Badge
11,371 badges added since 01 January 2025
ISO 27001 Certificate
SOC 1 Type I Certificate
SOC 2 Type II Certificate
PCI DSS
HIPAA
RGPD
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

Architectural Masterpiece. Living History. A place for great adventure. Where Kansas City Connects. All of these phrases and more are regularly used to describe Union Station. Visitors of all ages, from all places and for all reasons tie Union Station to special and magical moments from their lives. Union Station draws tourists from all over the world who marvel at her Grand Hall's 95-foot ceiling, three 3,500-pound chandeliers and the six-foot wide clock hanging in her central arch. She wakes up early and stays up late to host business meetings, civic events, weddings and celebrations of all sorts. And that’s just the beginning. Just as you could 100 years ago, you can still catch the train at Union Station's AMTRAK stop and head out across the country. You'll also find traveling exhibits produced by the Smithsonian, National Geographic and other international organizations, a Planetarium, an interactive science center Science City, and a vibrant Theater District featuring the region's biggest movie screen, live theatre, and so much more. The Station is also home to two of KC's finest restaurants, Harvey's and Pierponts, as well as Parisi Artisan Coffee, Rocky Mountain Chocolate Factory, the Kansas City Store, and Science City Store. Make a day of it at the Station! There's so much for the entire family to SEE and DO!

Union Station Kansas City A.I CyberSecurity Scoring

USKC

Company Details

Linkedin ID:

union-station-kansas-city

Employees number:

86

Number of followers:

6,849

NAICS:

712

Industry Type:

Museums, Historical Sites, and Zoos

Homepage:

unionstation.org

IP Addresses:

0

Company ID:

UNI_3355267

Scan Status:

In-progress

AI scoreUSKC Risk Score (AI oriented)

Between 750 and 799

https://images.rankiteo.com/companyimages/union-station-kansas-city.jpeg
USKC Museums, Historical Sites, and Zoos
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreUSKC Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/union-station-kansas-city.jpeg
USKC Museums, Historical Sites, and Zoos
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

USKC Company CyberSecurity News & History

Past Incidents
0
Attack Types
0
No data available
Ailogo

USKC Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

🔒
Incident Predictions locked
Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

🔒
A.I. Risk Score Predictions locked
Access Monitoring Plan
statics

Underwriter Stats for USKC

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for Union Station Kansas City in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Union Station Kansas City in 2026.

Incident Types USKC vs Museums, Historical Sites, and Zoos Industry Avg (This Year)

No incidents recorded for Union Station Kansas City in 2026.

Incident History — USKC (X = Date, Y = Severity)

USKC cyber incidents detection timeline including parent company and subsidiaries

USKC Company Subsidiaries

SubsidiaryImage

Architectural Masterpiece. Living History. A place for great adventure. Where Kansas City Connects. All of these phrases and more are regularly used to describe Union Station. Visitors of all ages, from all places and for all reasons tie Union Station to special and magical moments from their lives. Union Station draws tourists from all over the world who marvel at her Grand Hall's 95-foot ceiling, three 3,500-pound chandeliers and the six-foot wide clock hanging in her central arch. She wakes up early and stays up late to host business meetings, civic events, weddings and celebrations of all sorts. And that’s just the beginning. Just as you could 100 years ago, you can still catch the train at Union Station's AMTRAK stop and head out across the country. You'll also find traveling exhibits produced by the Smithsonian, National Geographic and other international organizations, a Planetarium, an interactive science center Science City, and a vibrant Theater District featuring the region's biggest movie screen, live theatre, and so much more. The Station is also home to two of KC's finest restaurants, Harvey's and Pierponts, as well as Parisi Artisan Coffee, Rocky Mountain Chocolate Factory, the Kansas City Store, and Science City Store. Make a day of it at the Station! There's so much for the entire family to SEE and DO!

