SCG
Company Details
Linkedin ID:
sebastian-county-government
Employees number:
111
Number of followers:
164
NAICS:
5415
Industry Type:
Homepage:
sebastiancountyonline.com
IP Addresses:
0
Company ID:
SEB_2905812
Scan Status:
In-progress
Sebastian County Government Company CyberSecurity Posture
sebastiancountyonline.com
List of county services/departments
Sebastian County Government A.I CyberSecurity Scoring
SCG Risk Score (AI oriented)Between 700 and 749
SCG
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
SCG Global Score (TPRM)XXXX
SCG
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
SCG Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Sebastian County Government
Data Leak
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: Sebastian County suffered an email security data breach in March 2017. Approximately 200 employees' banking account information and routing codes were linked in an email sent by a payroll administrator to a group of county workers. They took preventive steps to stop this type of incident in the future.
SCG Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for SCG
Incidents vs IT Services and IT Consulting Industry Average (This Year)
No incidents recorded for Sebastian County Government in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Sebastian County Government in 2025.
Incident Types SCG vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for Sebastian County Government in 2025.
Incident History — SCG (X = Date, Y = Severity)
SCG cyber incidents detection timeline including parent company and subsidiaries
SCG Company Subsidiaries
List of county services/departments
Loading...
SCG Similar Companies
Infinite Computer Solutions
Infinite is a global leader in technology modernization, next-gen IT services and solutions, and digital engineering, with over two decades of experience helping clients turn digital transformation into business value. Leveraging an AI-first approach, we combine leading technologies, innovative plat
Capgemini
Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 5
Akkodis
Akkodis is a global digital engineering company and Smart Industry leader. We enable clients to advance in their digital transformation with Talent, Academy, Consulting, and Solutions services. Our 50,000 experts combine best-in-class technologies, R&D, and deep sector know-how for purposeful innova
Softtek
Founded in 1982 by a small group of entrepreneurs, Softtek started out in Mexico providing local IT services, and today is a global leader in next-generation digital solutions. The first company to introduce the Nearshore model, Softtek helps Global 2000 organizations build their digital capabilitie
Tietoevry
In a rapidly changing world, technology is everything. It's in the fabric of society. In every part of every business. At the very heart of human evolution. It’s a great power that comes with great responsibility. At Tietoevry, we believe it’s time to shift perspective. It’s not about what technolo
Conduent delivers digital business solutions and services spanning the commercial, government and transportation spectrum – creating valuable outcomes for its clients and the millions of people who count on them. We leverage cloud computing, artificial intelligence, machine learning, automation and
VOIS
VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation. As the largest shared services organisation in the global telco industry, our portfolio of next-generation s
Infosys BPM
Infosys BPM Ltd., the business process management subsidiary of Infosys Ltd. (NYSE: INFY), was set up in April 2002. Infosys BPM focuses on integrated end-to-end outsourcing and delivers transformational benefits to its clients through reduced costs, ongoing productivity improvements, and process re
Virtusa
Virtusa is a global product and platform engineering services company that makes experiences better with technology. We help organizations grow faster, more profitably, and more sustainably by reimagining enterprises through domain-driven solutions. We combine strategy, design, and engineering, back
.png)
SCG CyberSecurity News
September 18, 2025 07:00 AM
From chancellor to tech entrepreneur: Sebastian Kurz’s billion-dollar pivot with Israeli co-founder
Austria's youngest ever leader Kurz tells Candice Krieger about his role in Israeli unicorn Dream Security, which protects governments from...
April 18, 2025 07:00 AM
We’ve got a click: A rugged Israeli entrepreneur and a former Austrian chancellor are aiming for a Wizz-style exit
Cybersecurity firm Dream, a partnership between former NSO Group CEO Shalev Hulio and former Austrian leader Sebastian Kurz, becomes a unicorn and is hoping to...
