Rexing Companies
Company Details
Linkedin ID:
rexingcompanies
Website:
Employees number:
18
Number of followers:
742
NAICS:
47
Industry Type:
Homepage:
rexingcompanies.com
IP Addresses:
0
Company ID:
REX_1888220
Scan Status:
In-progress
Rexing Companies Company CyberSecurity Posture
rexingcompanies.com
🚚📦 Rexing Companies: Your One-Stop-Shop for Logistics, Supply Chain Management, and Warehousing 🏭🌐 Background Information: - Company Name: Rexing Companies - Industry: 3PL, Logistics, Warehousing, Trucking, Yard Management - Headquartered: Evansville, Indiana What We Do: At Rexing Companies, we specialize in providing comprehensive logistics solutions for businesses in the transportation and warehousing industry. With our expertise in freight, logistics, warehousing, yard management, and dedicated transportation, we offer a wide range of services to meet your specific needs. How We Do It: Our family of companies works together seamlessly to deliver a more personalized service than our competitors. We take pride in building strong business relationships and ensuring that every step of your supply chain is handled with utmost care and efficiency. With our state-of-the-art facilities and cutting-edge technology, we guarantee seamless operations and timely delivery. Your Next Step: If you're looking to optimize your supply chain strategy and streamline your logistics operations, look no further. Let us help you achieve your goals and take your business to new heights. Connect with us today to learn more about how we can improve your supply chain strategy and drive your business forward. 🎯 Target Market: - Logistics Executives - Supply Chain Leaders 🔧 Problem Solved: - Inefficient supply chain management - Lack of personalized service - Delayed deliveries and operational bottlenecks 🌟 Achievements: - Inc 5000 🌐 Learn more about our logistics business at rexingcompanies.com and discover how we can transform your supply chain strategy. Reach out to us today and let's discuss how we can help you achieve your goals. Always moving forward, we work hard, play hard, and get cold so you don't have to! Let's go! 🚀💼 #logistics #3PL #warehousing #trucking #freight #yardmanagement
Rexing Companies A.I CyberSecurity Scoring
Rexing Companies Risk Score (AI oriented)Between 700 and 749
Rexing Companies
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Rexing Companies Global Score (TPRM)XXXX
Rexing Companies
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Rexing Companies Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Costco and Rexing Companies: Freight Broker Says $400K in Lobster Meat Stolen in Fictitious Pickup
Cyber Attack
Rankiteo Explanation
Attack limited on finance or reputation
Description: **Cyber-Enabled Cargo Theft: $400K Lobster Shipment Stolen in Massachusetts Fictitious Pickup Scam** On December 12, a $400,000 shipment of lobster meat bound for Midwest Costco stores was stolen from a Massachusetts cold storage facility in Taunton. The theft, investigated by the FBI and local police, appears to be a *fictitious pickup*—a cyber-enabled cargo theft tactic where criminals use stolen data to forge shipping documents and impersonate legitimate truck drivers. Dylan Rexing, CEO of Indiana-based freight broker Rexing Companies, revealed that the thief posed as a driver for the contracted carrier, using fake paperwork and a fraudulent commercial driver’s license. Rexing emphasized that such scams are rampant, occurring "multiple times a day" across industries, with victims ranging from small businesses to large corporations. He noted that just 10 days prior, a similar theft of crab meat had occurred at the same facility. According to the Department of Homeland Security, organized retail crime—including cargo theft—costs U.S. consumers over $500 per family annually. Rexing criticized the perception of these crimes as "white-collar" offenses, arguing that the financial burden ultimately falls on consumers. While liability remains unresolved, Rexing acknowledged his firm may bear significant losses and has engaged legal and insurance representatives. The incident underscores the growing threat of cyber-enabled cargo theft, with Rexing advocating for stronger legislation and law enforcement resources to combat the issue. His attorney reported nine similar thefts totaling over $250,000 in the week preceding the lobster heist, highlighting the scale of the problem.
