Vicarious
Company Details
Linkedin ID:
vicarious-fpc-inc
Website:
Employees number:
141
Number of followers:
10,987
NAICS:
None
Industry Type:
Homepage:
vicarious.com
IP Addresses:
0
Company ID:
VIC_8053324
Scan Status:
In-progress
Vicarious Company CyberSecurity Posture
vicarious.com
The Vicarious business has been acquired by Intrinsic, a robotics software and AI company at Alphabet. Together, we share an exciting mission to unlock the economic and creative potential of industrial robotics for millions of businesses, entrepreneurs and developers. Learn more about the work we will do together at www.intrinsic.ai. — Before joining Intrinsic, Vicarious built a thriving business as a turnkey robotics solutions integrator using AI to automate tasks too complex for traditional automation, by leveraging their deep expertise in neuroscience. Vicarious was founded in 2010 by Scott Phoenix and Dileep George, and backed by over $200M from investors like Jeff Bezos, Elon Musk, Mark Zuckerberg, and Samsung. Its technology has been published in peer-reviewed journals like Science and Science Robotics and featured by the New York Times, Wall Street Journal, MIT, Wired, and more.
Vicarious A.I CyberSecurity Scoring
Vicarious Risk Score (AI oriented)Between 750 and 799
Vicarious
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Vicarious Global Score (TPRM)XXXX
Vicarious
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Vicarious Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Vicarious Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Vicarious
Incidents vs Industrial Automation Industry Average (This Year)
No incidents recorded for Vicarious in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Vicarious in 2025.
Incident Types Vicarious vs Industrial Automation Industry Avg (This Year)
No incidents recorded for Vicarious in 2025.
Incident History — Vicarious (X = Date, Y = Severity)
Vicarious cyber incidents detection timeline including parent company and subsidiaries
Vicarious Company Subsidiaries
The Vicarious business has been acquired by Intrinsic, a robotics software and AI company at Alphabet. Together, we share an exciting mission to unlock the economic and creative potential of industrial robotics for millions of businesses, entrepreneurs and developers. Learn more about the work we will do together at www.intrinsic.ai. — Before joining Intrinsic, Vicarious built a thriving business as a turnkey robotics solutions integrator using AI to automate tasks too complex for traditional automation, by leveraging their deep expertise in neuroscience. Vicarious was founded in 2010 by Scott Phoenix and Dileep George, and backed by over $200M from investors like Jeff Bezos, Elon Musk, Mark Zuckerberg, and Samsung. Its technology has been published in peer-reviewed journals like Science and Science Robotics and featured by the New York Times, Wall Street Journal, MIT, Wired, and more.
Loading...
Vicarious Similar Companies
Concept Components
Concept Components is dedicated to the manufacture and distribution of quality precision machined parts. Our intention is to build a vital and beneficial link between our organization and our domestic and international customers. Our objective is to provide our customers with a knowledgeable and pro
Lanco Integrated
With our problem-solving DNA going back to 1873, Lanco has been advancing in the automation industry since 1984 - expanding our design, build, and integration capabilities - specializing in modular, flexible, powered and free assembly and test systems. Our expertise and unique solutions solve comple
Control Southern
Control Southern is an integrated solutions provider helping manufacturing plants in the Southeast run better, faster, and smarter through automation and customized valve solutions. Our customer base spans multiple industries, including: Pulp and Paper, Power, Chemical, Oil and Gas, Food and Beverag
M.A.C. Solutions (UK) Ltd
M.A.C Solutions is a leading provider of Industrial IT and OT technical products for the connected world. We work with businesses of all sizes to improve their industrial operations through the provision of the optimum software and hardware. Our goal is to connect industrial data and securely presen
American Torch Tip Co.
World's largest manufacturer of welding and cutting consumables. ATTC manufactures over 22,000 parts spanning the MIG, TIG, Plasma, Laser, Oxy-Fuel and Thermal Spray technologies. Since 1940, ATTC has been manufacturing high-quality cutting and welding torches and consumables. Utilizing world-
Oriental Motor
Oriental Motor manufactures various compact fractional HP electric motors, actuators, drivers, and network products for machine builders in many industries while focusing on total service and education. We offer an extensive product line-up of 50,000+ standard products to meet the widest market dem
.png)
Vicarious CyberSecurity News
March 27, 2024 07:00 AM
The Malaysian Bar calls for removal of immunity clause in Cyber Security Bill 2024
The Malaysian Bar has raised concerns over a provision in the Cyber Security Bill 2024, urging the government to eliminate a clause granting immunity.
