What is the official website of VIG / C-QUADRAT TFI ?

The official website of VIG / C-QUADRAT TFI is https://www.vigcq-tfi.pl.

What is VIG / C-QUADRAT TFI's cybersecurity risk score?

VIG / C-QUADRAT TFI has an AI-generated cybersecurity risk score of 745 out of 1000, indicating a Moderate security posture according to Rankiteo's assessment.

How many security incidents has VIG / C-QUADRAT TFI experienced?

According to Rankiteo, VIG / C-QUADRAT TFI currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has VIG / C-QUADRAT TFI been affected by any supply chain cyber incidents ?

According to Rankiteo, VIG / C-QUADRAT TFI has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does VIG / C-QUADRAT TFI have SOC 2 Type 1 certification ?

According to Rankiteo, VIG / C-QUADRAT TFI is not certified under SOC 2 Type 1.

Does VIG / C-QUADRAT TFI have SOC 2 Type 2 certification ?

According to Rankiteo, VIG / C-QUADRAT TFI does not hold a SOC 2 Type 2 certification.

Does VIG / C-QUADRAT TFI comply with GDPR ?

According to Rankiteo, VIG / C-QUADRAT TFI is not listed as GDPR compliant.

Does VIG / C-QUADRAT TFI have PCI DSS certification ?

According to Rankiteo, VIG / C-QUADRAT TFI does not currently maintain PCI DSS compliance.

Does VIG / C-QUADRAT TFI comply with HIPAA ?

According to Rankiteo, VIG / C-QUADRAT TFI is not compliant with HIPAA regulations.

Does VIG / C-QUADRAT TFI have ISO 27001 certification ?

According to Rankiteo,VIG / C-QUADRAT TFI is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does VIG / C-QUADRAT TFI operate in ?

VIG / C-QUADRAT TFI operates primarily in the Investment Management industry.

How many employees does VIG / C-QUADRAT TFI have ?

VIG / C-QUADRAT TFI employs approximately 19 people worldwide.

Does VIG / C-QUADRAT TFI own any subsidiaries ?

VIG / C-QUADRAT TFI presently has no subsidiaries across any sectors.

How many LinkedIn followers does VIG / C-QUADRAT TFI have ?

VIG / C-QUADRAT TFI's official LinkedIn profile has approximately 1,369 followers.

What is the NAICS classification code for VIG / C-QUADRAT TFI ?

VIG / C-QUADRAT TFI is classified under the NAICS code 5239, which corresponds to Other Financial Investment Activities.

Does VIG / C-QUADRAT TFI have a Crunchbase profile ?

No, VIG / C-QUADRAT TFI does not have a profile on Crunchbase.

Does VIG / C-QUADRAT TFI have a LinkedIn profile ?

Yes, VIG / C-QUADRAT TFI maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/vigcq-tfi.

How many cybersecurity incidents has VIG / C-QUADRAT TFI experienced ?

As of June 6, 2026, Rankiteo reports that VIG / C-QUADRAT TFI has not experienced any cybersecurity incidents.

How many peer or competitor companies does VIG / C-QUADRAT TFI have ?

VIG / C-QUADRAT TFI has an estimated 5,340 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

VCT

Boost Score +25 with badge (5 left)

745

/1000

Moderate

770

/1000

Fair

VIG / C-QUADRAT TFI Vendor Cyber Rating & Cyber Score

vigcq-tfi.pl

Add Your Compliance Badge

VIG/C-QUADRAT Towarzystwo Funduszy Inwestycyjnych S.A. to joint venture Vienna Insurance Group i C-Quadrat Investment Group. Naszymi udziałowcami są spółki z grupy VIG w Polsce (Compensa, InterRisk, Vienna Life) oraz największy austriacki prywatny asset manager C-Quadrat. Dostarczamy najwyższej jakości produkty inwestycyjne dające dostęp do globalnych rynków oraz nowoczesnych narzędzi inwestycyjnych. Nasz zespół inwestycyjny posiada wieloletnie doświadczenie oparte o najwyższe standardy inwestycyjne zdobyte w uznanych zespołach zarządzania aktywami.

