Badge
11,371 badges added since 01 January 2025
ISO 27001 Certificate
SOC 1 Type I Certificate
SOC 2 Type II Certificate
PCI DSS
HIPAA
RGPD
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

Architectural Masterpiece. Living History. A place for great adventure. Where Kansas City Connects. All of these phrases and more are regularly used to describe Union Station. Visitors of all ages, from all places and for all reasons tie Union Station to special and magical moments from their lives. Union Station draws tourists from all over the world who marvel at her Grand Hall's 95-foot ceiling, three 3,500-pound chandeliers and the six-foot wide clock hanging in her central arch. She wakes up early and stays up late to host business meetings, civic events, weddings and celebrations of all sorts. And that’s just the beginning. Just as you could 100 years ago, you can still catch the train at Union Station's AMTRAK stop and head out across the country. You'll also find traveling exhibits produced by the Smithsonian, National Geographic and other international organizations, a Planetarium, an interactive science center Science City, and a vibrant Theater District featuring the region's biggest movie screen, live theatre, and so much more. The Station is also home to two of KC's finest restaurants, Harvey's and Pierponts, as well as Parisi Artisan Coffee, Rocky Mountain Chocolate Factory, the Kansas City Store, and Science City Store. Make a day of it at the Station! There's so much for the entire family to SEE and DO!

Union Station Kansas City A.I CyberSecurity Scoring

USKC

Company Details

Linkedin ID:

union-station-kansas-city

Employees number:

86

Number of followers:

6,849

NAICS:

712

Industry Type:

Museums, Historical Sites, and Zoos

Homepage:

unionstation.org

IP Addresses:

0

Company ID:

UNI_3355267

Scan Status:

In-progress

AI scoreUSKC Risk Score (AI oriented)

Between 750 and 799

https://images.rankiteo.com/companyimages/union-station-kansas-city.jpeg
USKC Museums, Historical Sites, and Zoos
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreUSKC Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/union-station-kansas-city.jpeg
USKC Museums, Historical Sites, and Zoos
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

USKC Company CyberSecurity News & History

Past Incidents
0
Attack Types
0
No data available
Ailogo

USKC Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

🔒
Incident Predictions locked
Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

🔒
A.I. Risk Score Predictions locked
Access Monitoring Plan
statics

Underwriter Stats for USKC

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for Union Station Kansas City in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Union Station Kansas City in 2026.

Incident Types USKC vs Museums, Historical Sites, and Zoos Industry Avg (This Year)

No incidents recorded for Union Station Kansas City in 2026.

Incident History — USKC (X = Date, Y = Severity)

USKC cyber incidents detection timeline including parent company and subsidiaries

USKC Company Subsidiaries

SubsidiaryImage

Architectural Masterpiece. Living History. A place for great adventure. Where Kansas City Connects. All of these phrases and more are regularly used to describe Union Station. Visitors of all ages, from all places and for all reasons tie Union Station to special and magical moments from their lives. Union Station draws tourists from all over the world who marvel at her Grand Hall's 95-foot ceiling, three 3,500-pound chandeliers and the six-foot wide clock hanging in her central arch. She wakes up early and stays up late to host business meetings, civic events, weddings and celebrations of all sorts. And that’s just the beginning. Just as you could 100 years ago, you can still catch the train at Union Station's AMTRAK stop and head out across the country. You'll also find traveling exhibits produced by the Smithsonian, National Geographic and other international organizations, a Planetarium, an interactive science center Science City, and a vibrant Theater District featuring the region's biggest movie screen, live theatre, and so much more. The Station is also home to two of KC's finest restaurants, Harvey's and Pierponts, as well as Parisi Artisan Coffee, Rocky Mountain Chocolate Factory, the Kansas City Store, and Science City Store. Make a day of it at the Station! There's so much for the entire family to SEE and DO!

