SFCU A.I CyberSecurity Scoring
04/04/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for SF Fire Credit Union in 2026.
No incidents recorded for SF Fire Credit Union in 2026.
No incidents recorded for SF Fire Credit Union in 2026.
Financial Services
Absa Group Limited (Absa) has forged a new way of getting things done, driven by bravery and passion, with the readiness to realise growth on the African continent and beyond. We’re a truly African brand, inspired by the people we serve in Botswana, Ghana, Kenya, Mauritius, Mozambique, Seychelles, South Africa, Tanzania, Uganda, and Zambia. We also have representative offices in China, Namibia, Nigeria and the United States, as well as securities entities in the United Kingdom and the United States, along with technology support colleagues in the Czech Republic.
Prudential Financial (NYSE:PRU) was founded on the belief that financial security should be within reach for everyone, and for over 140 years, we have helped our customers reach their potential and tackle life's challenges for now and future generations to come. Today, we are one of the world’s largest financial services institutions, offering individual and institutional clients a wide array of financial products and services. With operations in the United States, Asia, Europe and Latin America, we are known for delivering on our promises to our customers, and are recognized as a trusted brand and one of the world’s most admired companies. We also have one of the most recognized and trusted brand symbols: The Rock®, an icon of strength, stability, expertise and innovation. We measure our long-term success on our ability to deliver value for shareholders, meet customer needs, and attract and develop the best talent in our industry. We offer an inclusive work environment where employees can develop to their full potential, and give back to the communities where we live and work. (Pru.us/disclaimer)
Since the beginning, our mission has been to provide a range of financial services to the military community and their families. Along the way, we’ve also established ourselves as a destination employer for passionate people looking to serve those who are willing to give it their all. Our mission is to stand with our members and be there for them and their families by facilitating their financial security. It starts with offering a range of highly competitive products, exceptional service, and trusted advice. But to be the military community’s provider of choice also takes dedicated team members who share our core values of service, loyalty, honesty, and integrity.
Marsh (NYSE: MRSH) is a global leader in risk, strategy and people, advising clients in 130 countries across four businesses: Marsh Risk, Guy Carpenter, Mercer and Oliver Wyman. With annual revenue over $24 billion and more than 90,000 colleagues, Marsh helps build the confidence to thrive through the power of perspective
From the largest cities to the smallest villages, India is filled with ambition and enterprise. As Indians from all walks of life set out to write their growth story, our timely and affordable credit empowers them to bring their dreams alive. As part of the TVS Group, we empower Indians from various socio-economic backgrounds with financial products that serve their needs. In doing so, we further the cause of financial inclusion. Being the number one financier for TVS Motor Company Limited and one of the leading Two-Wheeler, Consumer Durable and Mobile Phone financiers, we have a fast-growing footprint in Used Car Loans, Tractor Loans, Used Commercial Vehicle Loans, and Unsecured Loans. Our entrepreneurial culture, which inspires us to deliver our best, has given rise to initiatives as AIM, a framework to implement innovative ideas, and GURU, a mentorship programme to help new employees deliver excellence from the get-go. With nearly 2.3 Cr customers and a long-term CRISIL rating of AA+ (Stable), our growth is built on firm fundamentals. We have received several awards, including being ranked #78 among India’s Top 100 Best Companies to Work For in 2025 by Great Place To Work®, winning the ET Best BFSI Brand title for eight years in a row, featuring in Dun & Bradstreet’s BFSI and FinTech listings for five years, and earning RMAI's Flame and PRCI Awards for our marketing campaigns.
Since 1820, Swedbank has been the bank for the many households and businesses. We are a modern financial services platform focused on customer satisfaction. Our goal is to encourage people to save for a better future, and we aim to help people, businesses and society to grow by promoting a healthy and sustainable economy. As an equal opportunity employer, we believe that diversity and equality help us to grow and achieve our goals. We encourage a culture built on trust, respect and our values - open, simple and caring. With 7.4 million private customers and more than 600,000 corporate and organisational customers, we have a leading position in our home markets of Sweden, Estonia, Latvia and Lithuania. This position also enables us to offer our employees great opportunities to grow and develop. Working here is about creating value for our customers, our colleagues and society. Inspiring and learning from one another is what moves us forward, and by working together, we make a difference. Find our policy for social media here: www.swedbank.se/om-oss/policy-fb
IIFL group is one of India's largest diversified financial services conglomerates with three listed entities - IIFL Finance, IIFL Securities and 360 ONE Wealth & Asset Management. Founded in 1995 by Nirmal Jain as a small research house, today IIFL Group employs over 40000 people and caters to over 10 million customers through various financial products and services. Our strength has been to continuously innovate and reinvent ourselves. IIFL’s evolution from an entrepreneurial start-up in 1995 to a full range diversified financial services group is a story of steady growth by adapting to the dynamic business environment, without losing focus on our core domain of financial services. Today IIFL Group manages assets over $50 billion and is present across Asia, Europe and the US. IIFL Group's companies are backed by marquee investors like Fairfax, Bain Capital, The Capital Group and WardFerry among others.