April 08, 2025 07:00 AM
The talented Mr. Kurz: How Austria’s ex-leader made it big in Israel’s cyber industry
The Israeli entrepreneur Shalev Hulio gained notoriety for designing Pegasus, the now-infamous spyware that has been used by governments to hack journalists...
February 27, 2025 06:19 PM
Protecting Electoral Integrity: The Case of Sweden
This case study examines Sweden's efforts to strengthen election protection over the last eight years, focusing on Sweden's collaborative approach to...
February 25, 2025 08:00 AM
Dream: The first Israeli AI cyber unicorn for 2025
Dream, the world's first AI company for government and national infrastructure cybersecurity, raises $100 million at a valuation of $1.1 billion, led by Bain...
February 22, 2025 08:00 AM
Dream: $100 Million (Series B) Raised At $1.1 Billion Valuation For Cyber Resilience
Dream, an AI-based company providing cyber resilience for nations and critical infrastructure, announced a $100 million Series B led by Bain Capital Ventures.
February 19, 2025 08:00 AM
Bain Capital Backs Israeli AI Cybersecurity Startup Dream at $1.1 Billion Valuation
Dream, an artificial intelligence company that provides cybersecurity services to governments and critical infrastructure operators such as hospitals and...
February 18, 2025 08:00 AM
Dream secures $100 million to revolutionize national cybersecurity with AI-powered resilience solutions
Dream, an AI company providing cyber resilience for nations and critical infrastructure, today announced a $100 million Series B led by Bain Capital Ventures.
February 17, 2025 08:00 AM
Dream Raises $100 Million for AI-Powered Cybersecurity for Critical Infrastructure
Dream, a company focused on artificial intelligence (AI)-powered cybersecurity for nations and critical infrastructure, raised $100 million in a Series B...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
SCG CyberSecurity History Information
Official Website of Sebastian County Government
The official website of Sebastian County Government is http://www.sebastiancountyonline.com.
Sebastian County Government’s AI-Generated Cybersecurity Score
According to Rankiteo, Sebastian County Government’s AI-generated cybersecurity score is 746, reflecting their Moderate security posture.
How many security badges does Sebastian County Government’ have ?
According to Rankiteo, Sebastian County Government currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Sebastian County Government have SOC 2 Type 1 certification ?
According to Rankiteo, Sebastian County Government is not certified under SOC 2 Type 1.
Does Sebastian County Government have SOC 2 Type 2 certification ?
According to Rankiteo, Sebastian County Government does not hold a SOC 2 Type 2 certification.
Does Sebastian County Government comply with GDPR ?
According to Rankiteo, Sebastian County Government is not listed as GDPR compliant.
Does Sebastian County Government have PCI DSS certification ?
According to Rankiteo, Sebastian County Government does not currently maintain PCI DSS compliance.
Does Sebastian County Government comply with HIPAA ?
According to Rankiteo, Sebastian County Government is not compliant with HIPAA regulations.
Does Sebastian County Government have ISO 27001 certification ?
According to Rankiteo,Sebastian County Government is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Sebastian County Government
Sebastian County Government operates primarily in the IT Services and IT Consulting industry.
Number of Employees at Sebastian County Government
Sebastian County Government employs approximately 111 people worldwide.
Subsidiaries Owned by Sebastian County Government
Sebastian County Government presently has no subsidiaries across any sectors.
Sebastian County Government’s LinkedIn Followers
Sebastian County Government’s official LinkedIn profile has approximately 164 followers.
NAICS Classification of Sebastian County Government
Sebastian County Government is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.
Sebastian County Government’s Presence on Crunchbase
No, Sebastian County Government does not have a profile on Crunchbase.
Sebastian County Government’s Presence on LinkedIn
Yes, Sebastian County Government maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sebastian-county-government.
Cybersecurity Incidents Involving Sebastian County Government
As of December 10, 2025, Rankiteo reports that Sebastian County Government has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Sebastian County Government has an estimated 37,462 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Sebastian County Government ?