Loading...
similarCompanies

USKC Similar Companies

Public Record Office Victoria

Public Record Office Victoria is the archive of State and Local Governments of Victoria. We hold approximately 100kms of records from 1836 to today, which we manage for use by the Government and people of Victoria. We set mandatory recordkeeping standards and provide support and advice on recordkeep

Canadian Museums Association | Association des musées canadiens

The Canadian Museums Association (CMA) is the national organization for the advancement of the Canadian museum sector, representing Canadian museum professionals both within Canada and internationally. | L’Association des musées canadiens (AMC) est l’organisation nationale vouée à l’avancement des

The Trustees of Reservations

Founded by landscape architect Charles Eliot in 1891, The Trustees has, for more than 125 years, been a catalyst for important ideas, endeavors, and progress in Massachusetts. As a steward of distinctive and dynamic places of both historic and cultural value, The Trustees is the nation’s first prese

Science Spectrum

The Science Spectrum museum and OMNI Theater is a 501 (c)3 educational corporation nonprofit based out of Lubbock, Texas. A small group in West Texas developed the concept for the museum in the fall of 1984. By the fall of 1986 a Board of Directors was formed and the Science Spectrum was officially

San Jose Museum of Quilts & Textiles

The San Jose Museum of Quilts & Textiles is the nexus for fiber artists, art lovers, collectors, quilters, and crafters who share a passion for fiber art and a deep commitment to its preservation and evolution. The Museum’s collection consists of more than 1200 textiles and includes historic quilts,

Denver Art Museum

The Denver Art Museum has been a leader in educational programming for more than two decades. The family-friendly approach is fully integrated into the galleries through a unique partnership between curators, designers, and educators for each discipline. A trailblazer in creating innovative oppo

Wyck Historic House, Garden and Farm

Welcome to Wyck, a National Historic Landmark in the heart of the historic Germantown neighborhood of Philadelphia. Wyck served as the ancestral home to one Germantown family, the Wistar-Haines, from 1690 to 1973. Here, traditional Quaker culture blended with a passion for innovation. The people

Natural History Museum collections, science and digitisation centre

A planetary emergency demands an unprecedented response. Our new collections, science and digitisation centre at Thames Valley Science Park, Reading will be a gateway to the natural world, widening access to vital information to deliver innovative solutions to global challenges. With over 80 millio

Guru Experience Co.

Guru Experience Co. offers museums and cultural sites a full-suite digital experience platform. Created with everything your visitors want, and everything your team needs in mind, our platform is a user-friendly tool that makes creating, sharing, updating, and maintaining your institution’s digita

newsone

USKC CyberSecurity News

December 28, 2025 08:00 AM
Union Station lights up blue, backs downtown Royals stadium in Kansas City

Just days after the Kansas City Chiefs announced that the team would be moving across the state line, a local attraction has entered the...

December 18, 2025 08:00 AM
Things to do in Kansas City this weekend Dec. 19-21

Kansas City has lots of holiday-themed events this weekend, including the Hallmark Christmas Experience, Elf: The Musical and more.

November 25, 2025 08:00 AM
This train will stop in Kansas City as part of holiday tradition. Here’s when

A holiday tradition returns to Kansas City, this time with a different look.

November 03, 2025 08:00 AM
CPKC Holiday Train, Smash Mouth coming to Union Station to support Harvesters

The CPKC Holiday rain is returning to Kansas City's Union Station to kick off the 2025 holiday season.

October 30, 2025 07:00 AM
Union Station celebrating 111 years in Kansas City

Construction on Kansas City's Union Station began in 1911 and on Oct. 30, 1914, the city celebrated its grand opening.

October 29, 2025 07:00 AM
Kansas City unveils plan for its free 2026 World Cup fan fest

Kansas City's host committee for the 2026 World Cup has unveiled plans for a 25,000-capacity FIFA Fan Festival during the competition next...

September 30, 2025 07:00 AM
World Cup hosts launch KC Game Plan for entrepreneurs; heat map, cultural insights on global visitors warming up next

Kansas City boasts no better roster of ambassadors than the region's small business owners, said Tracy Whelpley, announcing a new KC2026...

August 27, 2025 07:00 AM
13 ways Kansas City is celebrating Taylor Swift and Travis Kelce’s engagement

KANSAS CITY, Mo. — Taylor Swift and Travis Kelce are now engaged, and the Kansas City community is celebrating.

July 10, 2025 07:00 AM
Titanic will rise again at KC’s Union Station, this time as an immersive exhibit

“Titanic: An Immersive Voyage” will open Nov. 8 at the Kansas City landmark, marking the third major Titanic exhibition there in 25 years.

faq

Frequently Asked Questions

Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.

USKC CyberSecurity History Information

Official Website of Union Station Kansas City

The official website of Union Station Kansas City is https://www.unionstation.org/.

