find out more.
From economic headwinds to talent complexities, the challenges facing North American industry are real. To rise to this moment, Aerotek® Inc. helps companies, and careers evolve. Aerotek provides staffing and services solutions in manufacturing, logistics, construction, aviation, facilities and maintenance. We partner with our customers to offer the expertise, solutions and people they need to rise to the challenges of North American industry. Our 3,300+ employees across 200+ offices work relentlessly to serve 150,000+ light industrial and skilled trades workers with 14,000+ employers every year. Let us rise to meet your challenges.
Latest updates, reports, and threat intel affecting the global network.
The uptake of artificial intelligence (AI) in New Zealand remains sluggish, despite its potential to boost productivity and transform hiring...
Air New Zealand continues to soar to new heights, once again recognised as New Zealand's Most Attractive Employer in the 2025 Randstad Employer Brand Research.
Air New Zealand has been named New Zealand's Most Attractive Employer for 2025, according to the latest Randstad Employer Branding Research.
Randstad's latest Workmonitor report has found that most New Zealanders in the workforce currently place high value on training, development and reskilling.
Tata Consultancy Services to help the global HR services company support more people and organizations in realizing their true potential.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.22 and 4.0.0-RC1 through 4.17.15, an attacker with only a GitHub account can plant a JavaScript payload in a craftcms/cms issue title. When a Craft admin uses the CraftSupport widget’s "Give feedback" screen and types a search term that returns the poisoned issue, the payload executes in the admin’s control panel session. No control panel account or elevated privileges are required on the attacker’s side. This issue has been fixed in versions 4.17.16 and 5.9.23.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDeleteFolder() only requires the deleteAssets:<volume-uid> permission for the target folder. It never enforces deletePeerAssets:<volume-uid>, even though Assets::deleteFoldersByIds() cascades deletion to every descendant folder and every asset inside, regardless of the uploader's assigned privileges. A low-privilege user who has been granted folder-management rights on a shared volume can therefore destroy assets uploaded by other users (peer assets), bypassing the per-asset peer-permission check that the sibling actionDeleteAsset endpoint correctly applies. This issue has been fixed in versions 4.17.15 and 5.9.22.
Craft CMS is a content management system (CMS). Versions 5.0.0-RC1 through 5.9.20, and 4.0.0-RC1 through 4.17.13 contain an authorization issue in the AssetsController::actionReplaceFile that can delete a source asset without source delete permission by supplying both assetId and sourceAssetId. AssetsController::actionReplaceFile() supports replacing a target asset file using another existing asset as the source. The action loads: assetId -> $assetToReplace and sourceAssetId -> $sourceAsset, then enforces replace permissions using ($assetToReplace ?: $sourceAsset). When both IDs are provided, this expression resolves to the target asset so no permission check is performed against the source asset volume. When both assets are present, Craft copies the source file into the target and then deletes the source asset. There is no deletion check for for the source asset. An authenticated user who can replace files in one volume can delete assets in another volume where they do not have delete permission, as long as they can obtain a sourceAssetId, leading to broken content references and data loss. This issue has been fixed in versions 4.17.14 and 5.9.21.
Description: To issue and renew TLS certificates on behalf of customers, Cloudflare's Universal SSL feature automatically manages the CAA RRset for the customer's zone. This auto-managed RRset is permissive by design (e.g. 'issue "letsencrypt.org"' without parameters). On Universal SSL zones, Cloudflare's authoritative DNS serves this auto-managed RRset at query time, superseding any customer-configured CAA records on the zone. When a customer publishes a stricter CAA record using the RFC 8657 accounturi or validationmethods parameters, the Certificate Authority does not observe those parameters when evaluating the served RRset under RFC 8659. As a result, the RFC 8657 account-binding and validation-method-binding protections are not enforced end-to-end on Universal SSL zones. Successful exploitation could result in issuance of a browser-trusted TLS certificate to an attacker, enabling MITM against the affected domain. Exploitation is non-trivial in practice: an attacker would need to hold an ACME account at one of the Certificate Authorities in the served CAA RRset and to simultaneously satisfy domain control validation across the multiple geographically distinct Network Perspectives the CA relies on for Multi-Perspective Issuance Corroboration. Cloudflare prefixes are anycast-announced from hundreds of locations globally, raising the bar against single-vantage-point BGP hijacks. Any resulting misissuance of a browser-trusted certificate is subject to Certificate Transparency logging required by major browsers, and would be visible to CT monitoring. Mitigation: Customers requiring strict RFC 8657 enforcement need to disable Universal SSL on the affected zone. Universal SSL's automatic CAA management and customer-set RFC 8657 accounturi and validationmethods enforcement are mutually exclusive by the nature of the issue, so there is no in-product workaround that preserves both. Certificate Transparency monitoring is recommended for all customers as a general detection control. Credits: David Osipov (ORCID: https://orcid.org/0009-0005-2713-9242), independent researcher
Out of bounds read and write in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.