France Travail
Company Details
Linkedin ID:
francetravail
Employees number:
50,801
Number of followers:
1,354,447
NAICS:
92
Industry Type:
Homepage:
francetravail.fr
IP Addresses:
0
Company ID:
FRA_6314703
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
France Travail Vendor Cyber Rating & Cyber Score
francetravail.frFrance Travail est un acteur majeur du marché de l’emploi en France où il s’investit pour faciliter le retour à l’emploi des demandeurs d’emploi et offrir aux entreprises des réponses adaptées à leurs besoins de recrutement. Les 55 000 collaborateurs de France Travail œuvrent au quotidien pour être le trait d’union entre les demandeurs d’emploi et les entreprises. France Travail is a key player in the French employment market. Its role is to help the unemployed find work and support companies to fulfil their recruitment requirements. Day-to-day, France Travail's 55,000 staff provides that vital link between job seekers and companies.
France Travail A.I CyberSecurity Scoring
France Travail Risk Score (AI oriented)Between 700 and 749
France Travail
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
France Travail Global Score (TPRM)XXXX
France Travail
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
France Travail Company CyberSecurity News & History
Past Incidents
3
Attack Types
3
France Travail
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: France Travail, the French employment agency, experienced a data breach affecting 340,000 users. Personal data, including names, addresses, phone numbers, and jobseeker statuses, were exposed. The breach was caused by an infostealer malware compromising a user account linked to a training organization. The agency assured that passwords and bank details were not affected but warned users about phishing risks. This is the second breach in two years for France Travail.
France Travail
Cyber Attack
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: France Travail suffered a cyberattack attributed to the Russian cybercriminal group Stormous, resulting in the theft of personal data from 31,000 job seekers. The attackers exploited infostealer malware installed on victims' personal computers to harvest login credentials, enabling unauthorized access to France Travail’s systems. Compromised data includes names, dates of birth, addresses, phone numbers, emails, passwords, ID cards, bank statements, tax notices, social security records, and professional histories (contracts, skills, training). While France Travail acknowledges the breach, it cannot confirm the full scope of exposed data or the exact number of affected individuals. The stolen information poses risks of phishing, identity theft, and financial fraud. This incident follows prior breaches in July 2025 (340,000 records) and March 2024 (43 million records), highlighting persistent vulnerabilities in the agency’s security posture. France Travail advises users to strengthen password security but has not mandated password resets.
Pôle emploi
Data Leak
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: The federal unemployment registration and financial help organisation in France, Pôle emploi, has suffered a data breach that compromised the personal information of 10 million people. The exposed information includes full names and social security numbers, while email addresses, phone numbers, passwords, and banking data have not been affected by this data leak. Job searchers are advised to feel secure using their passwords to log into the online employment portal at "pole-employment.fr" because the agency has made it clear that the occurrence has no effect on its financial aid programmes. The organisation has also established a special phone support line to address any queries or worries that anyone who were exposed might have regarding the occurrence.
France Travail Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for France Travail
Incidents vs Government Administration Industry Average (This Year)
No incidents recorded for France Travail in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for France Travail in 2026.
Incident Types France Travail vs Government Administration Industry Avg (This Year)
No incidents recorded for France Travail in 2026.
Incident History — France Travail (X = Date, Y = Severity)
France Travail cyber incidents detection timeline including parent company and subsidiaries
France Travail Company Subsidiaries
France Travail est un acteur majeur du marché de l’emploi en France où il s’investit pour faciliter le retour à l’emploi des demandeurs d’emploi et offrir aux entreprises des réponses adaptées à leurs besoins de recrutement. Les 55 000 collaborateurs de France Travail œuvrent au quotidien pour être le trait d’union entre les demandeurs d’emploi et les entreprises. France Travail is a key player in the French employment market. Its role is to help the unemployed find work and support companies to fulfil their recruitment requirements. Day-to-day, France Travail's 55,000 staff provides that vital link between job seekers and companies.
Loading...
