UNDP
Company Details
Linkedin ID:
undp
Website:
Employees number:
26,338
Number of followers:
2,658,708
NAICS:
92812
Industry Type:
Homepage:
undp.org
IP Addresses:
0
Company ID:
UND_5081748
Scan Status:
In-progress
UNDP Company CyberSecurity Posture
undp.org
The United Nations Development Programme works in nearly 170 countries and territories, helping to achieve the eradication of poverty, and the reduction of inequalities and exclusion. We help countries to develop policies, leadership skills, partnering abilities, institutional capabilities and build resilience in order to sustain development results. DISCLAIMER: The United Nations Development Programme (UNDP) does not guarantee the truthfulness, accuracy, or validity of any comments posted to its social media outlets (blogs, social networks, message boards/forums, etc.). Users must not post any content that is obscene, defamatory, profane, libelous, threatening, harassing, abusive, hateful or embarrassing to any person or entity. UNDP reserves the right to delete or edit any comments that it considers inappropriate or unacceptable, and to delete off-topic comments in order to foster conversations about the topics shared on this page.
UNDP A.I CyberSecurity Scoring
UNDP Risk Score (AI oriented)Between 800 and 849
UNDP
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
UNDP Global Score (TPRM)XXXX
UNDP
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
UNDP Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
UNDP Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for UNDP
Incidents vs International Affairs Industry Average (This Year)
No incidents recorded for UNDP in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for UNDP in 2025.
Incident Types UNDP vs International Affairs Industry Avg (This Year)
No incidents recorded for UNDP in 2025.
Incident History — UNDP (X = Date, Y = Severity)
UNDP cyber incidents detection timeline including parent company and subsidiaries
UNDP Company Subsidiaries
The United Nations Development Programme works in nearly 170 countries and territories, helping to achieve the eradication of poverty, and the reduction of inequalities and exclusion. We help countries to develop policies, leadership skills, partnering abilities, institutional capabilities and build resilience in order to sustain development results. DISCLAIMER: The United Nations Development Programme (UNDP) does not guarantee the truthfulness, accuracy, or validity of any comments posted to its social media outlets (blogs, social networks, message boards/forums, etc.). Users must not post any content that is obscene, defamatory, profane, libelous, threatening, harassing, abusive, hateful or embarrassing to any person or entity. UNDP reserves the right to delete or edit any comments that it considers inappropriate or unacceptable, and to delete off-topic comments in order to foster conversations about the topics shared on this page.
Loading...
UNDP Similar Companies
USAID is the lead U.S. Government agency that works to end extreme global poverty and enable resilient, democratic societies to realize their potential. U.S. foreign assistance has always had the twofold purpose of furthering America's interests while improving lives in the developing world. USAI
World Health Organization
The World Health Organization's mission: to promote health, keep the world safe, and serve the vulnerable. Working through offices in more than 150 countries, WHO staff work side by side with governments and other partners to ensure the highest attainable level of health for all people. Stay connec
Bluesky Agency
THE RIGHT WAY TO ITALY. Italian Agency based in Venice-Italy performing general affairs by Public and Private Boards seeks international Partners to develop SMART TOURISM NETWORK. Multilingual staff. Contact us as above
United Nations
Founded at the end of the Second World War, the United Nations is an international organization made up of 193 Member States committed to maintaining international peace and security. Every day the UN works to tackle global challenges and deliver results for those most in need. Giving life-sav
U.S. Department of State
The U.S. Department of State is focused on accomplishing America's mission of diplomacy at home and around the world. The U.S. Department of State manages America’s relationships with foreign governments, international organizations, and the people of other countries. U.S. diplomats and Civil Servic
Established in 1951, the International Organization for Migration is the leading intergovernmental organization in the field of migration and is committed to the principle that humane and orderly migration benefits migrants and society. IOM works with its partners in the international community to
UNHCR, the UN Refugee Agency
UNHCR, the UN Refugee Agency, is a global organisation dedicated to saving lives, protecting rights and building a better future for people forced to flee their homes because of conflict and persecution. We lead international action to protect refugees, forcibly displaced communities and stateless
.png)
UNDP CyberSecurity News
December 18, 2025 01:48 PM
PTA Concludes Cybersecurity Awareness Week 2025 Successfully
The Pakistan Telecommunication Authority (PTA) has successfully concluded Cybersecurity Awareness Week 2025 with a high-level...
December 18, 2025 11:15 AM
PTA Concludes Cybersecurity Awareness Week 2025 with High-Level Closing Ceremony
The Pakistan Telecommunication Authority (PTA), in collaboration with UNDP, successfully concluded Cybersecurity Awareness Week 2025 with a...
December 17, 2025 08:00 AM
PTA concludes Cybersecurity Awareness Week 2025
ISLAMABAD, Dec 18 (APP):The Pakistan Telecommunication Authority (PTA), in collaboration with the United Nations Development Programme...
November 28, 2025 10:00 PM
Strengthening monitoring and reporting on human rights and counter-terrorism in Iraq
The United Nations of Counter-Terrorism (UNOCT) and Iraq's Office of the National Security Advisor (ONSA) co-organized a workshop on “Monitoring and...
