WedgeHR
Company Details
Linkedin ID:
wedge-hr
Website:
Employees number:
34
Number of followers:
3,110
NAICS:
5112
Industry Type:
Homepage:
wedgehr.com
IP Addresses:
0
Company ID:
WED_1471877
Scan Status:
In-progress
WedgeHR Company CyberSecurity Posture
wedgehr.com
WedgeHR is a Michigan-based company built on the belief that everyone deserves the chance to be truly seen. We’re creating a candidate-driven hiring platform that helps people share who they are - on their time - and gives hiring teams the insight they need to connect sooner, move faster, and make smarter decisions. Simple by design and powerful in impact, WedgeHR has helped over 1 million candidates engage meaningfully with hundreds of hiring teams. Founded in the Midwest, we’re proud to build diverse teams, strong partnerships, and a more human hiring experience - one connection at a time. Since 2015, we’ve focused on creating meaningful connections - within our own team and across the hiring landscape. No need to worry over scheduling hassles, or travel fees; you can setup and interview wherever and whenever you want. The dream team is just a few clicks away. See what the future of self-service hiring tech is all about.
WedgeHR A.I CyberSecurity Scoring
WedgeHR Risk Score (AI oriented)Between 650 and 699
WedgeHR
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
WedgeHR Global Score (TPRM)XXXX
WedgeHR
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
WedgeHR Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
WedgeHR: WEDGE Holdings Data Breach Investigation
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Recently, WEDGE reported to the Attorney General of the Commonwealth of Massachusetts that the sensitive personal identifiable information in its care may have been compromised. In the sample breach notice provided to the Attorney General of the Commonwealth of Massachusetts, WEDGE does not elaborate on the nature of the security incident that impacted its systems. While the information impacted varies depending on the individual, the type of information potentially exposed includes:4 Name Social Security number Driver’s license information On November 26, 2025, WEDGE began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to Massachusetts residents, WEDGE is providing affected individuals with a list of the specific types of sensitive information impacted and complimentary credit monitoring services. A link to the form breach notification letters that WEDGE filed with the Attorney General of the Commonwealth of Massachusetts is below.
WedgeHR Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for WedgeHR
Incidents vs Software Development Industry Average (This Year)
WedgeHR has 132.56% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
WedgeHR has 56.25% more incidents than the average of all companies with at least one recorded incident.
Incident Types WedgeHR vs Software Development Industry Avg (This Year)
WedgeHR reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — WedgeHR (X = Date, Y = Severity)
WedgeHR cyber incidents detection timeline including parent company and subsidiaries
WedgeHR Company Subsidiaries
WedgeHR is a Michigan-based company built on the belief that everyone deserves the chance to be truly seen. We’re creating a candidate-driven hiring platform that helps people share who they are - on their time - and gives hiring teams the insight they need to connect sooner, move faster, and make smarter decisions. Simple by design and powerful in impact, WedgeHR has helped over 1 million candidates engage meaningfully with hundreds of hiring teams. Founded in the Midwest, we’re proud to build diverse teams, strong partnerships, and a more human hiring experience - one connection at a time. Since 2015, we’ve focused on creating meaningful connections - within our own team and across the hiring landscape. No need to worry over scheduling hassles, or travel fees; you can setup and interview wherever and whenever you want. The dream team is just a few clicks away. See what the future of self-service hiring tech is all about.
Loading...
WedgeHR Similar Companies
SAP is the leading enterprise application and business AI company. We stand at the intersection of business and technology, where our innovations are designed to directly address real business challenges and produce real-world impacts. Our solutions are the backbone for the world’s most complex and
Intuit
Intuit is a global technology platform that helps our customers and communities overcome their most important financial challenges. Serving millions of customers worldwide with TurboTax, QuickBooks, Credit Karma and Mailchimp, we believe that everyone should have the opportunity to prosper and we wo
Meta
Meta's mission is to build the future of human connection and the technology that makes it possible. Our technologies help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further e
The Bosch Group is a leading global supplier of technology and services. It employs roughly 417,900 associates worldwide (as of December 31, 2024). According to preliminary figures, the company generated sales of 90.5 billion euros in 2024. Its operations are divided into four business sectors: Mobi
Cox Automotive Inc.
Cox Automotive is the world’s largest automotive services and technology provider. Fueled by the largest breadth of first-party data fed by 2.3 billion online interactions a year, Cox Automotive tailors leading solutions for car shoppers, auto manufacturers, dealers, lenders and fleets. The company
DiDi
DiDi Global Inc. is a leading mobility technology platform. It offers a wide range of app-based services across Asia Pacific, Latin America, and other global markets, including ride hailing, taxi hailing, designated driving, hitch and other forms of shared mobility as well as certain energy and vehi
Dassault Systèmes
Dassault Systèmes is a catalyst for human progress. Since 1981, the company has pioneered virtual worlds to improve real life for consumers, patients and citizens. With Dassault Systèmes’ 3DEXPERIENCE platform, 370,000 customers of all sizes, in all industries, can collaborate, imagine and create
Thomson Reuters
Thomson Reuters is the world’s leading provider of news and information-based tools to professionals. Our worldwide network of journalists and specialist editors keep customers up to speed on global developments, with a particular focus on legal, regulatory and tax changes. Our customers operat
HubSpot
HubSpot is a leading CRM platform that provides software and support to help businesses grow better. Our platform includes marketing, sales, service, and website management products that start free and scale to meet our customers’ needs at any stage of growth. Today, thousands of customers around th
.png)
WedgeHR CyberSecurity News
December 02, 2025 12:46 AM
Holiday shopping season sees rise in online scams
As holiday shopping increases, experts warn of a surge in online scams targeting distracted consumers, emphasizing the importance of...
