SIF A.I CyberSecurity Scoring
08/03/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for SGS INSTITUT FRESENIUS in 2026.
No incidents recorded for SGS INSTITUT FRESENIUS in 2026.
No incidents recorded for SGS INSTITUT FRESENIUS in 2026.
¿Sabés lo importante que es para nosotros que formes parte de COTO? Te proponemos superarte con proyectos arquitectónicos increíbles como, por ejemplo, la construcción de un mega centro comercial, o profesionalizarte en Comercio Exterior interactuando con los mercados del mundo más importantes. También podés ser parte de nuestra área Comercial y estar en contacto con los principales proveedores nacionales e internacionales o bien unirte a Recursos Humanos que trabaja con pasión y compromiso en la mejora continua de nuestra propuesta de valor para más de 23.000 colaboradores. Y si te gusta innovar en tecnología, nuestro equipo IT te desafía a desarrollar grandes productos que marcan la diferencia en la experiencia de nuestros clientes, tanto internos como externos. ¿Querés aportar tus conocimientos en la producción ganadera o frigorífica? ¿O tal vez ser uno de nuestros ingenieros en procesos industriales propios? COTO es mucho más que un supermercado y vos podés hacer mucho más de lo que imaginás. Comenzamos como un sueño familiar hace más de 50 años, sin saber que llegaríamos tan lejos. Hoy, somos una Compañía de Producción y Comercialización Nacional e Internacional integrada por Centros Comerciales y Shoppings propios, Producción y Comercialización Industrial, Desarrollos Tecnológicos y proyectos de Real Estate en Argentina y el mundo. Te invitamos a ser parte de nuestro equipo, para que sigas soñando y creciendo cada vez más, como lo hacemos nosotros. ¡Sumate!
A global leader in testing, ALS provides comprehensive testing solutions to clients in a wide range of industries around the world. Using state-of-the-art technologies and innovative methodologies, our dedicated international teams deliver highest-quality testing services and personalized solutions supported by local expertise. We help our clients leverage the power of data-driven insights for a safer and healthier world.
The World Bank is a vital source of financial and technical assistance to developing countries around the world. Our vision is to create a world free of poverty on a livable planet. We are not a bank in the common sense; we are made up of two unique development institutions owned by 189 member countries: the International Bank for Reconstruction and Development (IBRD) and the International Development Association (IDA). Each institution plays a different but collaborative role in advancing the vision of inclusive and sustainable globalization. The IBRD aims to reduce poverty in middle-income and creditworthy poorer countries, while IDA focuses on the world's poorest countries. Their work is complemented by that of the International Finance Corporation (IFC), Multilateral Investment Guarantee Agency (MIGA) and the International Centre for the Settlement of Investment Disputes (ICSID). Together, we provide low-interest loans, interest-free credits and grants to developing countries for a wide array of purposes that include investments in education, health, public administration, infrastructure, financial and private sector development, agriculture and environmental and natural resource management.
Swire is a highly diversified global business group which has been in operation for over 200 years. It employs over 121,000 people across the world. Swire Group’s businesses span Property, Beverages & Food Chain, Aviation, Marine Services, Trading & Industrial, as well as Healthcare. Whilst Swire operates globally, its main sphere of operations is in Asia and to a lesser, but nevertheless significant, extent in North America and Europe. Swire’s wholly owned shipping businesses trade worldwide, but the major sphere of their activity is in the Pacific and Australasia.
Intertek is a leading Total Quality Assurance provider to industries worldwide. Our network of more than 1,000 laboratories and offices in more than 100 countries, delivers innovative and bespoke Assurance, Testing, Inspection and Certification solutions for our customers' operations and supply chains. Intertek is a purpose-led company to Bring Quality, Safety and Sustainability to Life. We provide 24/7 mission-critical quality assurance solutions to our clients to ensure that they can operate with well-functioning supply chains in each of their operations. Our Customer Promise is: Intertek Total Quality Assurance expertise, delivered consistently, with precision, pace and passion, enabling our customers to power ahead safely. Find all of our Intertek locations at: https://www.intertek.com/contact/
Marubeni Corporation (TSE securities code: 8002) is one of Japan’s largest trading companies (sogo shosha) with more than 165 years of history. Headquartered in Tokyo, Marubeni continues to expand its businesses across the globe, with 130 branches and offices worldwide. Marubeni is involved in the handling of products and provision of services in a broad range of sectors, with our 50,000+ employees across our Group companies engaging in business as corporate staff or through one of our many Business Divisions: Lifestyle, Food & Agri Business, Metals & Mineral Resources, Energy & Chemicals, Power & Infrastructure Services, Finance, Leasing & Real Estate Business, Aerospace & Mobility, Next Generation Business Development, and Next Generation Corporate Development. In these areas, Marubeni’s business encompasses importing and exporting, as well as transactions in the Japanese market, as well as investment, development, and management on a global level. For more information on our business in these areas, please visit https://www.marubeni.com/en/business/ Marubeni’s vision for the future is exemplified by the Marubeni’s “Global crossvalue platform,” wherein Marubeni will anticipate challenges and deliver innovative solutions by breaking down barriers as well as generate new value combining strengths across the Marubeni Group. For more details on the Global crossvalue platform, please see https://www.marubeni.com/en/company/gcp/ For more information on Marubeni in general or on our various businesses, please visit our website.
