WWL
Company Details
Linkedin ID:
weta-workshop-ltd
Website:
Employees number:
297
Number of followers:
29,859
NAICS:
None
Industry Type:
Homepage:
wetaworkshop.com
IP Addresses:
0
Company ID:
WĒT_3656853
Scan Status:
In-progress
Wētā Workshop Ltd Company CyberSecurity Posture
wetaworkshop.com
Wētā Workshop brings imaginary worlds to life by delivering concept design, physical effects, collectables, immersive visitor experiences and games to the world’s entertainment and creative industries. Housed under one roof are the equipment, technology, infrastructure, creativity and capacity to design and create anything and everything, from whole worlds to weapons, creatures to costumes, prosthetics to miniatures, and so much more. Services Our 65,000 square foot facility offers: • 3D modelling • 3D printing • Costume and leatherworking • Consumer products • Design • Electronics and animatronics • Engineering and metal shop • Hair • Imaging • Make-up, prosthetics and creatures • Blacksmithing • Sculpting • Technology and innovation • Tourism • Weapons • Publishing • Miniatures, model making and props • Moulding • Paint shop • Video games • Location-based experiences Established by Richard Taylor and Tania Rodger in 1987, we are best known for our screen work on The Lord of the Rings trilogy, Avatar, and Dune, our immersive visitor experiences, Gallipoli: The Scale of our War, Expo 2020 Dubai’s Mobility Pavilion and Wētā Workshop Unleashed. Based in Wellington, New Zealand, Wētā Workshop’s ground-breaking work has earned us multiple international awards.
Wētā Workshop Ltd A.I CyberSecurity Scoring
WWL Risk Score (AI oriented)Between 750 and 799
WWL
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
WWL Global Score (TPRM)XXXX
WWL
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
WWL Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
WWL Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for WWL
Incidents vs Movies, Videos, and Sound Industry Average (This Year)
No incidents recorded for Wētā Workshop Ltd in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Wētā Workshop Ltd in 2025.
Incident Types WWL vs Movies, Videos, and Sound Industry Avg (This Year)
No incidents recorded for Wētā Workshop Ltd in 2025.
Incident History — WWL (X = Date, Y = Severity)
WWL cyber incidents detection timeline including parent company and subsidiaries
WWL Company Subsidiaries
Wētā Workshop brings imaginary worlds to life by delivering concept design, physical effects, collectables, immersive visitor experiences and games to the world’s entertainment and creative industries. Housed under one roof are the equipment, technology, infrastructure, creativity and capacity to design and create anything and everything, from whole worlds to weapons, creatures to costumes, prosthetics to miniatures, and so much more. Services Our 65,000 square foot facility offers: • 3D modelling • 3D printing • Costume and leatherworking • Consumer products • Design • Electronics and animatronics • Engineering and metal shop • Hair • Imaging • Make-up, prosthetics and creatures • Blacksmithing • Sculpting • Technology and innovation • Tourism • Weapons • Publishing • Miniatures, model making and props • Moulding • Paint shop • Video games • Location-based experiences Established by Richard Taylor and Tania Rodger in 1987, we are best known for our screen work on The Lord of the Rings trilogy, Avatar, and Dune, our immersive visitor experiences, Gallipoli: The Scale of our War, Expo 2020 Dubai’s Mobility Pavilion and Wētā Workshop Unleashed. Based in Wellington, New Zealand, Wētā Workshop’s ground-breaking work has earned us multiple international awards.
Loading...