Rexing Companies Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Rexing Companies
Incidents vs Transportation, Logistics, Supply Chain and Storage Industry Average (This Year)
Rexing Companies has 24.81% fewer incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Rexing Companies has 26.58% more incidents than the average of all companies with at least one recorded incident.
Incident Types Rexing Companies vs Transportation, Logistics, Supply Chain and Storage Industry Avg (This Year)
Rexing Companies reported 1 incidents this year: 1 cyber attacks, 0 ransomware, 0 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — Rexing Companies (X = Date, Y = Severity)
Rexing Companies cyber incidents detection timeline including parent company and subsidiaries
Rexing Companies Company Subsidiaries
🚚📦 Rexing Companies: Your One-Stop-Shop for Logistics, Supply Chain Management, and Warehousing 🏭🌐 Background Information: - Company Name: Rexing Companies - Industry: 3PL, Logistics, Warehousing, Trucking, Yard Management - Headquartered: Evansville, Indiana What We Do: At Rexing Companies, we specialize in providing comprehensive logistics solutions for businesses in the transportation and warehousing industry. With our expertise in freight, logistics, warehousing, yard management, and dedicated transportation, we offer a wide range of services to meet your specific needs. How We Do It: Our family of companies works together seamlessly to deliver a more personalized service than our competitors. We take pride in building strong business relationships and ensuring that every step of your supply chain is handled with utmost care and efficiency. With our state-of-the-art facilities and cutting-edge technology, we guarantee seamless operations and timely delivery. Your Next Step: If you're looking to optimize your supply chain strategy and streamline your logistics operations, look no further. Let us help you achieve your goals and take your business to new heights. Connect with us today to learn more about how we can improve your supply chain strategy and drive your business forward. 🎯 Target Market: - Logistics Executives - Supply Chain Leaders 🔧 Problem Solved: - Inefficient supply chain management - Lack of personalized service - Delayed deliveries and operational bottlenecks 🌟 Achievements: - Inc 5000 🌐 Learn more about our logistics business at rexingcompanies.com and discover how we can transform your supply chain strategy. Reach out to us today and let's discuss how we can help you achieve your goals. Always moving forward, we work hard, play hard, and get cold so you don't have to! Let's go! 🚀💼 #logistics #3PL #warehousing #trucking #freight #yardmanagement
Loading...
Rexing Companies Similar Companies
Poste Italiane
With our over 160-year history, approximately 120,000 employees and 12,800 post offices, total financial assets of €580 billion and 35 million customers, the Group occupies a unique position in terms of size, recognisability, reach and customer loyalty. Poste Italiane is Italy's largest service inf
CEVA Logistics
CEVA provides world-class supply chain solutions for large and medium-size national and multinational companies across the globe. As an industry leader, CEVA offers customers complete supply chain design and implementation in contract logistics and freight management, alone or in combination. Toget
bpostgroup
bpostgroup is a leading logistics expert, active in Europe, North-America and Asia. Whether it's as a parcel-sized last mile partner with mail products in Belgium and the Netherlands, a specialized operator in the high value logistics markets or through our leading cross-border network: we excel thr
As the custodian of ports, rail and pipelines, Transnet’s objective is to ensure a globally competitive freight system that enables sustained growth and diversification of the country’s economy. As a state-owned company, Transnet continues to leave an indelible mark on the lives of all South Afri
A.P. Moller - Maersk
A.P. Moller - Maersk is an integrated transport and logistics company; going all the way, together, for our customers and society. ALL THE WAY is our commitment to connect the world so that everyone has both the possibility and the ability to trade, grow and thrive. The company employs roughly 110.0
CMA CGM
The CMA CGM Group is a global player in sea, land, air and logistics solutions, true to its corporate Purpose, "We imagine better ways to serve a world in motion". Present in 177 countries, it employs 160,000 people, of which nearly 6,000 in Marseilles where its head office is located. The world's
Trade is the lifeblood of the global economy, creating opportunities and improving the quality of life for people around the world. DP World exists to make the world’s trade flow better, changing what’s possible for the customers and communities we serve globally. With a dedicated, diverse and p
C.H. Robinson
C.H. Robinson is the global leader in Lean AI supply chains. For more than a century, companies everywhere have looked to us to reimagine how goods move. Now, as we redefine what’s next for the industry, that same drive fuels our commitment to Building Tomorrow’s Supply Chains, Today™. Trusted by 83
GEODIS
GEODIS is a leading global logistics provider acknowledged for its expertise across all aspects of the supply chain. As a growth partner to its clients, GEODIS specializes in four lines of business: Global Freight Forwarding, Global Contract Logistics, Distribution & Express Transport, and European
.png)
Rexing Companies CyberSecurity News
December 30, 2025 05:54 PM
Thieves Pinch $400,000 Worth Of Costco Lobsters Just In Time For A Very Fancy New Year's Dinner
Some shellfish thieves made off with $400000 worth of lobster from a Massachusetts distribution center just a few days after Christmas.