Tata Capital Limited is a subsidiary of Tata Sons Limited. The Company is registered with the Reserve Bank of India as a Core Investment Company and offers through itself and its subsidiaries fund and fee-based financial services to its customers, under the Tata Capital brand. As a trusted and customer-centric, one-stop financial services provider, Tata Capital caters to the diverse needs of retail, corporate and institutional customers, across various areas of business namely the Commercial Finance, Infrastructure Finance, Cleantech Finance, Wealth Management, Consumer Loans and distribution and marketing of Tata Cards. Tata Capital has over 500+ branches spanning all critical markets in India.
Dubai Holding is a diversified global investment company that continues to power Dubai’s growth across 10 key sectors, including real estate, hospitality, leisure & entertainment, media, ICT, design, education, retail, manufacturing & logistics and science. Since 2004, we have made strides with an effective strategy aimed at supporting an innovation-driven, knowledge-based economy. This is in line with Dubai’s long-term ambition of becoming a leading global hub for business and tourism. Follow our journey as we invest in making a lasting impact on Dubai, its people and our economy #ForTheGoodofTomorrow .
Latest updates, reports, and threat intel affecting the global network.
San Francisco firefighters will light up their stations and compete for charity in a contest with roots in the 1940s that sometimes brings...
Brandon Michaels, CEO of $664 million Mazuma Credit Union, Overland Park, Kan., this week said he will resign his post effective Aug. 23 to take the role of...
HedgeDoc is an open source, real-time collaborative markdown notes application. Prior to 1.11.0, the GitHub Gist export flow created an OAuth2 state value but only checked that it was present rather than validating it against the value expected for the user's session. Because the state was not properly validated, an attacker could forge a callback URL containing their own valid GitHub OAuth code. When processing the callback, HedgeDoc used the victim's logged-in session to select which note to export, but the attacker's authorization code to determine which GitHub account received it. As a result, a logged-in victim who clicked a crafted link could export their own private, protected, or limited note directly into a Gist controlled by the attacker. This issue has been fixed in version 1.11.0.
HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, HedgeDoc was vulnerable to a YAML alias bomb due to unsafe processing of the note frontmatter. HedgeDoc parsed frontmatter with js-yaml.load (js-yaml v3) via @hedgedoc/meta-marked, which resolved YAML anchor aliases. A compact malicious payload could therefore expand into a huge object structure, consuming excessive CPU. This expansion ran on every request to the publish view (/s/<shortid>) and, when placed under the opengraph key, the editor view (/<noteId>). A ten-level alias bomb could block the single Node.js event loop for roughly 235 seconds per request, causing concurrent requests to hang or drop and rendering the instance unavailable (DoS). Because the note was stored in the database, the impact survived process restarts until the note was removed. toobusy-js did not reliably mitigate the worst cases, as the event loop was saturated before the middleware could respond. This issue was fixed in version 1.11.0.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow a heap out-of-bounds read via a long certificate extension OID in hv_exts. When building the extension hash (via extensions(), extensions_by_long_name(), extensions_by_oid(), or has_extension_oid()), the code passes OBJ_obj2txt()'s return value as the hash-key length; because that value is the OID's full text length rather than the bytes written to the fixed-size buffer (129 bytes), an OID whose text is longer than the 129-byte buffer causes a read past the allocation, exposing adjacent heap memory as the returned hash key. extensions_by_name() uses the static shortname path and is not affected.
Crypt::OpenSSL::X509 versions before 2.1.3 for Perl allow denial of service via NULL pointer dereference. X509V3_EXT_d2i(ext) returns NULL when an extension's DER value fails to parse. basicC, ia5string, and auth_att dereference its result without a NULL check. keyid_data also dereferences akid->keyid, which is NULL for an empty AKI SEQUENCE (DER 30 00) even when the parse succeeds. A caller invoking an affected helper on an extension from an untrusted certificate triggers a SIGSEGV that crashes the Perl process.
Cockpit CMS contains a path traversal vulnerability in the Bucket file storage API (/system/buckets/api). The api() method in modules/System/Controller/Buckets.php sanitizes the bucket name with preg_replace('/[^a-zA-Z0-9-_\\.]/','', $bucket), which permits '..' and '../' sequences. The sanitized value is interpolated into a Flysystem path as uploads://buckets/{bucket}. Flysystem's WhitespacePathNormalizer resolves 'buckets/..' to the empty string (the uploads storage root) without raising PathTraversalDetected because the '..' has a preceding component to consume. An authenticated low-privileged user can send a crafted request with a '../' bucket name to list, upload, and delete files across all buckets, including those belonging to other users or roles
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.