UBH A.I CyberSecurity Scoring
26/03/2026
Access Monitoring Plan
Access Monitoring Plan
No incidents recorded for UniCredit Bank Hungary in 2026.
No incidents recorded for UniCredit Bank Hungary in 2026.
No incidents recorded for UniCredit Bank Hungary in 2026.
About Emirates NBD Emirates NBD (DFM: Emirates NBD) is a leading banking group in the MENAT (Middle East, North Africa and Türkiye) region with a presence in 13 countries, serving over 20 million customers. As at 30th September 2023, total assets were AED 836 billion, (equivalent to approx. USD 228 billion). The Group has operations in the UAE, Egypt, India, Türkiye, the Kingdom of Saudi Arabia, Singapore, the United Kingdom, Austria, Germany, Russia and Bahrain and representative offices in China and Indonesia with a total of 853 branches and 4,213 ATMs / SDMs. Emirates NBD is the leading financial services brand in the UAE with a Brand value of USD 3.89 billion. Emirates NBD Group serves its customers (individuals, businesses, governments, and institutions) and helps them realise their financial objectives through a range of banking products and services including retail banking, corporate and institutional banking, Islamic banking, investment banking, private banking, asset management, global markets and treasury, and brokerage operations. The Group is a key participant in the global digital banking industry with 97% of all financial transactions and requests conducted outside of its branches. The Group also operates Liv, the lifestyle digital bank by Emirates NBD, with close to half a million users, it continues to be the fastest-growing bank in the region. Emirates NBD contributes to the construction of a sustainable future as an active participant and supporter of the UAE’s main development and sustainability initiatives, including financial wellness and the inclusion of people of determination. Emirates NBD is committed to supporting the UAE’s Year of Sustainability as Principal Banking Partner of COP28 and an early supporter to the Dubai Can sustainability initiative, a city-wide initiative aimed to reduce use of single-use plastic bottled water.
With a renewed vision for growth and innovation, we rebranded as PT Bank SMBC Indonesia Tbk (SMBC Indonesia) in 2024, formerly known as PT Bank BTPN Tbk. This rebranding reflects our response to the dynamic changes, allowing us to consolidate our strengths and deliver even more seamless, integrated solutions for millions of customers from diverse segments across Indonesia. This transformation signals our commitment to advancing and streamlining our business strategies, enabling us to better serve our customers and help them lead more meaningful and fulfilling lives. At the heart of this rebrand is our dedication to supporting Indonesia's long-term development goals, in alignment with the vision of Indonesia Emas 2045. In addition to these goals, we are excited to invite talented individuals and younger generations to join us, expand their careers and make a lasting impact. Together, we can drive positive change and build a brighter future for Indonesia.
En Banamex una palabra nos ha definido durante nuestra historia: Estar. Estar es acompañar. Estar es avanzar juntos. Acompañar para forjar relaciones auténticas, duraderas, significativas, que nos den confianza y nos impulsen a alcanzar aquello que es importante para ti, para nosotros, para todos. Queremos renovar nuestro compromiso de confianza mutua, no solo trabajando para responder a la confianza que depositas cada día en nosotros, sino comprometiéndonos a hacerla crecer, creando una relación que perdure más allá de lo financiero, más allá de ti y de nosotros, más allá del tiempo. Porque creemos que la confianza es la base de todo. Un proceso en ambas direcciones, en el que nosotros queremos estar y que estés. Un camino que se construye por nuestra parte de una forma sencilla: proporcionándote soluciones y experiencias financieras de una forma sostenida, cercana y honesta. Soluciones que te acompañan, que cambian y se adaptan como cambias tú, que están ahí cuando las necesitas. Para que tú puedas ser tú y nosotros podamos estar aquí, para ti, siempre. Porque nadie es mejor solo, nosotros somos mejores gracias a ti y queremos que tú seas mejor gracias a nosotros.
CIMB Niaga was established as Bank Niaga in 1955. CIMB Group holds around 97.9% of the stakes in CIMB Niaga (including PT Commerce Kapital 1.02%). The Bank offers a comprehensive suite of both conventional and Islamic banking products and services, through an expanding delivery channel network of 919 network channels all over Indonesia as at 30 June 2015, including 563 branches, 271 Mikro Laju units (excluding 18 co-located), 65 cash/payment points (including 21 Digital Lounges) and 20 mobile branches. CIMB Niaga has 15,078 employees as at 30 June 2015. CIMB Niaga consistently continue to innovate in the midst of competitive market. CIMB Niaga put customer centric approach to strengthen its positioning in Indonesia banking industry. And for that reason, CIMB Niaga introduced the new brand positioning ‘Inovasi dari Hati’ at the beginning of the year 2015. The new brand positioning also encourages people to share high growth and take advantage of all the potential that the South-East Asia regions bring – in line with CIMB Group’s brand positioning: “ASEAN for You”. CIMB Group is Malaysia’s second largest financial services provider and one of ASEAN’s leading universal banking groups. It offers consumer banking, investment banking, Islamic banking, asset management and insurance products and services. Headquartered in Kuala Lumpur, the Group is now present in 9 out of 10 ASEAN nations (Malaysia, Indonesia, Thailand, Singapore, Cambodia, Brunei, Vietnam, Myanmar and Laos). Beyond ASEAN, the Group has market presence in China, Hong Kong, Bahrain, India, Sri Lanka, Taiwan, the US, UK and Korea. CIMB Group is listed on the Malaysian stock exchange via CIMB Group Holdings Berhad. As at 30 June 2015, the Group had a market capitalization of USD46.4 billion and about 44,000 employees located in 17 countries.
