SIG
Company Details
Linkedin ID:
sunshine-insurance-group
Website:
Employees number:
10,332
Number of followers:
17,446
NAICS:
524
Industry Type:
Homepage:
sinosig.com
IP Addresses:
0
Company ID:
SUN_6930546
Scan Status:
In-progress
Sunshine Insurance Group Company CyberSecurity Posture
sinosig.com
Established in July 2005, Sunshine Insurance Group has experienced sustainable development, now ranking among the Top 7 insurance groups in China, with an annual business income of $12.6 billion in 2016. Sunshine is composed of Property and Casualty Insurance, Life Insurance, Credit and Guarantee Insurance, Asset Management, Union Hospital and HFAX. In addition, Sunshine acquired the only six-star hotel Baccarat, which is located in Manhattan, New York. The vision of Sunshine is to be a financial insurance group with humanity and vitality and our mission is to let our clients enjoy more sunshine. Since establishment, Sunshine has created over 170,000 jobs, served 180 million clients and donated more than $16.7 million to charity work. Sunshine has built up strategic partnerships with world-leading insurance and finance companies, such as Swiss Re, Morgan Stanley, UBS, Blackstone Group, etc. Embracing the future, Sunshine is dedicated to a new path of development, integrating four pillars of “Data Sunshine”, “Financial Sunshine”, “Health Care Sunshine” and “International Sunshine”. Building on its strengths and remaining people-oriented and technology-driven, Sunshine welcomes talents from all over the world to fulfill their personal goals while achieving a successful career.
Sunshine Insurance Group A.I CyberSecurity Scoring
SIG Risk Score (AI oriented)Between 750 and 799
SIG
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
SIG Global Score (TPRM)XXXX
SIG
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
SIG Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
SIG Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for SIG
Incidents vs Insurance Industry Average (This Year)
No incidents recorded for Sunshine Insurance Group in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Sunshine Insurance Group in 2025.
Incident Types SIG vs Insurance Industry Avg (This Year)
No incidents recorded for Sunshine Insurance Group in 2025.
Incident History — SIG (X = Date, Y = Severity)
SIG cyber incidents detection timeline including parent company and subsidiaries
SIG Company Subsidiaries
Established in July 2005, Sunshine Insurance Group has experienced sustainable development, now ranking among the Top 7 insurance groups in China, with an annual business income of $12.6 billion in 2016. Sunshine is composed of Property and Casualty Insurance, Life Insurance, Credit and Guarantee Insurance, Asset Management, Union Hospital and HFAX. In addition, Sunshine acquired the only six-star hotel Baccarat, which is located in Manhattan, New York. The vision of Sunshine is to be a financial insurance group with humanity and vitality and our mission is to let our clients enjoy more sunshine. Since establishment, Sunshine has created over 170,000 jobs, served 180 million clients and donated more than $16.7 million to charity work. Sunshine has built up strategic partnerships with world-leading insurance and finance companies, such as Swiss Re, Morgan Stanley, UBS, Blackstone Group, etc. Embracing the future, Sunshine is dedicated to a new path of development, integrating four pillars of “Data Sunshine”, “Financial Sunshine”, “Health Care Sunshine” and “International Sunshine”. Building on its strengths and remaining people-oriented and technology-driven, Sunshine welcomes talents from all over the world to fulfill their personal goals while achieving a successful career.
Loading...
SIG Similar Companies
Brown & Brown
Brown & Brown delivers risk management solutions to help protect and preserve what our customers value most. Our two business segments, Retail and Specialty Distribution, offer businesses and individuals a wide range of insurance solutions. We are one of the insurance industry’s most powerful and i
American Family Insurance
For more than 90 years, American Family Insurance has built its reputation on sound principles. We strive to provide you industry-leading service, exceptional claims experience and products that build long-term relationships. This is accomplished by treating policyholders fairly in a helpful and car
GREAT EASTERN
Established in 1908, Great Eastern places customers at the heart of everything we do. Our legacy extends beyond our products and services to our culture, which is defined by our core values and how we work. As champions of Integrity, Initiative and Involvement, our core values act as a compass, guid
Vienna Insurance Group (VIG)
Vienna Insurance Group (VIG) is the leading insurance group in the entire Central and Eastern European (CEE) region. More than 50 insurance companies and pension funds in 30 countries form a Group with a long-standing tradition, strong brands and close customer relations. Around 30,000 employees in
Munich Re
Munich Re is one of the world’s leading providers of reinsurance, primary insurance and insurance-related risk solutions. The group consists of the reinsurance and ERGO business segments, as well as the capital investment company MEAG. We are globally active and operate in all lines of the insurance
Prudential Indonesia (PT Prudential Life Assurance)
Listening. Understanding. Delivering. At Prudential Indonesia we deliver excellence by consistently innovating, creating new opportunities and growing our business to cater all of our customers' needs. With a vision of becoming truly world class, Prudential Indonesia provides quality services and
Zurich Insurance
Zurich Insurance Group (Zurich) is a leading global multi-line insurer founded more than 150 years ago, which has grown into a business serving more than 75 million customers in more than 200 countries and territories, while delivering industry-leading total shareholder returns. Our customers includ
Aflac
Over 50 Million people worldwide have chosen Aflac because of our commitment to providing customers with the confidence that comes from knowing they have assistance in being prepared for whatever life may bring. With Aflac, whether you're a large business or a small one, you can provide your emplo
AAA-The Auto Club Group
AAA - The Auto Club Group (ACG) is the second largest AAA club in North America, serving more than 13+ million members across 14 U.S. states, the province of Quebec, Puerto Rico, and the U.S. Virgin Islands. For over 100 years, AAA has provided safety, security, and peace of mind. ACG advances AAA’
.png)
SIG CyberSecurity News
November 09, 2025 08:00 AM
Sunshine Insurance Group And 2 Other Asian Penny Stocks To Watch
Amidst a backdrop of fluctuating global markets, Asian equities have shown resilience, with particular attention on smaller stocks that may...
