SCU A.I CyberSecurity Scoring
31/03/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for SAFE Credit Union in 2026.
No incidents recorded for SAFE Credit Union in 2026.
No incidents recorded for SAFE Credit Union in 2026.
Financial Services
LPL Financial Holdings Inc. (Nasdaq: LPLA) is among the fastest growing wealth management firms in the U.S. As a leader in the financial advisor-mediated marketplace, LPL supports over 29,000 financial advisors and the wealth management practices of approximately 1,100 financial institutions, servicing and custodying approximately $1.9 trillion in brokerage and advisory assets on behalf of approximately 7 million Americans. The firm provides a wide range of advisor affiliation models, investment solutions, fintech tools and practice management services, ensuring that advisors and institutions have the flexibility to choose the business model, services, and technology resources they need to run thriving businesses.
ICE (NYSE: ICE) connects people to data, technology and expertise that create opportunity and inspire innovation. For terms of use, visit www.ice.com/privacy-security-center/terms-of-use
FactSet creates flexible, open data and software solutions for tens of thousands of investment professionals around the world, providing instant access to financial data and analytics that investors use to make crucial decisions. For 40 years, through market changes and technological progress, our focus has always been to provide exceptional client service. From more than 60 offices in 23 countries, we’re all working together toward the goal of creating value for our clients, and we’re proud that 95% of asset managers who use FactSet continue to use FactSet, year after year. As big as we grow, as far as we reach, and as successful as we become, we stay connected to our clients and to each other.
As a global leader in innovative wealth management, asset servicing and investment solutions, Northern Trust (Nasdaq: NTRS) is proud to guide the world’s most successful individuals, families and institutions by remaining true to our enduring principles of service, expertise and integrity. A globally recognized Fortune 500 Company in continuous operation since 1889, we’ve built a legacy of empowering clients to reach their goals with confidence. Since our roots as a trust bank, we’ve grown to a global presence with more than 24,000 employees in more than 20 countries and across five core business units: Wealth Management Asset Management Asset Servicing Technology Corporate Functions Join a Team That’s Made for Greater At Northern Trust, we refer to our employees as partners – with good reason. We understand that relationships are the key to our success. Here you’ll join a diverse and inclusive team of innovators with the drive to challenge the way things have always been done. Instead of choosing between a dynamic career and work-life balance, enjoy working with a team that supports your goals in the office and at home. We’ll help you get where you want to go without sacrificing what matters most to you. As of December 31, 2025, Northern Trust Corporation had: $18.7 trillion assets under custody/administration $14.9 trillion in assets under custody $1.8 trillion in assets under management $177 billion in banking assets
From rescue helicopters to signing the Equator Principles, from paying super during parental leave to adding 'Touch ID' biometric technology to our banking apps and being first on the scene with a helping hand in times of crisis... we have a proud history of stepping up to be first for our customers, communities and people. As Australia’s first bank and Australia’s first company we put service at the heart of everything we do and our people are our priority. We've grown up as a company and expanded both in Australia and throughout Asia, the United Kingdom and the United States. Now we are made up of your favourite financial institution names including Westpac, BankSA, St.George Bank, BT Financial Group, RAMs and Bank of Melbourne, a change of job doesn’t mean a change of employer at Westpac Group. We've made a commitment to put our customers first in everything we do. This means creating fundamentally superior customer experiences for each customer, every time. We promise that when you meet with someone from Westpac Group, you'll be touched by their genuine dedication to helping our customers prosper and grow. Westpac Group acknowledges the traditional owners as the custodians of this land, recognising their connection to land, waters and community. We pay our respects to Australia's First Peoples, and to their Elders, past and present.
Broadridge Financial Solutions (NYSE: BR) is a global technology leader with the trusted expertise and transformative technology to help clients and the financial services industry operate, innovate, and grow. We power investing, governance, and communications for our clients – driving operational resiliency, elevating business performance, and transforming investor experiences. Our technology and operations platforms process and generate over 7 billion communications per year and underpin the daily trading of more than $10 trillion of securities globally. A certified Great Place to Work®, Broadridge is part of the S&P 500® Index, employing over 14,000 associates in 21 countries. For more information, please visit www.broadridge.com.
IFC, a member of the World Bank Group, is the largest global development institution focused exclusively on the private sector in developing countries. We utilize and leverage our products and services—as well as products and services of other institutions in the World Bank Group—to provide development solutions customized to meet clients’ needs. We apply our financial resources, technical expertise, global experience, and innovative thinking to help our partners overcome financial, operational, and political challenges. Clients view IFC as a provider and mobilizer of scarce capital, knowledge, and long-term partnerships that can help address critical constraints in areas such as finance, infrastructure, employee skills, and the regulatory environment. IFC is also a leading mobilizer of third-party resources for its projects. Our willingness to engage in difficult environments and our leadership in crowding-in private finance enable us to extend our footprint and have a development impact well beyond our direct resources. For more information, visit www.ifc.org. https://youtube.com/shorts/UWDx7dWuPgg?feature=share
Many know us as the most trusted way to send money to friends and family overseas and across borders, but we're much more than that. Our talented teams around the world are building new ways to send, save and spend money. Wherever you are in the world, in whatever currency you choose, we're evolving our services to meet the demands of tomorrow. We're here for what's next. When our teams make more financial services accessible to people everywhere, we help more people prosper, transforming lives and communities.