CIC is the fourth largest banking group in France, consisting of seven regional banks which operate across France through a network of 1,844 branches employing 24,000 staff. CIC's customer base includes 2.7 million retail clients. One in eleven self-employed professionals is a CIC group client and nearly one in three companies banks with CIC Group.
Sebagai bagian dari CT Corp, Bank Mega terus menghadirkan layanan perbankan yang modern, inklusif, dan berorientasi pada kebutuhan masyarakat Indonesia. Mengusung visi “Menjadi Kebanggaan Bangsa”, kami berkomitmen menciptakan nilai tambah bagi nasabah dan karyawan melalui sinergi ekosistem terintegrasi, sekaligus menjadi tempat terbaik bagi talenta untuk tumbuh dan berkontribusi bagi kemajuan bangsa. Bank Mega juga konsisten mengembangkan layanan perbankan digital dengan menyediakan solusi yang mudah, aman, dan efisien bagi nasabah. Sebagai salah satu pelopor implementasi QRIS Cross Border untuk transaksi lintas negara dan QRIS TAP untuk layanan transportasi, Bank Mega memperkuat komitmennya melalui aplikasi M-Smile untuk menciptakan pengalaman transaksi yang nyaman. Langkah ini menegaskan tekad Bank Mega untuk memberikan pengalaman perbankan yang modern, relevan, dan turut mendukung pertumbuhan ekonomi digital Indonesia. Didukung oleh sumber daya manusia yang profesional, budaya kerja Dynamics, Entrepreneurship, Trust, Ethics, Commitment, dan Synergy (DETECS) menjadi fondasi kami dalam menciptakan lingkungan kerja yang kolaboratif dan berdaya saing tinggi. Melalui berbagai inisiatif, penghargaan, dan program berkelanjutan, Bank Mega terus memperkuat perannya sebagai lembaga keuangan yang mendorong pertumbuhan ekonomi nasional sekaligus memberikan dampak positif bagi masyarakat. Pencapaian terbaru Bank Mega di tahun 2025: * Investortrust – The Best Bank 2025 untuk kategori KBMI 3 * Stellar Workplace Recognition in Employee Commitment 2025 * Stellar Workplace Recognition in Employee Satisfaction 2025 * 100 Indonesia's Biggest Companies 2025 versi Fortune Indonesia * Katadata ESG Index Awards sebagai Green Economy Winner untuk sektor (Finance - Bank Sector) Dan masih banyak pencapaian lainnya. Jika Anda mencari tempat untuk berkembang, berkontribusi, dan menjadi bagian dari transformasi industri perbankan Indonesia, inilah saatnya #SuksesBarengMega
Depuis son rapprochement avec le Groupe Crédit Agricole SA en 2003, le périmètre d'activités de LCL, réseau national de banque de détail, est axé sur le marché des particuliers, des professionnels, des entreprises et la Banque privée. LCL est une banque de proximité qui compte 2 065 implantations et 20 900 collaborateurs au service de 6 000 000 de clients particuliers, 320 000 clients professionnels et 27 000 clients entreprises et institutionnels.
Crédit Agricole CIB is the corporate and investment banking arm of Crédit Agricole Group, 9th largest banking group worldwide in terms of balance sheet size in 2023 (The Banker, July 2024). Nearly 8,600 employees across Europe, the Americas, Asia-Pacific, the Middle East and North Africa support Crédit Agricole CIB's clients, meeting their financial needs throughout the world. Crédit Agricole CIB offers its large corporate and institutional clients a range of products and services in capital markets activities, investment banking, structured finance, commercial banking and international trade. The Bank is a pioneer in the area of climate finance, and is currently a market leader in this segment with a complete offer for all its clients.
Established in 1987 in Shenzhen, the forefront of China’s reform and opening-up drive, China Merchants Bank ("CMB") has developed into the most influential commercial bank brand in China thanks to continuous financial innovation, quality customer service, prudent management and strong business performance. For many consecutive years, CMB has been ranked among China’s top commercial banks according to comprehensive assessment by CBRC. The bank has won a number of titles, including the Best Commercial Bank of China, the Best Retail Bank in China, the Best Private Bank in China, China’s Best Custody Specialist from the British Financial Times, Euromoney and The Asset. The Bank was shortlisted as a World-Class Chinese Brand and ranked No. 1 in the P/B list of the world’s top 50 banks with the largest market value by the British Financial Times. It was also listed No.60 among the world's Top 1,000 Banks by The Banker.