November 27, 2025 07:07 PM
The Tenth Coordination Committee meeting of the UN Global Counter-Terrorism Coordination Compact
The Tenth Coordination Committee meeting of the United Nations Global Counter-Terrorism Coordination Compact (Counter-Terrorism Compact) commenc.
November 21, 2025 08:00 AM
DICT vows better cybersecurity to attract investors
The Department of Information and Communications Technology (DICT) is giving priority to the cybersecurity of its information infrastructure...
November 05, 2025 08:00 AM
UN treaty sparks debate over digital cybersecurity
UN treaty sparks debate over digital cybersecurity. Experts warn that the UN treaty may put online privacy and digital cybersecurity at risk.
October 25, 2025 07:00 AM
Signing ceremony of UN Convention against Cybercrime solemnly opens in Hà Nội
Leaders from over 110 countries gathered in Hà Nội for the Signing Ceremony of the UN Convention against Cybercrime, marking a historic...
October 22, 2025 07:00 AM
Public Call for Participation in the Implementation of the "Cyber District"
The Office for Information Technologies and eGovernment, in partnership with United Nations Development Programme (UNDP),...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
UNDP CyberSecurity History Information
Official Website of UNDP
The official website of UNDP is http://www.undp.org.
UNDP’s AI-Generated Cybersecurity Score
According to Rankiteo, UNDP’s AI-generated cybersecurity score is 811, reflecting their Good security posture.
How many security badges does UNDP’ have ?
According to Rankiteo, UNDP currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does UNDP have SOC 2 Type 1 certification ?
According to Rankiteo, UNDP is not certified under SOC 2 Type 1.
Does UNDP have SOC 2 Type 2 certification ?
According to Rankiteo, UNDP does not hold a SOC 2 Type 2 certification.
Does UNDP comply with GDPR ?
According to Rankiteo, UNDP is not listed as GDPR compliant.
Does UNDP have PCI DSS certification ?
According to Rankiteo, UNDP does not currently maintain PCI DSS compliance.
Does UNDP comply with HIPAA ?
According to Rankiteo, UNDP is not compliant with HIPAA regulations.
Does UNDP have ISO 27001 certification ?
According to Rankiteo,UNDP is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of UNDP
UNDP operates primarily in the International Affairs industry.
Number of Employees at UNDP
UNDP employs approximately 26,338 people worldwide.
Subsidiaries Owned by UNDP
UNDP presently has no subsidiaries across any sectors.
UNDP’s LinkedIn Followers
UNDP’s official LinkedIn profile has approximately 2,658,708 followers.
NAICS Classification of UNDP
UNDP is classified under the NAICS code 92812, which corresponds to International Affairs.
UNDP’s Presence on Crunchbase
No, UNDP does not have a profile on Crunchbase.
UNDP’s Presence on LinkedIn
Yes, UNDP maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/undp.
Cybersecurity Incidents Involving UNDP
As of December 21, 2025, Rankiteo reports that UNDP has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
UNDP has an estimated 987 peer or competitor companies worldwide.
UNDP CyberSecurity History Information
How many cyber incidents has UNDP faced ?
Total Incidents: According to Rankiteo, UNDP has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at UNDP ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating the requesting user. Due to improper privilege handling and a time-of-check time-of-use race condition combined with symbolic link and mount point manipulation, a local authenticated attacker can coerce the service into deleting arbitrary directories with SYSTEM privileges. This can be exploited to delete protected system folders such as C:\\Config.msi and subsequently achieve execution as NT AUTHORITY\\SYSTEM via MSI rollback techniques.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to unauthorized modification of data due to a missing capability check on the 'cs_update_application_status_callback' function in all versions up to, and including, 7.7. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject cross-site scripting into the 'status' parameter of applied jobs for any user.
Risk Information
cvss3
Base: 7.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.7 via the 'cs_update_application_status_callback' due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Candidate-level access and above, to send a site-generated email with injected HTML to any user.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Description
The FiboSearch – Ajax Search for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `thegem_te_search` shortcode in all versions up to, and including, 1.32.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This vulnerability requires TheGem theme (premium) to be installed with Header Builder mode enabled, and the FiboSearch "Replace search bars" option enabled for TheGem integration.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
References
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L104
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L94
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3420841%40ajax-search-for-woocommerce%2Ftrunk&old=3398612%40ajax-search-for-woocommerce%2Ftrunk&sfp_email=&sfph_mail=#file136
- https://wordpress.org/plugins/ajax-search-for-woocommerce
- https://www.wordfence.com/threat-intel/vulnerabilities/id/8149103e-105d-401d-8a15-b07d131baaac?source=cve
Description
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajax_get_members function. This is due to the use of a predictable low-entropy token (5 hex characters derived from md5 of post ID) to identify member directories and insufficient authorization checks on the unauthenticated AJAX endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, display names, user roles (including administrator accounts), profile URLs, and user IDs by enumerating predictable directory_id values or brute-forcing the small 16^5 token space.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
References
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/class-functions.php#L41
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-ajax-common.php#L61
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L205
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L2795
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/templates/members.php#L26
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3421362%40ultimate-member%2Ftrunk&old=3408617%40ultimate-member%2Ftrunk&sfp_email=&sfph_mail=
- https://www.wordfence.com/threat-intel/vulnerabilities/id/61337d2d-d15a-45f2-b730-fc034eb3cd31?source=cve
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=undp' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