December 27, 2025 04:48 PM
$400K lobster shipment bound for Costco locations hijacked after departing Massachusetts
The freight company's CEO warned of a growing trend of seafood cargo theft in the region.
December 26, 2025 11:03 PM
$400K worth of live lobsters stolen before reaching Costco
Police are investigating a $400000 lobster heist targeting Costco locations.
June 20, 2025 07:00 AM
Billions of login credentials have been leaked online, Cybernews researchers say
Researchers at cybersecurity outlet Cybernews say that billions of login credentials have been leaked and compiled into datasets online.
March 27, 2025 07:00 AM
The Signal scandal is even worse than it looks
The self-inflicted leak of sensitive war plans via the popular messaging app indicates that the administration may be ignoring other basic...
February 05, 2025 08:00 AM
Israeli cybersecurity expert plans his comeback in Boston
Israeli cybersecurity expert Lior Div came to the United States more than a decade ago when he relocated his company, Cybereason, to Boston.
November 19, 2024 08:00 AM
Stop & Shop shelves empty at many Massachusetts stores, following cybersecurity issue
Customers are seeing empty shelves this week at many Stop & Shop locations across Massachusetts after the stores' parent company said last...
September 12, 2024 07:00 AM
Somerville security firm bought by credit card giant MasterCard for $2.65 billion
MasterCard on Thursday said it had reached an agreement to acquire Somerville cybersecurity firm Recorded Future from private equity company...
March 07, 2018 08:00 AM
Cyber threats are ‘coming at us from all sides,’ FBI director says
In a highly anticipated speech on cyber security at Boston College, FBI Director Christopher A. Wray said Wednesday that the threat of...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Rexing Companies CyberSecurity History Information
Official Website of Rexing Companies
The official website of Rexing Companies is https://rexingcompanies.com.
Rexing Companies’s AI-Generated Cybersecurity Score
According to Rankiteo, Rexing Companies’s AI-generated cybersecurity score is 723, reflecting their Moderate security posture.
How many security badges does Rexing Companies’ have ?
According to Rankiteo, Rexing Companies currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Rexing Companies have SOC 2 Type 1 certification ?
According to Rankiteo, Rexing Companies is not certified under SOC 2 Type 1.
Does Rexing Companies have SOC 2 Type 2 certification ?
According to Rankiteo, Rexing Companies does not hold a SOC 2 Type 2 certification.
Does Rexing Companies comply with GDPR ?
According to Rankiteo, Rexing Companies is not listed as GDPR compliant.
Does Rexing Companies have PCI DSS certification ?
According to Rankiteo, Rexing Companies does not currently maintain PCI DSS compliance.
Does Rexing Companies comply with HIPAA ?
According to Rankiteo, Rexing Companies is not compliant with HIPAA regulations.