France Travail Similar Companies
Queensland Government
ABOUT US We are the largest and most diverse organisation in our state. We have more than 90 government departments and organisations delivering for Queensland across 4000+ locations, from the Torres Strait to the Gold Coast; Mount Isa to Brisbane. This page is monitored by Queensland Government emp
Year after year, the Commonwealth of Massachusetts has continued to pioneer bold legislative actions and programs, some of which have been embraced on a national scale. We are always looking for talented individuals to help us maintain this momentum and improve the services that millions of people d
Council Careers Victoria
Victorian local government jobs offer opportunities for people with diverse skills. The sector delivers more than 100 services and employs staff in the areas of health and community care, corporate and business support, engineering, planning and community development, and environment and emergency m
County of Santa Clara
The County of Santa Clara is located at the southern end of the San Francisco Bay and encompasses 1,312 square miles. It has one of the highest median family incomes in the country, and a wide diversity of cultures, backgrounds and talents. The County of Santa Clara continues to attract people fro
State of Indiana
State government is more than senators, representatives, and elected officials. We build highways, provide drivers licenses, protect our children and vulnerable populations, create jobs, connect Hoosiers to job opportunities, maintain state parks, train law enforcement officers, and we run museums
City of Toronto
The City of Toronto is committed to fostering a positive and progressive workplace culture, and strives to build a workforce that reflects the citizens it serves. We are committed to building a high performing public service, with strong and effective leaders to enable service excellence, through hi
Internal Revenue Service
Welcome to the Internal Revenue Service’s official LinkedIn account. Here, you will find the latest and greatest news and updates for taxpayers to help them understand and meet their tax responsibilities. Also, this is a place to learn about a meaningful career with the IRS. Check out the tabs above
South African Revenue Service (SARS)
Its main functions are to: collect and administer all national taxes, duties and levies; collect revenue that may be imposed under any other legislation, as agreed on between SARS and an organ of state or institution entitled to the revenue; provide protection against the illegal importation
Swiss Federal Administration
Seven departments, the Federal Chancellery and around 70 administrative units make up the Federal Administration. With around 38,000 employees, we are one of the largest employers in Switzerland. Everyone who works for the Federal Administration actively contributes to Switzerland's well-being and
.png)
France Travail CyberSecurity News
February 19, 2026 08:00 AM
Another bombshell in France: hacker pilfers data from 1.2 million bank accounts
According to the French Economy Ministry, simply gaining access to the database doesn't translate into the ability to check bank account...
February 15, 2026 08:00 AM
Number of data breaches & victims U.S. 2025
In 2025, the number of data compromises in the United States stood at 3322 cases.
February 01, 2026 08:00 AM
Week in review: Microsoft fixes exploited Office zero-day, Fortinet patches FortiCloud SSO flaw
Here's an overview of some of last week's most interesting news, articles, interviews and videos: When open science meets real-world...
January 30, 2026 08:00 AM
Cybersecurity News: France fines unemployment agency, Teams flags calls, UK pushes deterrence
The French data protection authority has fined the country's national employment agency France Travail (formerly known as Pôle Emploi) a sum...
January 30, 2026 08:00 AM
France fines employment agency €5 million for data breach affecting 43 million
As reported by Bleeping Computer, France's data protection authority has fined the national employment agency, France Travail, €5 million...
January 30, 2026 08:00 AM
Nice Airport launches major recruitment drive: more than 300 jobs up for grabs at job dating event
On 3 February, a recruitment event offering an alternative to traditional job applications will take place at Terminal 1.
January 30, 2026 08:00 AM
France: CNIL fines France Travail €5M for data security failures
CNIL fined France Travail €5 million for failing to secure personal data, affecting over 36.8 million individuals.
January 30, 2026 08:00 AM
French public office hit with €5 million CNIL fine after massive data leak
The large-scale breach prompted CNIL to fine France Travail, underlining the rising cyber risks facing publicly funded digital services...
January 29, 2026 08:00 AM
French government agency fined nearly $6 million for data security failings
The French data protection authority fined the country's national employment agency nearly $6 million for poor data security.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
France Travail CyberSecurity History Information
Official Website of France Travail
The official website of France Travail is https://www.francetravail.fr/accueil/.