VCT A.I CyberSecurity Scoring

Scoring History

VCT

VIG / C-QUADRAT TFI CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

VCT Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for VCT

Incidents vs Investment Management Industry Avg (This Year)

No incidents recorded for VIG / C-QUADRAT TFI in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for VIG / C-QUADRAT TFI in 2026.

Incident Types VCT vs Investment Management Industry Avg (This Year)

No incidents recorded for VIG / C-QUADRAT TFI in 2026.

Incident History - VCT (X = Date, Y = Severity)

Loading…

SUBSIDIARY

VIG / C-QUADRAT TFI Subsidiaries

VCT

Investment Management

Website: https://www.vigcq-tfi.pl

Company Size: 19

Vienna Insurance Group (VIG)Insurance

Ray SigortaInsurance

ViennalifeInsurance

[Archived]Insurance

Česká podnikatelská pojišťovna, a.s., Vienna Insurance GroupInsurance

Alfa BiztosítóInsurance

Viennalife Aradığın İş BuradaInsurance

KOOPERATIVA poisťovňa, a. s. VIGInsurance

VIG Asset Management HungaryFinancial Services

Sigma Vienna Insurance GroupInsurance

RETMInsurance

Compensa Life Vienna Insurance Group SE Lietuvos filialasInsurance

KooperativaInsurance

UNION BiztosítóInsurance

Beesafe sp. z o.o.Insurance

BTA draudimasInsurance

Wiener osiguranje Vienna Insurance GroupInsurance

BULSTRAD LIFE VIENNA INSURANCE GROUPInsurance

VIG IT Digital SolutionsIT System Design Services

BULSTRAD VIENNA INSURANCE GROUPInsurance

Doverie - Pension AssurancePension Funds

OMNIASIG Vienna Insurance GroupInsurance

Vienna-Life Lebensversicherung AG Vienna Insurance GroupInsurance

Compensa Vienna Insurance Group ADB Latvijas filiāleInsurance

Claim Expert Services SRLInsurance

Global Assistance PolskaInsurance

MAKEDONIJA osiguruvanje AD Skopje - Vienna Insurance GroupInsurance

InterRisk Versicherungen - Vienna Insurance GroupInsurance

twinformatics GmbHIT Services and IT Consulting

BCR Asigurari de Viata Vienna Insurance GroupInsurance

KOMUNÁLNA poisťovňa, a.s. Vienna Insurance GroupInsurance

Compensa Life Vienna Insurance Group SE Latvian BranchInsurance

Intersig Vienna Insurance GroupInsurance

Seesam Insurance (Compensa Vienna Insurance Group, ADB Estonian Branch)Insurance

ПАТ "СК "УСГ"Insurance

SIGMA VIENNA INSURANCE GROUP, KOSOVO BRANCHInsurance

Donaris Vienna Insurance GroupInsurance

Vienna Insurance Group Management Service SRLIT Services and IT Consulting

Carpathia PensiiPension Funds

VIG ReInsurance

Women Leaders Beyond BordersInsurance

InterRisk TU SA Vienna Insurance GroupInsurance

Compensa PolskaInsurance

viesure innovation center GmbHIT Services and IT Consulting

Wiener osiguranje Vienna Insurance Group d.d.Insurance

Vienna Life InsuranceInsurance

VIG Investor RelationsInsurance

Vienna osiguranje VIGInsurance

Wiener Städtische osiguranje a.d.o. BeogradInsurance

GPI Holding - Vienna Insurance GroupInsurance

ASIROM - Vienna Insurance GroupInsurance

GLOBAL ASSISTANCE a.s.Consumer Services

IRAO - Vienna Insurance GroupInsurance

DONAU Versicherung AG Vienna Insurance GroupInsurance

horizont Personal-, Team- & Organisationsentwicklung GmbhProfessional Training and Coaching