WWL Similar Companies
Make The Work
HANDS-ON CREATIVE AND PRODUCTION STUDIO. WE BELIEVE IN NARRATIVE AS THE BEST WAY TO CONNECT WITH YOUR AUDIENCE. PEOPLE LOVE STORIES. TOUCHING UPON A HUMAN TRUTH MAKES YOU MEMORABLE, AND INTRINSICALLY CONNECTS YOU TO THE AUDIENCE ON A DEEPER LEVEL. WE CAN WORK THROUGH CONCEPT, SHOOT, AND EDIT. DOCUME
Home Entertainment Group
Entertainment at Home magazine has been published by Home Entertainment Group since 1986. HEG has more than 25 years experience branding and advertising the Film Industry to retail consumers and is one of the largest publishers in North America for home entertainment supplements that retailers hando
Louis Black Productions
LOUIS BLACK PRODUCTIONS Cultural Arts | Film Preservation & Production | Politics & Public Affairs | Austin Music Awards LOUIS BLACK, President and Founder Louis co-founded The Austin Chronicle, South by Southwest, and was a founding board member of the Austin Film Society. He has written ext
Revolution Pictures
Revolution Pictures was started by Randy Brewer in 1997 where frosted tips, rockin’ a Space Jam VHS, and singing along to “Semi-Charmed Life” were the rage. Like all startups, we hustled; we cultivated our creativity and ventured into mainstream country and pop music videos. We smashed car windows w
The Mobile Film Classroom
The Mobile Film Classroom (MFC) aims to develop the next generation of storytellers by bringing digital media training to underserved youth to increase diversity in the fields of media, entertainment, and technology. We value voices that bring different perspectives and life experiences, in the powe
MIle High Horror Film Festival
The Mile High Horror Film Festival was established in 2010 and is now one of the largest genre film festivals in the world. It features the very best in horror, thriller, and sci-fi film programming. Future MHHFF events and screenings are TBA. We are recognized as one of "the top 5 coolest" Horro
.png)
WWL CyberSecurity News
December 21, 2025 10:24 AM
The Top 26 Security Predictions for 2026 (Part 1)
What cyber trends and predictions are coming for 2026? Here's your annual security industry prediction report roundup for the new year,...
December 21, 2025 09:40 AM
Cybersecurity For Medical Machine Market Hits New High | Major
Press release - HTF Market Intelligence Consulting Pvt. Ltd. - Cybersecurity For Medical Machine Market Hits New High | Major Giants Sophos,...
December 21, 2025 09:01 AM
Cybersecurity platforms outperformed in 2025. Can anyone else win next year?
Investing.com - Shares of many cybersecurity companies have surged this year, as artificial intelligence powers a new wave of digital...
December 21, 2025 08:16 AM
Vantage Markets recognised for real-time threat intelligence collaboration with Trend Micro
PRNewswire/ -- Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, today announced that Vantage Markets has been...
December 21, 2025 07:50 AM
Aflac: 22.6M impacted in cybersecurity breach
Aflac Inc., a Fortune 500 company that provides supplemental insurance products, has advised its customers to take "appropriate steps to protect their...
December 21, 2025 06:41 AM
Purdue University Northwest earns national recognition for cybersecurity education
Purdue University Northwest earns national recognition for cybersecurity education, career preparation. HAMMOND and WESTVILLE, Ind. — Purdue...
December 21, 2025 05:03 AM
One-week cybersecurity bootcamp begins at GDC Baramulla
21(KNS): A One Week Bootcamp on “Next-Generation Security Challenges in Distributed Wireless Ecosystems” was inaugurated today at Government...
December 21, 2025 04:40 AM
Israeli Cybersecurity Startups Hit Record $4.4B in Funding as Global VCs Take the Lead
Israeli cybersecurity startups raised a record $4.4 billion across 130 funding rounds in 2025, according to YL Ventures' 10th annual State...
December 21, 2025 12:58 AM
6 Major Cybersecurity Innovations Reshaping Digital Protection
Cybersecurity used to mean installing antivirus software and setting up a firewall. Those days are over. Today's hackers use methods that...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
WWL CyberSecurity History Information
Official Website of Wētā Workshop Ltd
The official website of Wētā Workshop Ltd is http://www.wetaworkshop.com.
Wētā Workshop Ltd’s AI-Generated Cybersecurity Score
According to Rankiteo, Wētā Workshop Ltd’s AI-generated cybersecurity score is 757, reflecting their Fair security posture.
How many security badges does Wētā Workshop Ltd’ have ?
According to Rankiteo, Wētā Workshop Ltd currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Wētā Workshop Ltd have SOC 2 Type 1 certification ?
According to Rankiteo, Wētā Workshop Ltd is not certified under SOC 2 Type 1.
Does Wētā Workshop Ltd have SOC 2 Type 2 certification ?
According to Rankiteo, Wētā Workshop Ltd does not hold a SOC 2 Type 2 certification.
Does Wētā Workshop Ltd comply with GDPR ?