France Travail’s AI-Generated Cybersecurity Score
According to Rankiteo, France Travail’s AI-generated cybersecurity score is 717, reflecting their Moderate security posture.
How many security badges does France Travail’ have ?
According to Rankiteo, France Travail currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has France Travail been affected by any supply chain cyber incidents ?
According to Rankiteo, France Travail has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does France Travail have SOC 2 Type 1 certification ?
According to Rankiteo, France Travail is not certified under SOC 2 Type 1.
Does France Travail have SOC 2 Type 2 certification ?
According to Rankiteo, France Travail does not hold a SOC 2 Type 2 certification.
Does France Travail comply with GDPR ?
According to Rankiteo, France Travail is not listed as GDPR compliant.
Does France Travail have PCI DSS certification ?
According to Rankiteo, France Travail does not currently maintain PCI DSS compliance.
Does France Travail comply with HIPAA ?
According to Rankiteo, France Travail is not compliant with HIPAA regulations.
Does France Travail have ISO 27001 certification ?
According to Rankiteo,France Travail is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of France Travail
France Travail operates primarily in the Government Administration industry.
Number of Employees at France Travail
France Travail employs approximately 50,801 people worldwide.
Subsidiaries Owned by France Travail
France Travail presently has no subsidiaries across any sectors.
France Travail’s LinkedIn Followers
France Travail’s official LinkedIn profile has approximately 1,354,447 followers.
NAICS Classification of France Travail
France Travail is classified under the NAICS code 92, which corresponds to Public Administration.
France Travail’s Presence on Crunchbase
No, France Travail does not have a profile on Crunchbase.
France Travail’s Presence on LinkedIn
Yes, France Travail maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/francetravail.
Cybersecurity Incidents Involving France Travail
As of April 03, 2026, Rankiteo reports that France Travail has experienced 3 cybersecurity incidents.
Number of Peer and Competitor Companies
France Travail has an estimated 12,425 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at France Travail ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach, Cyber Attack and Data Leak.
How does France Travail detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with established a special phone support line to address queries or concerns., and and containment measures with services shut down, and remediation measures with strengthened security measures, accelerated rollout of 2fa, and recovery measures with services expected to be reactivated on july 24, and communication strategy with notified affected individuals, public statement, and and containment measures with enquête interne en cours, and remediation measures with rappel aux utilisateurs sur la robustesse des mots de passe, and communication strategy with confirmation publique de l'incident via tech & co..
Incident Details
Can you provide details on each incident ?
Title: Pôle emploi Data Breach
Description: The federal unemployment registration and financial help organisation in France, Pôle emploi, has suffered a data breach that compromised the personal information of 10 million people. The exposed information includes full names and social security numbers, while email addresses, phone numbers, passwords, and banking data have not been affected by this data leak.
Type: Data Breach
Title: France Travail Data Breach
Description: The French employment agency, France Travail, has suffered a data breach that could affect hundreds of thousands of jobseekers. The agency sent an email to its users on July 22, warning them of a data breach that was detected on July 13 on its 'employment' portal, which is used by its partners.
Date Detected: 2023-07-13
Date Publicly Disclosed: 2023-07-22
Type: Data Breach
Attack Vector: Infostealer Malware
Vulnerability Exploited: User account compromise
Title: Cyberattaque et vol de données chez France Travail affectant 31 000 demandeurs d'emploi
Description: France Travail a subi une cyberattaque revendiquée par le groupe Stormous, compromettant les données personnelles d'environ 31 000 demandeurs d'emploi. Les pirates affirment avoir accédé à des informations sensibles telles que les noms, adresses, numéros de téléphone, cartes d'identité, relevés bancaires, avis d'imposition et données professionnelles. L'attaque a été réalisée via des logiciels malveillants (infostealers) installés sur les ordinateurs personnels des victimes, permettant un accès légitime au système de France Travail.
