None
Founded in 1961, WEG is a global electric-electronic equipment company, operating mainly in the capital goods sector with solutions in electric machines, automation and paints for several sectors, including infrastructure, steel, pulp and paper, oil and gas, mining, among many others. WEG stands out in innovation by constantly developing solutions to meet the major trends in energy efficiency, renewable energy and electric mobility. With manufacturing units in 17 countries and present in more than 135 countries, the company has more than 40,000 employees worldwide. WEG’s net revenue reached R$ 32.5 billion in 2023, 52.9% from outside Brazil. Our business areas are divided as follows. Industrial Electro-Electronic Equipment This area includes electric motors, drives and industrial automation equipment and services, and maintenance services. Electric motors and other related equipment find applications in practically all industrial segments, in equipment such as compressors, pumps and fans, for example. Energy Generation, Transmission and Distribution (GTD) Products and services included in this area are electric generators for hydraulic and thermal power plants (biomass), hydro turbines (small hydroelectric plants or PCH, and hydroelectric generators or CGH)), wind turbines, transformers, substations, control panels and system integration services. Commercial and Appliance Motors In this business area, our focus is the market of single phase motors for durable consumer goods, such as washing machines, air conditioners, water pumps, among others. Paints and Varnishes In this area, which includes liquid paints, powder paints, and electro-insulating varnishes, we have a very clear focus on industrial applications in Brazil and are expanding to Latin America and other regions.
Security & Compliance Standards Overview
No incidents recorded for Taiwan Semiconductor Manufacturing Company Limited in 2025.
No incidents recorded for WEG in 2025.
Taiwan Semiconductor Manufacturing Company Limited cyber incidents detection timeline including parent company and subsidiaries
WEG cyber incidents detection timeline including parent company and subsidiaries
Last 3 Security & Risk Events by Company
A vulnerability has been found in TykoDev cherry-studio-TykoFork 0.1. This issue affects the function redirectToAuthorization of the file /.well-known/oauth-authorization-server of the component OAuth Server Discovery. Such manipulation of the argument authorizationUrl leads to os command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
A flaw has been found in code-projects Question Paper Generator up to 1.0. This vulnerability affects unknown code of the file /selectquestionuser.php. This manipulation of the argument subid causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.
A vulnerability was found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected by this vulnerability is an unknown functionality of the file /dishsub.php. The manipulation of the argument item.name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.
A vulnerability has been found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected is an unknown function of the file /usersub.php of the component Request Pending Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.
A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