According to Rankiteo, Wētā Workshop Ltd is not listed as GDPR compliant.
Does Wētā Workshop Ltd have PCI DSS certification ?
According to Rankiteo, Wētā Workshop Ltd does not currently maintain PCI DSS compliance.
Does Wētā Workshop Ltd comply with HIPAA ?
According to Rankiteo, Wētā Workshop Ltd is not compliant with HIPAA regulations.
Does Wētā Workshop Ltd have ISO 27001 certification ?
According to Rankiteo,Wētā Workshop Ltd is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Wētā Workshop Ltd
Wētā Workshop Ltd operates primarily in the Movies, Videos, and Sound industry.
Number of Employees at Wētā Workshop Ltd
Wētā Workshop Ltd employs approximately 297 people worldwide.
Subsidiaries Owned by Wētā Workshop Ltd
Wētā Workshop Ltd presently has no subsidiaries across any sectors.
Wētā Workshop Ltd’s LinkedIn Followers
Wētā Workshop Ltd’s official LinkedIn profile has approximately 29,859 followers.
NAICS Classification of Wētā Workshop Ltd
Wētā Workshop Ltd is classified under the NAICS code None, which corresponds to Others.
Wētā Workshop Ltd’s Presence on Crunchbase
No, Wētā Workshop Ltd does not have a profile on Crunchbase.
Wētā Workshop Ltd’s Presence on LinkedIn
Yes, Wētā Workshop Ltd maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/weta-workshop-ltd.
Cybersecurity Incidents Involving Wētā Workshop Ltd
As of December 21, 2025, Rankiteo reports that Wētā Workshop Ltd has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Wētā Workshop Ltd has an estimated 1,804 peer or competitor companies worldwide.
Wētā Workshop Ltd CyberSecurity History Information
How many cyber incidents has Wētā Workshop Ltd faced ?
Total Incidents: According to Rankiteo, Wētā Workshop Ltd has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Wētā Workshop Ltd ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating the requesting user. Due to improper privilege handling and a time-of-check time-of-use race condition combined with symbolic link and mount point manipulation, a local authenticated attacker can coerce the service into deleting arbitrary directories with SYSTEM privileges. This can be exploited to delete protected system folders such as C:\\Config.msi and subsequently achieve execution as NT AUTHORITY\\SYSTEM via MSI rollback techniques.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to unauthorized modification of data due to a missing capability check on the 'cs_update_application_status_callback' function in all versions up to, and including, 7.7. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject cross-site scripting into the 'status' parameter of applied jobs for any user.
Risk Information
cvss3
Base: 7.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.7 via the 'cs_update_application_status_callback' due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Candidate-level access and above, to send a site-generated email with injected HTML to any user.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Description
The FiboSearch – Ajax Search for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `thegem_te_search` shortcode in all versions up to, and including, 1.32.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This vulnerability requires TheGem theme (premium) to be installed with Header Builder mode enabled, and the FiboSearch "Replace search bars" option enabled for TheGem integration.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
References
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L104
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L94
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3420841%40ajax-search-for-woocommerce%2Ftrunk&old=3398612%40ajax-search-for-woocommerce%2Ftrunk&sfp_email=&sfph_mail=#file136
- https://wordpress.org/plugins/ajax-search-for-woocommerce
- https://www.wordfence.com/threat-intel/vulnerabilities/id/8149103e-105d-401d-8a15-b07d131baaac?source=cve
Description
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajax_get_members function. This is due to the use of a predictable low-entropy token (5 hex characters derived from md5 of post ID) to identify member directories and insufficient authorization checks on the unauthenticated AJAX endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, display names, user roles (including administrator accounts), profile URLs, and user IDs by enumerating predictable directory_id values or brute-forcing the small 16^5 token space.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
References
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/class-functions.php#L41
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-ajax-common.php#L61
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L205
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L2795
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/templates/members.php#L26
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3421362%40ultimate-member%2Ftrunk&old=3408617%40ultimate-member%2Ftrunk&sfp_email=&sfph_mail=
- https://www.wordfence.com/threat-intel/vulnerabilities/id/61337d2d-d15a-45f2-b730-fc034eb3cd31?source=cve
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=weta-workshop-ltd' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