Does Rexing Companies have ISO 27001 certification ?
According to Rankiteo,Rexing Companies is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Rexing Companies
Rexing Companies operates primarily in the Transportation, Logistics, Supply Chain and Storage industry.
Number of Employees at Rexing Companies
Rexing Companies employs approximately 18 people worldwide.
Subsidiaries Owned by Rexing Companies
Rexing Companies presently has no subsidiaries across any sectors.
Rexing Companies’s LinkedIn Followers
Rexing Companies’s official LinkedIn profile has approximately 742 followers.
NAICS Classification of Rexing Companies
Rexing Companies is classified under the NAICS code 47, which corresponds to Transportation and Warehousing.
Rexing Companies’s Presence on Crunchbase
No, Rexing Companies does not have a profile on Crunchbase.
Rexing Companies’s Presence on LinkedIn
Yes, Rexing Companies maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/rexingcompanies.
Cybersecurity Incidents Involving Rexing Companies
As of December 31, 2025, Rankiteo reports that Rexing Companies has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Rexing Companies has an estimated 6,309 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Rexing Companies ?
Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.
What was the total financial impact of these incidents on Rexing Companies ?
Total Financial Loss: The total financial loss from these incidents is estimated to be $400 thousand.
How does Rexing Companies detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an law enforcement notified with fbi and local police, and communication strategy with public disclosure via media (insurance journal)..
Incident Details
Can you provide details on each incident ?
Title: Fictitious Pickup Cargo Theft of Lobster Meat
Description: A shipment of lobster meat worth $400,000 was stolen from a Massachusetts cold storage facility by a person posing as a truck driver for a legitimate freight carrier. The thief used fake documents and a fake commercial driver’s license to commit the theft.
Date Detected: 2023-12-12
Type: Cyber Cargo Theft (Fictitious Pickup)
Attack Vector: Fraudulent documentation and identity theft
Vulnerability Exploited: Lack of verification of driver credentials and shipping paperwork
Threat Actor: Organized retail crime group
Motivation: Financial gain
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Cyber Attack.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Fraudulent driver credentials and shipping paperwork.
Impact of the Incidents
What was the impact of each incident ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Financial Loss: $400,000
Operational Impact: Disruption in supply chain and delivery of goods
Brand Reputation Impact: Potential reputational damage to freight broker and storage facility
Legal Liabilities: Potential liability for Rexing Companies
What is the average financial loss per incident ?
Average Financial Loss: The average financial loss per incident is $400.00 thousand.
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Shipping documentation and driver credentials.
Which entities were affected by each incident ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Entity Name: Rexing Companies
Entity Type: Freight Broker
Industry: Logistics/Transportation
Location: Indiana, USA
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Entity Name: Costco
Entity Type: Retailer
Industry: Retail
Location: Midwest, USA
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Entity Name: Massachusetts Cold Storage Facility
Entity Type: Storage Facility
Industry: Logistics/Warehousing
Location: Taunton, Massachusetts, USA
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Law Enforcement Notified: FBI and local police
Communication Strategy: Public disclosure via media (Insurance Journal)
Data Breach Information
What type of data was compromised in each breach ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Type of Data Compromised: Shipping documentation and driver credentials
Sensitivity of Data: Low to medium (operational data)
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Lessons Learned: Need for stricter verification of driver credentials and shipping paperwork to prevent fictitious pickups. Cargo theft is a widespread issue requiring legislative and law enforcement attention.
What recommendations were made to prevent future incidents ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Recommendations: Implement multi-factor verification for driver credentials and shipping documents., Enhance collaboration between logistics companies, law enforcement, and regulatory bodies to combat organized cargo theft., Advocate for new legislation and additional resources to address cybercrimes and cargo theft scams.Implement multi-factor verification for driver credentials and shipping documents., Enhance collaboration between logistics companies, law enforcement, and regulatory bodies to combat organized cargo theft., Advocate for new legislation and additional resources to address cybercrimes and cargo theft scams.Implement multi-factor verification for driver credentials and shipping documents., Enhance collaboration between logistics companies, law enforcement, and regulatory bodies to combat organized cargo theft., Advocate for new legislation and additional resources to address cybercrimes and cargo theft scams.