Date Detected: 2025-10-29
Date Publicly Disclosed: 2025-10-29
Type: cyberattaque
Attack Vector: logiciels malveillants (infostealers)accès légitime via credentials volés
Vulnerability Exploited: faiblesse des mots de passe utilisateursmanque de protection des terminaux personnels
Threat Actor: Stormous (groupe cybercriminel d'origine russe)
Motivation: vol de donnéesrevente sur le dark webphishing futur
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through User account compromise via infostealer malware and ordinateurs personnels des demandeurs d'emploi (via infostealers).
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach PLE3454923
Data Compromised: Full names, Social security numbers
Incident : Data Breach FRA242072325
Data Compromised: Personal data of 340,000 users including names, postal and email addresses, phone numbers, France Travail identifiers, and jobseeker statuses
Systems Affected: KairosEmployment portal
Downtime: Services shut down on July 12, expected to be reactivated on July 24
Incident : cyberattaque FRA2692726102925
Systems Affected: système d'information de France Travail (accès via comptes utilisateurs compromis)
Operational Impact: enquête en cours
Brand Reputation Impact: risque élevé (récidive après incidents de 2024 et juillet 2025)
Identity Theft Risk: élevé (données sensibles exposées)
Payment Information Risk: élevé (relevés bancaires et avis d'imposition compromis)
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Full Names, Social Security Numbers, , Names, postal and email addresses, phone numbers, France Travail identifiers, jobseeker statuses, Noms D'Utilisateurs, Mots De Passe, Noms Complets, Dates De Naissance, Adresses, Numéros De Téléphone, Emails, Cartes D'Identité, Relevés D'Identité Bancaire, Avis D'Imposition, Attestations De Sécurité Sociale, Formations, Contrats De Travail, Compétences Professionnelles, Parcours Professionnels and .
Which entities were affected by each incident ?
Incident : Data Breach PLE3454923
Entity Name: Pôle emploi
Entity Type: Organization
Industry: Government
Location: France
Customers Affected: 10 million
Incident : Data Breach FRA242072325
Entity Name: France Travail
Entity Type: Employment Agency
Industry: Employment Services
Location: France
Customers Affected: 340000
Incident : cyberattaque FRA2692726102925
Entity Name: France Travail
Entity Type: agence gouvernementale
Industry: emploi et services publics
Location: France
Customers Affected: 31 000 (estimé)
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach PLE3454923
Communication Strategy: Established a special phone support line to address queries or concerns.
Incident : Data Breach FRA242072325
Containment Measures: Services shut down
Remediation Measures: Strengthened security measures, accelerated rollout of 2FA
Recovery Measures: Services expected to be reactivated on July 24
Communication Strategy: Notified affected individuals, public statement
Incident : cyberattaque FRA2692726102925
Incident Response Plan Activated: True
Containment Measures: enquête interne en cours
Remediation Measures: rappel aux utilisateurs sur la robustesse des mots de passe
Communication Strategy: confirmation publique de l'incident via Tech & Co
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach PLE3454923
Type of Data Compromised: Full names, Social security numbers
Number of Records Exposed: 10 million
Sensitivity of Data: High
Personally Identifiable Information: full namessocial security numbers
Incident : Data Breach FRA242072325
Type of Data Compromised: Names, postal and email addresses, phone numbers, France Travail identifiers, jobseeker statuses
Number of Records Exposed: 340000
Sensitivity of Data: Personal data
Incident : cyberattaque FRA2692726102925
Type of Data Compromised: Noms d'utilisateurs, Mots de passe, Noms complets, Dates de naissance, Adresses, Numéros de téléphone, Emails, Cartes d'identité, Relevés d'identité bancaire, Avis d'imposition, Attestations de sécurité sociale, Formations, Contrats de travail, Compétences professionnelles, Parcours professionnels
Number of Records Exposed: 31 000 (estimé, non confirmé)
Sensitivity of Data: très élevée (données personnelles et financières)
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Strengthened security measures, accelerated rollout of 2FA, rappel aux utilisateurs sur la robustesse des mots de passe, .