As a service provider in the field of international cooperation for sustainable development and international education work, we are dedicated to shaping a future worth living around the world. GIZ has over 50 years of experience in a wide variety of areas, including economic development and employment promotion, energy and the environment, and peace and security. The diverse expertise of our federal enterprise is in demand around the globe – from the German Government, European Union institutions, the United Nations, the private sector and governments of other countries. We work with businesses, civil society actors and research institutions, fostering successful interaction between development policy and other policy fields and areas of activity. Our main commissioning party is the German Federal Ministry for Economic Cooperation and Development (BMZ). The commissioning parties and cooperation partners all place their trust in GIZ, and we work with them to generate ideas for political, social and economic change, to develop these into concrete plans and to implement them. Since we are a public-benefit federal enterprise, German and European values are central to our work. Together with our partners in national governments worldwide and cooperation partners from the worlds of business, research and civil society, we work flexibly to deliver effective solutions that offer people better prospects and sustainably improve their living conditions. The registered offices of GIZ are in Bonn and Eschborn (Germany). Our video: DE: https://youtu.be/KCb9XVCZzWQ?si=Cwm0ArGKq6VQD83q EN: https://youtu.be/XIMLHv17Pns?si=UrRGg8WANlZ-j8og Registration information: https://www.giz.de/en/html/registration_information.html Our netiquette: https://www.giz.de/en/mediacenter/93951.html Data privacy statement: https://www.giz.de/en/html/data_protection.html
Latest updates, reports, and threat intel affecting the global network.
FOSSBilling is a free, open-source billing and client management system. In versions 0.5.6 through 0.7.2, when a `ClientPasswordReset` record already exists for a client (from a previous unexpired reset request), subsequent calls to the `reset_password` guest API endpoint reuse the existing token instead of generating a new one. The 15-minute validity window is anchored to the first request's `created_at` timestamp, not the time of the most recent email. An attacker who obtained the original reset link remains able to use it even after the victim requests a new reset, because the original token is never invalidated or rotated. Version 0.8.0 patches the issue. Some workarounds are available. Configure a reverse proxy (e.g., Nginx, Apache, Cloudflare) to apply per-IP rate limiting to the `/client/reset-password` endpoint to minimize the window of opportunity, and/or manually clear expired `client_password_reset` records from the database after a client reports a suspected compromise.
FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 allow a low-privileged staff account to grant arbitrary module permissions to itself through the admin API, resulting in persistent privilege escalation. A staff user that only has `staff.create_and_edit_staff` can call `/api/admin/staff/permissions_update` targeting their own account and write any permission structure, bypassing the intended role-based access control boundary. Version 0.8.0 patches the issue. Some workarounds are available. Restrict the `staff.create_and_edit_staff` permission to only highly trusted staff members and/or use a reverse proxy or WAF to restrict access to `/api/admin/staff/permissions_update` to specific trusted roles.
FOSSBilling is a free, open-source billing and client management system. Versions 0.5.3 through 0.7.2 allow authenticated clients to both read and reset API key service secrets for orders that are no longer in an `active` state (e.g., `suspended`, `canceled`). The root cause is missing order-state validation in two client API endpoints, despite an `isActive()` helper already existing in the `Serviceapikey` module and the frontend UI correctly gating access on `order.status == 'active'`. Version 0.8.0 contains a fix. Some workarounds are available. If the `Serviceapikey` module is not needed, uninstall it to remove the affected endpoints. One may also use a reverse proxy or WAF to restrict access to `/api/client/order/service` and `/api/client/serviceapikey/reset` based on application-level order-state logic.
FOSSBilling is a free, open-source billing and client management system. Versions prior to 0.8.0 allow low-privileged staff accounts to perform unauthorized actions via admin API endpoints. The root cause is a combination of the `can_always_access` module flag (which grants all staff access to certain modules) and insufficient permission checks or unsafe parameter handling on individual endpoints. Version 0.8.0 contains a fix. Some workarounds are available. Restrict staff accounts to only those who need access to sensitive settings and/or use a reverse proxy or WAF to restrict access to the affected endpoints to trusted IP addresses or higher-privilege roles.
FOSSBilling is a free, open-source billing and client management system. In versions 0.5.6 through 0.7.2, when the "Require Email Confirmation" setting is enabled, a logged-in client with an unverified email address (`email_approved = 0`) can access all client-area pages (e.g. `/client/balance`, `/client/order/list`, `/client/invoice`) and read real account data, including wallet balances and transaction history. The API-side enforcement correctly restricts unverified clients to only profile-related endpoints, but the page-side enforcement is overly permissive, allowing any request whose path starts with `/client`. Version 0.8.0 contains a fix. No known workarounds that don't involve modifying the source code are available.
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.