Latest updates, reports, and threat intel affecting the global network.
We spoke with Zsolt Becsey, chief economist at UniCredit Bank Hungary, Attila Csáky, head of client risk management and treasury, and Eszter Gárgyán, CEE FX...
Global Finance has announced its selections for the 22nd annual Best Sub-custodian Bank Awards in seven regions and 83 countries, territories & districts.
For financial institutions seeking to expand globally, sub-custodians serve as the investment gateway to their respective jurisdictions,...
The Budapest Business Journal talks with UniCredit Bank Hungary's head of corporates, Albert Hulshof, about the lender's corporate financing...
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.22 and 4.0.0-RC1 through 4.17.15, an attacker with only a GitHub account can plant a JavaScript payload in a craftcms/cms issue title. When a Craft admin uses the CraftSupport widget’s "Give feedback" screen and types a search term that returns the poisoned issue, the payload executes in the admin’s control panel session. No control panel account or elevated privileges are required on the attacker’s side. This issue has been fixed in versions 4.17.16 and 5.9.23.
Craft CMS is a content management system (CMS). In versions 5.0.0-RC1 through 5.9.21 and 4.0.0-RC1 through 4.17.14, theAssetsController::actionDeleteFolder() only requires the deleteAssets:<volume-uid> permission for the target folder. It never enforces deletePeerAssets:<volume-uid>, even though Assets::deleteFoldersByIds() cascades deletion to every descendant folder and every asset inside, regardless of the uploader's assigned privileges. A low-privilege user who has been granted folder-management rights on a shared volume can therefore destroy assets uploaded by other users (peer assets), bypassing the per-asset peer-permission check that the sibling actionDeleteAsset endpoint correctly applies. This issue has been fixed in versions 4.17.15 and 5.9.22.
Craft CMS is a content management system (CMS). Versions 5.0.0-RC1 through 5.9.20, and 4.0.0-RC1 through 4.17.13 contain an authorization issue in the AssetsController::actionReplaceFile that can delete a source asset without source delete permission by supplying both assetId and sourceAssetId. AssetsController::actionReplaceFile() supports replacing a target asset file using another existing asset as the source. The action loads: assetId -> $assetToReplace and sourceAssetId -> $sourceAsset, then enforces replace permissions using ($assetToReplace ?: $sourceAsset). When both IDs are provided, this expression resolves to the target asset so no permission check is performed against the source asset volume. When both assets are present, Craft copies the source file into the target and then deletes the source asset. There is no deletion check for for the source asset. An authenticated user who can replace files in one volume can delete assets in another volume where they do not have delete permission, as long as they can obtain a sourceAssetId, leading to broken content references and data loss. This issue has been fixed in versions 4.17.14 and 5.9.21.
Description: To issue and renew TLS certificates on behalf of customers, Cloudflare's Universal SSL feature automatically manages the CAA RRset for the customer's zone. This auto-managed RRset is permissive by design (e.g. 'issue "letsencrypt.org"' without parameters). On Universal SSL zones, Cloudflare's authoritative DNS serves this auto-managed RRset at query time, superseding any customer-configured CAA records on the zone. When a customer publishes a stricter CAA record using the RFC 8657 accounturi or validationmethods parameters, the Certificate Authority does not observe those parameters when evaluating the served RRset under RFC 8659. As a result, the RFC 8657 account-binding and validation-method-binding protections are not enforced end-to-end on Universal SSL zones. Successful exploitation could result in issuance of a browser-trusted TLS certificate to an attacker, enabling MITM against the affected domain. Exploitation is non-trivial in practice: an attacker would need to hold an ACME account at one of the Certificate Authorities in the served CAA RRset and to simultaneously satisfy domain control validation across the multiple geographically distinct Network Perspectives the CA relies on for Multi-Perspective Issuance Corroboration. Cloudflare prefixes are anycast-announced from hundreds of locations globally, raising the bar against single-vantage-point BGP hijacks. Any resulting misissuance of a browser-trusted certificate is subject to Certificate Transparency logging required by major browsers, and would be visible to CT monitoring. Mitigation: Customers requiring strict RFC 8657 enforcement need to disable Universal SSL on the affected zone. Universal SSL's automatic CAA management and customer-set RFC 8657 accounturi and validationmethods enforcement are mutually exclusive by the nature of the issue, so there is no in-product workaround that preserves both. Certificate Transparency monitoring is recommended for all customers as a general detection control. Credits: David Osipov (ORCID: https://orcid.org/0009-0005-2713-9242), independent researcher
Out of bounds read and write in Tint in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.