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.
How does Sebastian County Government detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an remediation measures with preventive steps to stop this type of incident in the future..
Incident Details
Can you provide details on each incident ?
Title: Sebastian County Email Security Data Breach
Description: Sebastian County suffered an email security data breach in March 2017. Approximately 200 employees' banking account information and routing codes were linked in an email sent by a payroll administrator to a group of county workers. They took preventive steps to stop this type of incident in the future.
Date Detected: March 2017
Type: Data Breach
Attack Vector: Email
Vulnerability Exploited: Human Error
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach SEB22523822
Data Compromised: Banking account information, Routing codes
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Banking Account Information, Routing Codes and .
Which entities were affected by each incident ?
Incident : Data Breach SEB22523822
Entity Name: Sebastian County
Entity Type: Government
Industry: Public Administration
Location: Sebastian County, Arkansas, USA
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach SEB22523822
Remediation Measures: Preventive steps to stop this type of incident in the future
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach SEB22523822
Type of Data Compromised: Banking account information, Routing codes
Number of Records Exposed: 200
Sensitivity of Data: High
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Preventive steps to stop this type of incident in the future, .
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach SEB22523822
Root Causes: Human Error,
Corrective Actions: Preventive Steps To Stop This Type Of Incident In The Future,
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Preventive Steps To Stop This Type Of Incident In The Future, .
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on March 2017.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Banking account information, Routing codes and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Routing codes and Banking account information.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 200.0.
.png)
Latest Global CVEs (Not Company-Specific)
Description
WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. Versions 3.5.4 and below contain a Stored Cross-Site Scripting (XSS) vulnerability in the /WeGIA/html/geral/configurar_senhas.php endpoint. The application does not sanitize user-controlled data before rendering it inside the employee selection dropdown. The application retrieves employee names from the database and injects them directly into HTML <option> elements without proper escaping. This issue is fixed in version 3.5.5.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.0.0-rc.1 through 4.7.0 are vulnerable to DOM-Based XSS through the Zitadel V2 logout endpoint. The /logout endpoint insecurely routes to a value that is supplied in the post_logout_redirect GET parameter. As a result, unauthenticated remote attacker can execute malicious JS code on Zitadel users’ browsers. To carry out an attack, multiple user sessions need to be active in the same browser, however, account takeover is mitigated when using Multi-Factor Authentication (MFA) or Passwordless authentication. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N
Description
ZITADEL is an open-source identity infrastructure tool. Versions 4.7.0 and below are vulnerable to an unauthenticated, full-read SSRF vulnerability. The ZITADEL Login UI (V2) treats the x-zitadel-forward-host header as a trusted fallback for all deployments, including self-hosted instances. This allows an unauthenticated attacker to force the server to make HTTP requests to arbitrary domains, such as internal addresses, and read the responses, enabling data exfiltration and bypassing network-segmentation controls. This issue is fixed in version 4.7.1.
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Description
NiceGUI is a Python-based UI framework. Versions 3.3.1 and below are vulnerable to directory traversal through the App.add_media_files() function, which allows a remote attacker to read arbitrary files on the server filesystem. This issue is fixed in version 3.4.0.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions are vulnerable to authentication bypass when the authentication type is set to "webserver." When providing an Authorization header with an arbitrary value, a session is associated with the target user regardless of valid credentials. This issue is fixed in versions 16.0.44 and 17.0.23.
Risk Information
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/FreePBX/framework/commit/04224253156543cd9932b90458660b2f19fc0e35#diff-72f14a52840a61504a8e03cd195035b44e488aecd634b001bc6412a04bdc940bR20-R50
- https://github.com/FreePBX/security-reporting/security/advisories/GHSA-9jvh-mv6x-w698
- https://www.freepbx.org/watch-what-we-do-with-security-fixes-%f0%9f%91%80
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=sebastian-county-government' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