Loading…

VIG / C-QUADRAT TFI Similar Companies

Essar

essar.com

Essar, with an entrepreneurial track record spanning 50+ years, specialises in investing and developing assets to create value in core sectors such as Energy, Infrastructure, Metals & Mining, and Technology & Retail. With a presence in eight countries, Essar generates revenues of US$15 billion and provides employment for over 7,000 people. Over the past five years, Essar has strategically rebalanced its portfolio by monetising some world-class assets. Essar is now positioned to transition its existing assets to a greener regime and invest in businesses driving the transformation of sector landscapes from carbon-centric to a clean energy ecosystem, both nationally and globally. The Group is developing sustainable assets and industry ecosystems, with a particular focus on hydrogen, green mobility, and green steel. Essar Foundation, the CSR arm of Essar, has a rich 50-year heritage of service across India, focusing on areas such as health, education, livelihood, women empowerment, sports, environment, and infrastructure.

Sabanci Holding

sabanci.com

Sabancı Holding is one of Turkey’s leading conglomerate, engaged in a wide variety of business activities through its subsidiaries and affiliates, mainly in the banking, financial services, energy, industrials, building materials and retail sectors. Our Group companies most of which are leaders in their respective sectors. As Sabancı Group, we position ourselves in new economy, with global partnerships, employment for 60 thousand, and reaching more than 40 million people on 5 continents. We invest in energy & climate, material and digital technologies, through an agile global footprint to design a sustainable future with a goal of achieving 'Net Zero' by 2050. We stride confidently towards the future through Sabancı of New Generation culture and our purpose driven, stakeholder oriented, agile and diverse organization. We are committed to ensuring equal rights and opportunities to foster a positive and an inclusive work environment and to contribute to the socio economic development of the community. With tens of thousands of talents, stakeholders and investments in multiple businesses worldwide, what connects us is our purpose: We unite Turkey and the World for a sustainable life with leading enterprises.

Ackermans & van Haaren

avh.be

Ackermans & van Haaren is a diversified group active in 4 core sectors: Marine Engineering & Contracting (DEME, one of the largest dredging companies in the world - CFE, a construction group with headquarters in Belgium), Private Banking (Delen Private Bank, one of the largest independent private asset managers in Belgium, and asset manager JM Finn in the UK - Bank J.Van Breda & C°, niche bank for entrepreneurs and liberal professions in Belgium), Real Estate & Senior Care (Nextensa, a Euronext-listed land and real estate developer focused on Belgium and Luxembourg) and Energy & Resources (SIPEF, an agro-industrial group in tropical agriculture). In 2023, through its share in its participations, the AvH group represented a turnover of 6.5 billion euros and employed 21,887 people. The group concentrates on a limited number of strategic participations with significant potential for growth. The AvH share is part of the BEL20 index, the BEL-ESG index of Euronext Brussels and the European DJ Stoxx 600.

Sonae

sonae.pt

Sonae exists to create a lasting positive impact on businesses, people, communities and on the planet. Managing a diverse portfolio of businesses in retail, financial services, technology, investments, real estate and telecommunications, Sonae makes the most of its expertise and pushes itself to create the future we all want and need. Creating today a better tomorrow, for all.

Odebrecht

novonor.com.br

Founded in 1944, Odebrecht is a Brazilian group with diverse businesses and world-class standards of quality. Its Members, guided by the Group’s own philosophy, the Odebrecht Entrepreneurial Technology (TEO), provide services and manufacture products for clients on five continents. As part of their entrepreneurial responsibility while serving clients and local communities, they contribute to the development of economically prosperous, socially just, environmentally sustainable, politically inclusive and culturally rich societies and countries.

Loading…

NEWS

VIG / C-QUADRAT TFI CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…