Great companies have an enduring sense of purpose. At M&T, our purpose is a simple one: make a difference in people’s lives and uplift the communities we serve. Founded in 1856 in Buffalo, NY we are now a top 11 full-service US-based commercial bank with a retail footprint across the east coast and wealth services available nationwide and abroad. As a bank, we offer advice, guidance, expertise, and solutions across the entire financial spectrum that combines M&T’s traditional banking services with the wealth management and institutional capabilities offered by Wilmington Trust. We are a community-minded organization with more than 167 years of experience. We serve customers, community, and colleagues whether they be across the street, across the state or across the country. As an employer of choice, we are proud to offer competitive benefits ranging from medical and retirement to forty hours of paid volunteer time, each year. Our core values drive the work we do – integrity, ownership, collaboration, curiosity, candor and we seek to further build upon our record of success by bringing in top talent and fresh skill sets while continuing to support the growth and development of all our team members. M&T Bank is unwavering when it comes to providing equal employment opportunities to all employees and applicants without regard to race, color, national origin, religion, ethnicity, sex, gender identity, age, disability, citizenship, pregnancy, veteran status, military status, marital status, sexual orientation, genetic information or any other characteristic protected under applicable federal, state or local laws.
Latest updates, reports, and threat intel affecting the global network.
In today's digital age, credit union cyber attacks are an increasingly serious threat. Understanding the current landscape, potential risks,...
Inishowen Credit Union (ICU) is one of Ireland's leading credit unions, serving over 30,000 members with assets just under €120 million.
If you're considering Aura's identity theft protection service, our guide explains all you need to know to see if Aura is right for you.
FiCare Federal Credit Union said hackers breached an online banking platform that Fiserv provides and stole members' money. The credit union...
Tap-to-pay credit cards and digital wallets have made everyday purchases faster and more convenient, but cybersecurity experts warn that...
Members of Blaze Credit Union, the fourth largest in Minnesota, are learning computer hackers stole highly sensitive personal information...
MESSAGE FROM THE CHAIRMAN On behalf of the National Credit Union Administration (NCUA), I am submitting our annual, statutorily required...
To help credit unions of all sizes, we developed a number of resource centers that provide critical regulatory and supervisory information...
Credit unions often think they're planning ahead when they build a strategic plan for the next calendar year. But look closely at what's...
PlaywrightCapture stored capture-specific configuration and runtime data as mutable class-level variables rather than instance-level variables. Consequently, multiple Capture objects running within the same Python process could share state, including HTTP headers, cookies, browser storage, HTTP credentials, proxy configuration, user-agent settings, geolocation information, and captured request data. In a multi-user or concurrent deployment, information supplied during one capture could therefore persist and be reused by a subsequent or parallel capture. This could result in the disclosure of authentication cookies, credentials, browser storage, or captured request data belonging to another user. It could also cause requests to be performed with another capture's authentication context, headers, or proxy configuration, potentially enabling unauthorized access to remote resources or interference with other capture operations. The vulnerability is resolved by initializing all capture-specific settings and request data as instance variables in the Capture constructor, ensuring that state is isolated between capture operations.
Anubis is a Web AI Firewall Utility that challenges users' connections in order to protect upstream resources from scraper bots. From 1.22.0 until 1.26.0-pre1, lib/policy/checker.go PathChecker.Check() trusted the client-controlled X-Original-URI header before matching r.URL.Path, allowing an HTTP client to match default data/common/keep-internet-working.yaml ALLOW rules such as ^/\.well-known/.*$ and bypass the Anubis challenge. This issue is fixed in version 1.26.0-pre1.
Wekan is open source kanban built with Meteor. Prior to 9.46, header-login with HEADER_LOGIN_TRUSTED_IPS uses getRequestIp() in server/lib/headerLoginAuth.js to trust the client-supplied X-Forwarded-For header before the real socket address, allowing an unauthenticated attacker to send HEADER_LOGIN_ID for any username and receive a meteor_login_token session, including for admin. This issue is fixed in version 9.46.
MaaAssistantArknights is a one-click tool for daily Arknights tasks. In the current dev-v2 workflow, .github/workflows/release-preparation.yml inlined attacker-controlled github.event.pull_request.title into a run: shell command during the pull_request opened, reopened, and ready_for_review events, so a non-draft fork PR whose title starts with Release v could execute shell commands on the ubuntu-latest runner during the generate-changelog job. This vulnerability is fixed by commit cafc3946059e6337d2089d4fec8b6885ba17c332.
Qinglong is a timed task management platform supporting Python3, JavaScript, Shell, and Typescript. Prior to 2.20.1, the init guard middleware in back/loaders/express.ts checks /api/user/init but not /open/user/init, while rewrite('/open/*', '/api/$1') rewrites the whitelisted /open/* path after JWT authentication and the guard have passed; an unauthenticated attacker can send PUT /open/user/init to reset administrator credentials on an initialized instance. This issue is fixed in 2.20.1.
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.