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Need for stricter verification of driver credentials and shipping paperwork to prevent fictitious pickups. Cargo theft is a widespread issue requiring legislative and law enforcement attention.
References
Where can I find more information about each incident ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Source: Insurance Journal
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Insurance Journal.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Investigation Status: Ongoing (FBI and local police)
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Public disclosure via media (Insurance Journal).
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Stakeholder Advisories: Freight brokers, storage facilities, and retailers should review and strengthen their verification processes for cargo pickups.
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Freight brokers, storage facilities and and retailers should review and strengthen their verification processes for cargo pickups..
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Entry Point: Fraudulent driver credentials and shipping paperwork
High Value Targets: High-value perishable goods (e.g., lobster, crab meat)
Data Sold on Dark Web: High-value perishable goods (e.g., lobster, crab meat)
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Cyber Cargo Theft (Fictitious Pickup) COSREX1767166389
Root Causes: Lack of stringent verification processes for driver credentials and shipping documents. Organized crime exploiting vulnerabilities in the logistics supply chain.
Corrective Actions: Potential implementation of stricter verification protocols and enhanced monitoring of cargo pickups.
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Potential implementation of stricter verification protocols and enhanced monitoring of cargo pickups..
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Organized retail crime group.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-12-12.
Impact of the Incidents
What was the highest financial loss from an incident ?
Highest Financial Loss: The highest financial loss from an incident was $400,000.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Need for stricter verification of driver credentials and shipping paperwork to prevent fictitious pickups. Cargo theft is a widespread issue requiring legislative and law enforcement attention.
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was Implement multi-factor verification for driver credentials and shipping documents., Advocate for new legislation and additional resources to address cybercrimes and cargo theft scams., Enhance collaboration between logistics companies, law enforcement and and regulatory bodies to combat organized cargo theft..
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Insurance Journal.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing (FBI and local police).
Stakeholder and Customer Advisories
What was the most recent stakeholder advisory issued ?
Most Recent Stakeholder Advisory: The most recent stakeholder advisory issued was Freight brokers, storage facilities, and retailers should review and strengthen their verification processes for cargo pickups., .
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Fraudulent driver credentials and shipping paperwork.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in MadrasThemes MAS Videos allows PHP Local File Inclusion.This issue affects MAS Videos: from n/a through 1.3.2.
Risk Information
cvss3
Base: 7.5
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Description
Cross-Site Request Forgery (CSRF) vulnerability in Hoernerfranz WP-CalDav2ICS allows Stored XSS.This issue affects WP-CalDav2ICS: from n/a through 1.3.4.
Risk Information
cvss3
Base: 7.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Description
Ksenia Security Lares 4.0 Home Automation version 1.6 contains a critical security flaw that exposes the alarm system PIN in the 'basisInfo' XML file after authentication. Attackers can retrieve the PIN from the server response to bypass security measures and disable the alarm system without additional authentication.
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Ksenia Security Lares 4.0 Home Automation version 1.6 contains an unprotected endpoint vulnerability that allows authenticated attackers to upload MPFS File System binary images. Attackers can exploit this vulnerability to overwrite flash program memory and potentially execute arbitrary code on the home automation system's web server.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Ksenia Security Lares 4.0 version 1.6 contains a URL redirection vulnerability in the 'cmdOk.xml' script that allows attackers to manipulate the 'redirectPage' GET parameter. Attackers can craft malicious links that redirect authenticated users to arbitrary websites when clicking on a specially constructed link hosted on a trusted domain.
Risk Information
cvss3
Base: 8.0
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=rexingcompanies' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