October 07, 2025 07:00 AM
Oversight, disclosure concerns dominate House panel discussion of AI use in insurance decisions
There are myriad uses for AI in insurance and just as many, if not more, concerns about the issue among policymakers and consumers.
August 13, 2025 07:00 AM
Asian Penny Stocks To Watch With Market Caps Over US$100M
As global markets continue to navigate a complex landscape, Asian indices have shown resilience with notable performances in regions like...
January 29, 2025 08:00 AM
CI-ISAC Australia Debuts Health Cyber Sharing Network
CI-ISAC Australia has been selected as the recipient of an Australian Government AUD6.4 million grant to create a health-specific,...
January 14, 2025 08:00 AM
SPCI to benefit from investments rejig, parent company support: Fitch Ratings
China's Sunshine Property and Casualty Insurance (SPCI) would benefit from an investment portfolio rejig and strong support from its parent...
August 27, 2024 07:00 AM
Group of Florida doctors says leading Medicaid operator slow to pay
Some of the bills date back two years, and the doctors claimed they were struggling to meet payroll and considering whether to stop accepting Medicaid patients.
February 28, 2024 08:00 AM
University study warns of AI risks
AI is seen as a business “panacea of efficiency and effectiveness”, but a group of academics from University of the Sunshine Coast is...
July 14, 2023 07:00 AM
AAA Insurance to drop policies in Florida, adding to industry's Sunshine State turmoil
Within the same week that one Farmers Insurance Group sought approval from state regulators to cancel roughly 30% of its business in Florida...
July 16, 2018 07:00 AM
China’s Sunshine Insurance joins funding round for Lionbridge
Sunshine Insurance Group's investment arm, Riverhead Capital Investment, recently joined a funding round for Lionbridge Group.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
SIG CyberSecurity History Information
Official Website of Sunshine Insurance Group
The official website of Sunshine Insurance Group is http://www.sinosig.com/.
Sunshine Insurance Group’s AI-Generated Cybersecurity Score
According to Rankiteo, Sunshine Insurance Group’s AI-generated cybersecurity score is 766, reflecting their Fair security posture.
How many security badges does Sunshine Insurance Group’ have ?
According to Rankiteo, Sunshine Insurance Group currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Sunshine Insurance Group have SOC 2 Type 1 certification ?
According to Rankiteo, Sunshine Insurance Group is not certified under SOC 2 Type 1.
Does Sunshine Insurance Group have SOC 2 Type 2 certification ?
According to Rankiteo, Sunshine Insurance Group does not hold a SOC 2 Type 2 certification.
Does Sunshine Insurance Group comply with GDPR ?
According to Rankiteo, Sunshine Insurance Group is not listed as GDPR compliant.
Does Sunshine Insurance Group have PCI DSS certification ?
According to Rankiteo, Sunshine Insurance Group does not currently maintain PCI DSS compliance.
Does Sunshine Insurance Group comply with HIPAA ?
According to Rankiteo, Sunshine Insurance Group is not compliant with HIPAA regulations.
Does Sunshine Insurance Group have ISO 27001 certification ?
According to Rankiteo,Sunshine Insurance Group is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Sunshine Insurance Group
Sunshine Insurance Group operates primarily in the Insurance industry.
Number of Employees at Sunshine Insurance Group
Sunshine Insurance Group employs approximately 10,332 people worldwide.
Subsidiaries Owned by Sunshine Insurance Group
Sunshine Insurance Group presently has no subsidiaries across any sectors.
Sunshine Insurance Group’s LinkedIn Followers
Sunshine Insurance Group’s official LinkedIn profile has approximately 17,446 followers.
NAICS Classification of Sunshine Insurance Group
Sunshine Insurance Group is classified under the NAICS code 524, which corresponds to Insurance Carriers and Related Activities.
Sunshine Insurance Group’s Presence on Crunchbase
No, Sunshine Insurance Group does not have a profile on Crunchbase.
Sunshine Insurance Group’s Presence on LinkedIn
Yes, Sunshine Insurance Group maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sunshine-insurance-group.
Cybersecurity Incidents Involving Sunshine Insurance Group
As of November 27, 2025, Rankiteo reports that Sunshine Insurance Group has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Sunshine Insurance Group has an estimated 14,859 peer or competitor companies worldwide.
Sunshine Insurance Group CyberSecurity History Information
How many cyber incidents has Sunshine Insurance Group faced ?
Total Incidents: According to Rankiteo, Sunshine Insurance Group has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Sunshine Insurance Group ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=sunshine-insurance-group' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