December 02, 2025 12:25 AM
Press Release: Senator Hassan and Senator Cornyn Introduce Bipartisan Bill to Reauthorize Cybersecurity Grant Program
Senators Hassan and Cornyn introduced a bipartisan bill to reauthorize the state and local cybersecurity grant program.
December 02, 2025 12:22 AM
President Trump signs Mullin's bill aimed at boosting 988 Lifeline cybersecurity
President Donald Trump has signed a bill proposed by Oklahoma Senator Markwayne Mullin on Monday.The 988 Lifeline Cybersecurity...
December 01, 2025 11:31 PM
Spire to build eight satellites for Deloitte’s on-orbit cybersecurity program
WASHINGTON — Spire Global has secured a contract from Deloitte to design, build and operate eight satellites that will support the...
December 01, 2025 11:27 PM
Cybersecurity experts warn holiday shoppers of rising online scams
As holiday shopping ramps up, cybersecurity experts are urging consumers to stay vigilant. They say scammers are already taking advantage of...
December 01, 2025 10:43 PM
As the holiday approaches, cybersecurity professional discusses the potential dangers of AI toys
As the gifting season draws near, children across the region are busy making their Christmas lists. This year, some lists may include AI...
December 01, 2025 10:35 PM
Bloomberg Businessweek Daily: Cybersecurity Tools
Cybersecurity giant Zscaler is a pioneer and global leader in zero trust security. Many of the world's largest businesses,...
December 01, 2025 10:27 PM
Press Release: Deluzio and Valadao Reintroduce SECURE IT Act to Enhance Election Cybersecurity
Congressmen Deluzio and Valadao reintroduced the SECURE IT Act to enhance election cybersecurity through mandatory testing.
December 01, 2025 10:20 PM
Cybersecurity regulations assume a security posture for Level 0 devices that do not exist
The fundamental cybersecurity vulnerabilities of Level 0 process sensors in industrial systems.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
WedgeHR CyberSecurity History Information
Official Website of WedgeHR
The official website of WedgeHR is https://wedgehr.com.
WedgeHR’s AI-Generated Cybersecurity Score
According to Rankiteo, WedgeHR’s AI-generated cybersecurity score is 687, reflecting their Weak security posture.
How many security badges does WedgeHR’ have ?
According to Rankiteo, WedgeHR currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does WedgeHR have SOC 2 Type 1 certification ?
According to Rankiteo, WedgeHR is not certified under SOC 2 Type 1.
Does WedgeHR have SOC 2 Type 2 certification ?
According to Rankiteo, WedgeHR does not hold a SOC 2 Type 2 certification.
Does WedgeHR comply with GDPR ?
According to Rankiteo, WedgeHR is not listed as GDPR compliant.
Does WedgeHR have PCI DSS certification ?
According to Rankiteo, WedgeHR does not currently maintain PCI DSS compliance.
Does WedgeHR comply with HIPAA ?
According to Rankiteo, WedgeHR is not compliant with HIPAA regulations.
Does WedgeHR have ISO 27001 certification ?
According to Rankiteo,WedgeHR is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of WedgeHR
WedgeHR operates primarily in the Software Development industry.
Number of Employees at WedgeHR
WedgeHR employs approximately 34 people worldwide.
Subsidiaries Owned by WedgeHR
WedgeHR presently has no subsidiaries across any sectors.
WedgeHR’s LinkedIn Followers
WedgeHR’s official LinkedIn profile has approximately 3,110 followers.
NAICS Classification of WedgeHR
WedgeHR is classified under the NAICS code 5112, which corresponds to Software Publishers.
WedgeHR’s Presence on Crunchbase
No, WedgeHR does not have a profile on Crunchbase.
WedgeHR’s Presence on LinkedIn
Yes, WedgeHR maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/wedge-hr.
Cybersecurity Incidents Involving WedgeHR
As of December 02, 2025, Rankiteo reports that WedgeHR has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
WedgeHR has an estimated 26,999 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at WedgeHR ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
A weakness has been identified in codingWithElias School Management System up to f1ac334bfd89ae9067cc14dea12ec6ff3f078c01. Affected is an unknown function of the file /student-view.php of the component Edit Student Info Page. This manipulation of the argument First Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 3.3
Severity: LOW
AV:N/AC:L/Au:M/C:N/I:P/A:N
cvss3
Base: 2.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
By providing a command-line argument starting with a semi-colon ; to an API endpoint created by the EnhancedCommandExecutor class of the HexStrike AI MCP server, the resultant composed command is executed directly in the context of the MCP server’s normal privilege; typically, this is root. There is no attempt to sanitize these arguments in the default configuration of this MCP server at the affected version (as of commit 2f3a5512 in September of 2025).
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
A weakness has been identified in winston-dsouza Ecommerce-Website up to 87734c043269baac0b4cfe9664784462138b1b2e. Affected by this issue is some unknown functionality of the file /includes/header_menu.php of the component GET Parameter Handler. Executing manipulation of the argument Error can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be exploited. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security flaw has been discovered in Qualitor 8.20/8.24. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing manipulation of the argument passageiros results in code injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=wedge-hr' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