Loading...
similarCompanies

USKC Similar Companies

Conservation Center for Art & Historic Artifacts (CCAHA)

The Conservation Center for Art & Historic Artifacts (CCAHA) has grown to be one of the largest nonprofit conservation centers in the country. Its wide array of services, sophisticated treatment facilities, innovative approaches, and highly trained and experienced staff have earned it a prominent an

Taltree Arboretum and Gardens

Established to preserve the native landscape of Northwest Indiana by maintaining an extensive tree and plant collection via natural habitats and formal garden landscapes. And, to provide educational and recreational opportunities for visitors to and residents of the Northwest Indiana region. Talt

Australian Museums and Galleries Association

Australian Museums and Galleries Association Incorporated (AMaGA) is the national association and peak advocacy body representing museums and galleries. We encompass a wide and diverse range of national, state, regional and community museums, galleries, historic sites, botanic and zoological gardens

Senator John Heinz History Center

Devoted to the history and heritage of Western Pennsylvania, the Senator John Heinz History Center is Pennsylvania’s largest history museum and a proud affiliate of the Smithsonian Institution. The six-floor, 275,000-square-foot museum and research facility, located in Pittsburgh's Strip District

Memphis Museums of Science & History - MoSH

Welcome to the Museums of Science & History (MoSH), a wide-ranging collection of historic, educational and technological attractions maintained by the City of Memphis, Tennessee and Memphis Museums, Inc. The Museum Family, including the Pink Palace Museum, the CTI 3D Giant Theater, the Sharpe Plan

Canton Museum of Art

The Canton Museum of Art is recognized for powerful original exhibitions and national touring exhibitions focused on American art – and making the discovery and exploration of art accessible to all. The Museum’s education outreach programs, classes, and workshops serve thousands of students of all a

Oregon Zoo

The Oregon Zoo connects communities to the wonder of wildlife to create a better future for all. We are a hub for science, conservation, education and animal well-being delivering the highest quality of care to 165 species and subspecies. Community supported since 1888, we are part of Metro, great

Comic-Con Museum

Comic-Con International (Comic-Con), a 501(c)3 nonprofit, is opening the Comic-Con Museum in San Diego’s Balboa Park. This new cultural attraction will encourage an appreciation of comics and related popular arts through exhibitions, performances, educational programs, and outreach efforts. The Co

Center for Maine Contemporary Art

Founded in 1952, the Center for Maine Contemporary Art (CMCA) is a contemporary arts institution, presenting a year-round program of changing exhibitions featuring the work of emerging and established artists with ties to Maine. In addition, CMCA offers a full range of educational programs for all a

newsone

USKC CyberSecurity News

December 28, 2025 08:00 AM
Union Station lights up blue, backs downtown Royals stadium in Kansas City

Just days after the Kansas City Chiefs announced that the team would be moving across the state line, a local attraction has entered the...

December 18, 2025 08:00 AM
Things to do in Kansas City this weekend Dec. 19-21

Kansas City has lots of holiday-themed events this weekend, including the Hallmark Christmas Experience, Elf: The Musical and more.

November 25, 2025 08:00 AM
This train will stop in Kansas City as part of holiday tradition. Here’s when

A holiday tradition returns to Kansas City, this time with a different look.

November 03, 2025 08:00 AM
CPKC Holiday Train, Smash Mouth coming to Union Station to support Harvesters

The CPKC Holiday rain is returning to Kansas City's Union Station to kick off the 2025 holiday season.

October 30, 2025 07:00 AM
Union Station celebrating 111 years in Kansas City

Construction on Kansas City's Union Station began in 1911 and on Oct. 30, 1914, the city celebrated its grand opening.

October 29, 2025 07:00 AM
Kansas City unveils plan for its free 2026 World Cup fan fest

Kansas City's host committee for the 2026 World Cup has unveiled plans for a 25,000-capacity FIFA Fan Festival during the competition next...

September 30, 2025 07:00 AM
World Cup hosts launch KC Game Plan for entrepreneurs; heat map, cultural insights on global visitors warming up next

Kansas City boasts no better roster of ambassadors than the region's small business owners, said Tracy Whelpley, announcing a new KC2026...

August 27, 2025 07:00 AM
13 ways Kansas City is celebrating Taylor Swift and Travis Kelce’s engagement

KANSAS CITY, Mo. — Taylor Swift and Travis Kelce are now engaged, and the Kansas City community is celebrating.

July 10, 2025 07:00 AM
Titanic will rise again at KC’s Union Station, this time as an immersive exhibit

“Titanic: An Immersive Voyage” will open Nov. 8 at the Kansas City landmark, marking the third major Titanic exhibition there in 25 years.

faq

Frequently Asked Questions

Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.

USKC CyberSecurity History Information

Official Website of Union Station Kansas City

The official website of Union Station Kansas City is https://www.unionstation.org/.