Union Station Kansas City’s AI-Generated Cybersecurity Score

According to Rankiteo, Union Station Kansas City’s AI-generated cybersecurity score is 763, reflecting their Fair security posture.

How many security badges does Union Station Kansas City’ have ?

According to Rankiteo, Union Station Kansas City currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Union Station Kansas City been affected by any supply chain cyber incidents ?

According to Rankiteo, Union Station Kansas City has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Union Station Kansas City have SOC 2 Type 1 certification ?

According to Rankiteo, Union Station Kansas City is not certified under SOC 2 Type 1.

Does Union Station Kansas City have SOC 2 Type 2 certification ?

According to Rankiteo, Union Station Kansas City does not hold a SOC 2 Type 2 certification.

Does Union Station Kansas City comply with GDPR ?

According to Rankiteo, Union Station Kansas City is not listed as GDPR compliant.

Does Union Station Kansas City have PCI DSS certification ?

According to Rankiteo, Union Station Kansas City does not currently maintain PCI DSS compliance.

Does Union Station Kansas City comply with HIPAA ?

According to Rankiteo, Union Station Kansas City is not compliant with HIPAA regulations.

Does Union Station Kansas City have ISO 27001 certification ?

According to Rankiteo,Union Station Kansas City is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Industry Classification of Union Station Kansas City

Union Station Kansas City operates primarily in the Museums, Historical Sites, and Zoos industry.

Number of Employees at Union Station Kansas City

Union Station Kansas City employs approximately 86 people worldwide.

Subsidiaries Owned by Union Station Kansas City

Union Station Kansas City presently has no subsidiaries across any sectors.

Union Station Kansas City’s LinkedIn Followers

Union Station Kansas City’s official LinkedIn profile has approximately 6,849 followers.

Union Station Kansas City’s Presence on Crunchbase

No, Union Station Kansas City does not have a profile on Crunchbase.

Union Station Kansas City’s Presence on LinkedIn

Yes, Union Station Kansas City maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/union-station-kansas-city.

Cybersecurity Incidents Involving Union Station Kansas City

As of January 22, 2026, Rankiteo reports that Union Station Kansas City has not experienced any cybersecurity incidents.

Number of Peer and Competitor Companies

Union Station Kansas City has an estimated 2,178 peer or competitor companies worldwide.

Union Station Kansas City CyberSecurity History Information

How many cyber incidents has Union Station Kansas City faced ?

Total Incidents: According to Rankiteo, Union Station Kansas City has faced 0 incidents in the past.

What types of cybersecurity incidents have occurred at Union Station Kansas City ?

Incident Types: The types of cybersecurity incidents that have occurred include .

Incident Details

What are the most common types of attacks the company has faced ?

Additional Questions

cve

Latest Global CVEs (Not Company-Specific)

Description

Backstage is an open framework for building developer portals, and @backstage/backend-defaults provides the default implementations and setup for a standard Backstage backend app. Prior to versions 0.12.2, 0.13.2, 0.14.1, and 0.15.0, the `FetchUrlReader` component, used by the catalog and other plugins to fetch content from URLs, followed HTTP redirects automatically. This allowed an attacker who controls a host listed in `backend.reading.allow` to redirect requests to internal or sensitive URLs that are not on the allowlist, bypassing the URL allowlist security control. This is a Server-Side Request Forgery (SSRF) vulnerability that could allow access to internal resources, but it does not allow attackers to include additional request headers. This vulnerability is fixed in `@backstage/backend-defaults` version 0.12.2, 0.13.2, 0.14.1, and 0.15.0. Users should upgrade to this version or later. Some workarounds are available. Restrict `backend.reading.allow` to only trusted hosts that you control and that do not issue redirects, ensure allowed hosts do not have open redirect vulnerabilities, and/or use network-level controls to block access from Backstage to sensitive internal endpoints.