October 19, 2023 07:00 AM
NY Federal Court Rules CFPB Vicarious Liability Suit Can Proceed
New York federal district court Second Circuit motion to dismiss Consumer Financial Protection Bureau CFPB lawsuit under Consumer Financial...
September 05, 2023 07:00 AM
Privacy and class action intersect: Lessons from ICBC v. Ari
The recent Court of Appeal decision, ICBC v. Ari, has generated widespread interest and debate amongst the privacy and class action community.
July 02, 2023 03:49 PM
Contractual Indemnity and Vicarious Liability
The relationship between employees and an employer plays a vital role in the overall performance and success of an organisation.
May 05, 2023 07:00 AM
Ruling suggests employers may be at greater risk of vicarious liability
Workplaces that condone employees' bad behaviour may be at greater risk of vicarious liability in light of a recent decision from the Supreme Court of British...
January 16, 2023 08:00 AM
Ontario Court of Appeal Limits Application of Tort of Intrusion Upon Seclusion for Cyberattacks
In three recent cases, the Court of Appeal for Ontario effectively curtailed the ability of privacy breach victims to advance claims under...
November 29, 2022 08:00 AM
Court of Appeal for Ontario Limits Intrusion Upon Seclusion Claims in Cybersecurity Cases
On November 25, 2022, in Owsianik v. Equifax Canada Co., 2022 ONCA 813, the Ontario Court of Appeal (Court) held that intrusion upon...
June 07, 2021 06:28 PM
UK Supreme Court ruling on vicarious liability offers limited relief to corporates
The UK's highest court ruled that supermarket chain Morrisons should not be held 'vicariously liable' for the criminal act of an employee who chose to leak the...
August 18, 2020 07:00 AM
Two-fifths of firms have sacked staff for cybersecurity breaches during Covid, poll shows
Almost two-fifths of business decision-makers (39 per cent) have dismissed employees because of a cybersecurity policy breach since the...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Vicarious CyberSecurity History Information
Official Website of Vicarious
The official website of Vicarious is http://vicarious.com.
Vicarious’s AI-Generated Cybersecurity Score
According to Rankiteo, Vicarious’s AI-generated cybersecurity score is 755, reflecting their Fair security posture.
How many security badges does Vicarious’ have ?
According to Rankiteo, Vicarious currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Vicarious have SOC 2 Type 1 certification ?
According to Rankiteo, Vicarious is not certified under SOC 2 Type 1.
Does Vicarious have SOC 2 Type 2 certification ?
According to Rankiteo, Vicarious does not hold a SOC 2 Type 2 certification.
Does Vicarious comply with GDPR ?
According to Rankiteo, Vicarious is not listed as GDPR compliant.
Does Vicarious have PCI DSS certification ?
According to Rankiteo, Vicarious does not currently maintain PCI DSS compliance.
Does Vicarious comply with HIPAA ?
According to Rankiteo, Vicarious is not compliant with HIPAA regulations.
Does Vicarious have ISO 27001 certification ?
According to Rankiteo,Vicarious is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Vicarious
Vicarious operates primarily in the Industrial Automation industry.
Number of Employees at Vicarious
Vicarious employs approximately 141 people worldwide.
Subsidiaries Owned by Vicarious
Vicarious presently has no subsidiaries across any sectors.
Vicarious’s LinkedIn Followers
Vicarious’s official LinkedIn profile has approximately 10,987 followers.
Vicarious’s Presence on Crunchbase
Yes, Vicarious has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/vicarious-systems-inc.
Vicarious’s Presence on LinkedIn
Yes, Vicarious maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/vicarious-fpc-inc.
Cybersecurity Incidents Involving Vicarious
As of November 27, 2025, Rankiteo reports that Vicarious has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Vicarious has an estimated 801 peer or competitor companies worldwide.
Vicarious CyberSecurity History Information
How many cyber incidents has Vicarious faced ?
Total Incidents: According to Rankiteo, Vicarious has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Vicarious ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=vicarious-fpc-inc' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