Union Station Kansas City’s AI-Generated Cybersecurity Score

According to Rankiteo, Union Station Kansas City’s AI-generated cybersecurity score is 763, reflecting their Fair security posture.

How many security badges does Union Station Kansas City’ have ?

According to Rankiteo, Union Station Kansas City currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Union Station Kansas City been affected by any supply chain cyber incidents ?

According to Rankiteo, Union Station Kansas City has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Union Station Kansas City have SOC 2 Type 1 certification ?

According to Rankiteo, Union Station Kansas City is not certified under SOC 2 Type 1.

Does Union Station Kansas City have SOC 2 Type 2 certification ?

According to Rankiteo, Union Station Kansas City does not hold a SOC 2 Type 2 certification.

Does Union Station Kansas City comply with GDPR ?

According to Rankiteo, Union Station Kansas City is not listed as GDPR compliant.

Does Union Station Kansas City have PCI DSS certification ?

According to Rankiteo, Union Station Kansas City does not currently maintain PCI DSS compliance.

Does Union Station Kansas City comply with HIPAA ?

According to Rankiteo, Union Station Kansas City is not compliant with HIPAA regulations.

Does Union Station Kansas City have ISO 27001 certification ?

According to Rankiteo,Union Station Kansas City is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Industry Classification of Union Station Kansas City

Union Station Kansas City operates primarily in the Museums, Historical Sites, and Zoos industry.

Number of Employees at Union Station Kansas City

Union Station Kansas City employs approximately 86 people worldwide.

Subsidiaries Owned by Union Station Kansas City

Union Station Kansas City presently has no subsidiaries across any sectors.

Union Station Kansas City’s LinkedIn Followers

Union Station Kansas City’s official LinkedIn profile has approximately 6,849 followers.

Union Station Kansas City’s Presence on Crunchbase

No, Union Station Kansas City does not have a profile on Crunchbase.

Union Station Kansas City’s Presence on LinkedIn

Yes, Union Station Kansas City maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/union-station-kansas-city.

Cybersecurity Incidents Involving Union Station Kansas City

As of January 22, 2026, Rankiteo reports that Union Station Kansas City has not experienced any cybersecurity incidents.

Number of Peer and Competitor Companies

Union Station Kansas City has an estimated 2,178 peer or competitor companies worldwide.

Union Station Kansas City CyberSecurity History Information

How many cyber incidents has Union Station Kansas City faced ?

Total Incidents: According to Rankiteo, Union Station Kansas City has faced 0 incidents in the past.

What types of cybersecurity incidents have occurred at Union Station Kansas City ?

Incident Types: The types of cybersecurity incidents that have occurred include .

Incident Details

What are the most common types of attacks the company has faced ?

Additional Questions

cve

Latest Global CVEs (Not Company-Specific)

Description

Backstage is an open framework for building developer portals, and @backstage/backend-defaults provides the default implementations and setup for a standard Backstage backend app. Prior to versions 0.12.2, 0.13.2, 0.14.1, and 0.15.0, the `FetchUrlReader` component, used by the catalog and other plugins to fetch content from URLs, followed HTTP redirects automatically. This allowed an attacker who controls a host listed in `backend.reading.allow` to redirect requests to internal or sensitive URLs that are not on the allowlist, bypassing the URL allowlist security control. This is a Server-Side Request Forgery (SSRF) vulnerability that could allow access to internal resources, but it does not allow attackers to include additional request headers. This vulnerability is fixed in `@backstage/backend-defaults` version 0.12.2, 0.13.2, 0.14.1, and 0.15.0. Users should upgrade to this version or later. Some workarounds are available. Restrict `backend.reading.allow` to only trusted hosts that you control and that do not issue redirects, ensure allowed hosts do not have open redirect vulnerabilities, and/or use network-level controls to block access from Backstage to sensitive internal endpoints.