Risk Information
cvss3
Base: 3.5
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N
Description

Backstage is an open framework for building developer portals, and @backstage/cli-common provides config loading functionality used by the backend and command line interface of Backstage. Prior to version 0.1.17, the `resolveSafeChildPath` utility function in `@backstage/backend-plugin-api`, which is used to prevent path traversal attacks, failed to properly validate symlink chains and dangling symlinks. An attacker could bypass the path validation via symlink chains (creating `link1 → link2 → /outside` where intermediate symlinks eventually resolve outside the allowed directory) and dangling symlinks (creating symlinks pointing to non-existent paths outside the base directory, which would later be created during file operations). This function is used by Scaffolder actions and other backend components to ensure file operations stay within designated directories. This vulnerability is fixed in `@backstage/backend-plugin-api` version 0.1.17. Users should upgrade to this version or later. Some workarounds are available. Run Backstage in a containerized environment with limited filesystem access and/or restrict template creation to trusted users.

Risk Information
cvss3
Base: 6.3
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Description

Backstage is an open framework for building developer portals. Multiple Scaffolder actions and archive extraction utilities were vulnerable to symlink-based path traversal attacks. An attacker with access to create and execute Scaffolder templates could exploit symlinks to read arbitrary files via the `debug:log` action by creating a symlink pointing to sensitive files (e.g., `/etc/passwd`, configuration files, secrets); delete arbitrary files via the `fs:delete` action by creating symlinks pointing outside the workspace, and write files outside the workspace via archive extraction (tar/zip) containing malicious symlinks. This affects any Backstage deployment where users can create or execute Scaffolder templates. This vulnerability is fixed in `@backstage/backend-defaults` versions 0.12.2, 0.13.2, 0.14.1, and 0.15.0; `@backstage/plugin-scaffolder-backend` versions 2.2.2, 3.0.2, and 3.1.1; and `@backstage/plugin-scaffolder-node` versions 0.11.2 and 0.12.3. Users should upgrade to these versions or later. Some workarounds are available. Follow the recommendation in the Backstage Threat Model to limit access to creating and updating templates, restrict who can create and execute Scaffolder templates using the permissions framework, audit existing templates for symlink usage, and/or run Backstage in a containerized environment with limited filesystem access.

Risk Information
cvss3
Base: 7.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:L
Description

FastAPI Api Key provides a backend-agnostic library that provides an API key system. Version 1.1.0 has a timing side-channel vulnerability in verify_key(). The method applied a random delay only on verification failures, allowing an attacker to statistically distinguish valid from invalid API keys by measuring response latencies. With enough repeated requests, an adversary could infer whether a key_id corresponds to a valid key, potentially accelerating brute-force or enumeration attacks. All users relying on verify_key() for API key authentication prior to the fix are affected. Users should upgrade to version 1.1.0 to receive a patch. The patch applies a uniform random delay (min_delay to max_delay) to all responses regardless of outcome, eliminating the timing correlation. Some workarounds are available. Add an application-level fixed delay or random jitter to all authentication responses (success and failure) before the fix is applied and/or use rate limiting to reduce the feasibility of statistical timing attacks.

Risk Information
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Description

The Flux Operator is a Kubernetes CRD controller that manages the lifecycle of CNCF Flux CD and the ControlPlane enterprise distribution. Starting in version 0.36.0 and prior to version 0.40.0, a privilege escalation vulnerability exists in the Flux Operator Web UI authentication code that allows an attacker to bypass Kubernetes RBAC impersonation and execute API requests with the operator's service account privileges. In order to be vulnerable, cluster admins must configure the Flux Operator with an OIDC provider that issues tokens lacking the expected claims (e.g., `email`, `groups`), or configure custom CEL expressions that can evaluate to empty values. After OIDC token claims are processed through CEL expressions, there is no validation that the resulting `username` and `groups` values are non-empty. When both values are empty, the Kubernetes client-go library does not add impersonation headers to API requests, causing them to be executed with the flux-operator service account's credentials instead of the authenticated user's limited permissions. This can result in privilege escalation, data exposure, and/or information disclosure. Version 0.40.0 patches the issue.

Risk Information
cvss3
Base: 5.3
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Access Data Using Our API

SubsidiaryImage

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=union-station-kansas-city' -H 'apikey: YOUR_API_KEY_HERE'

What Do We Measure ?

revertimgrevertimgrevertimgrevertimg
Incident
revertimgrevertimgrevertimgrevertimg
Finding
revertimgrevertimgrevertimgrevertimg
Grade
revertimgrevertimgrevertimgrevertimg
Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network Security

Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)

Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)

Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat Intelligence

Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Top LeftTop RightBottom LeftBottom Right
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
Users Love Us Badge