Risk Information
cvss3
Base: 3.5
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N
Description

Backstage is an open framework for building developer portals, and @backstage/cli-common provides config loading functionality used by the backend and command line interface of Backstage. Prior to version 0.1.17, the `resolveSafeChildPath` utility function in `@backstage/backend-plugin-api`, which is used to prevent path traversal attacks, failed to properly validate symlink chains and dangling symlinks. An attacker could bypass the path validation via symlink chains (creating `link1 → link2 → /outside` where intermediate symlinks eventually resolve outside the allowed directory) and dangling symlinks (creating symlinks pointing to non-existent paths outside the base directory, which would later be created during file operations). This function is used by Scaffolder actions and other backend components to ensure file operations stay within designated directories. This vulnerability is fixed in `@backstage/backend-plugin-api` version 0.1.17. Users should upgrade to this version or later. Some workarounds are available. Run Backstage in a containerized environment with limited filesystem access and/or restrict template creation to trusted users.

Risk Information
cvss3
Base: 6.3
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
Description

Backstage is an open framework for building developer portals. Multiple Scaffolder actions and archive extraction utilities were vulnerable to symlink-based path traversal attacks. An attacker with access to create and execute Scaffolder templates could exploit symlinks to read arbitrary files via the `debug:log` action by creating a symlink pointing to sensitive files (e.g., `/etc/passwd`, configuration files, secrets); delete arbitrary files via the `fs:delete` action by creating symlinks pointing outside the workspace, and write files outside the workspace via archive extraction (tar/zip) containing malicious symlinks. This affects any Backstage deployment where users can create or execute Scaffolder templates. This vulnerability is fixed in `@backstage/backend-defaults` versions 0.12.2, 0.13.2, 0.14.1, and 0.15.0; `@backstage/plugin-scaffolder-backend` versions 2.2.2, 3.0.2, and 3.1.1; and `@backstage/plugin-scaffolder-node` versions 0.11.2 and 0.12.3. Users should upgrade to these versions or later. Some workarounds are available. Follow the recommendation in the Backstage Threat Model to limit access to creating and updating templates, restrict who can create and execute Scaffolder templates using the permissions framework, audit existing templates for symlink usage, and/or run Backstage in a containerized environment with limited filesystem access.

Risk Information
cvss3
Base: 7.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:L
Description

FastAPI Api Key provides a backend-agnostic library that provides an API key system. Version 1.1.0 has a timing side-channel vulnerability in verify_key(). The method applied a random delay only on verification failures, allowing an attacker to statistically distinguish valid from invalid API keys by measuring response latencies. With enough repeated requests, an adversary could infer whether a key_id corresponds to a valid key, potentially accelerating brute-force or enumeration attacks. All users relying on verify_key() for API key authentication prior to the fix are affected. Users should upgrade to version 1.1.0 to receive a patch. The patch applies a uniform random delay (min_delay to max_delay) to all responses regardless of outcome, eliminating the timing correlation. Some workarounds are available. Add an application-level fixed delay or random jitter to all authentication responses (success and failure) before the fix is applied and/or use rate limiting to reduce the feasibility of statistical timing attacks.

Risk Information
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
Description

The Flux Operator is a Kubernetes CRD controller that manages the lifecycle of CNCF Flux CD and the ControlPlane enterprise distribution. Starting in version 0.36.0 and prior to version 0.40.0, a privilege escalation vulnerability exists in the Flux Operator Web UI authentication code that allows an attacker to bypass Kubernetes RBAC impersonation and execute API requests with the operator's service account privileges. In order to be vulnerable, cluster admins must configure the Flux Operator with an OIDC provider that issues tokens lacking the expected claims (e.g., `email`, `groups`), or configure custom CEL expressions that can evaluate to empty values. After OIDC token claims are processed through CEL expressions, there is no validation that the resulting `username` and `groups` values are non-empty. When both values are empty, the Kubernetes client-go library does not add impersonation headers to API requests, causing them to be executed with the flux-operator service account's credentials instead of the authenticated user's limited permissions. This can result in privilege escalation, data exposure, and/or information disclosure. Version 0.40.0 patches the issue.

Risk Information
cvss3
Base: 5.3
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Access Data Using Our API

SubsidiaryImage

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=union-station-kansas-city' -H 'apikey: YOUR_API_KEY_HERE'

What Do We Measure ?

revertimgrevertimgrevertimgrevertimg
Incident
revertimgrevertimgrevertimgrevertimg
Finding
revertimgrevertimgrevertimgrevertimg
Grade
revertimgrevertimgrevertimgrevertimg
Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network Security

Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)

Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)

Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat Intelligence

Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Top LeftTop RightBottom LeftBottom Right
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
Users Love Us Badge