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by services shut down, enquête interne en cours and .
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : cyberattaque FRA2692726102925
Data Exfiltration: True
How does the company recover data encrypted by ransomware ?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through Services expected to be reactivated on July 24.
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach FRA242072325
Legal Actions: Complaint filed with French authorities, notified CNIL
Regulatory Notifications: Notified CNIL
How does the company ensure compliance with regulatory requirements ?
Ensuring Regulatory Compliance: The company ensures compliance with regulatory requirements through Complaint filed with French authorities, notified CNIL.
Lessons Learned and Recommendations
What recommendations were made to prevent future incidents ?
Incident : cyberattaque FRA2692726102925
Recommendations: renforcement de la sensibilisation des utilisateurs aux infostealers, mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire, surveillance proactive des credentials exposés sur le dark webrenforcement de la sensibilisation des utilisateurs aux infostealers, mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire, surveillance proactive des credentials exposés sur le dark webrenforcement de la sensibilisation des utilisateurs aux infostealers, mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire, surveillance proactive des credentials exposés sur le dark webrenforcement de la sensibilisation des utilisateurs aux infostealers, mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire, surveillance proactive des credentials exposés sur le dark web
References
Where can I find more information about each incident ?
Incident : Data Breach FRA242072325
Source: Next
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Next, and Source: Tech & CoDate Accessed: 2025-10-29.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : cyberattaque FRA2692726102925
Investigation Status: en cours (équipes internes de France Travail)
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Established a special phone support line to address queries or concerns., Notified affected individuals, public statement and Confirmation Publique De L'Incident Via Tech & Co.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach FRA242072325
Customer Advisories: Email notification to users, public statement
Incident : cyberattaque FRA2692726102925
Stakeholder Advisories: Vigilance Accrue Sur La Robustesse Des Mots De Passe.
Customer Advisories: risque de phishing accru ; surveillance des comptes bancaires recommandée
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Email notification to users, public statement, Vigilance Accrue Sur La Robustesse Des Mots De Passe, Risque De Phishing Accru ; Surveillance Des Comptes Bancaires Recommandée and .
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach FRA242072325
Entry Point: User account compromise via infostealer malware
Incident : cyberattaque FRA2692726102925
Entry Point: ordinateurs personnels des demandeurs d'emploi (via infostealers)
High Value Targets: Données Personnelles Et Professionnelles Des Demandeurs D'Emploi,
Data Sold on Dark Web: Données Personnelles Et Professionnelles Des Demandeurs D'Emploi,
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach FRA242072325
Root Causes: User account compromise via infostealer malware
Corrective Actions: Strengthened security measures, accelerated rollout of 2FA
Incident : cyberattaque FRA2692726102925
Root Causes: Utilisation D'Infostealers Sur Les Terminaux Personnels, Réutilisation De Credentials Compromis, Manque De Contrôle Sur Les Appareils Personnels Accédant Au Système,
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Strengthened security measures, accelerated rollout of 2FA.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Stormous (groupe cybercriminel d'origine russe).
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-07-13.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-10-29.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were full names, social security numbers, , Personal data of 340,000 users including names, postal and email addresses, phone numbers, France Travail identifiers, and jobseeker statuses and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was KairosEmployment portal and système d'information de France Travail (accès via comptes utilisateurs compromis).
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident were Services shut down and enquête interne en cours.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were social security numbers, full names, Personal data of 340,000 users including names, postal and email addresses, phone numbers, France Travail identifiers and and jobseeker statuses.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 10.0M.
Regulatory Compliance
What was the most significant legal action taken for a regulatory violation ?
Most Significant Legal Action: The most significant legal action taken for a regulatory violation was Complaint filed with French authorities, notified CNIL.
Lessons Learned and Recommendations
What was the most significant recommendation implemented to improve cybersecurity ?
Most Significant Recommendation Implemented: The most significant recommendation implemented to improve cybersecurity was surveillance proactive des credentials exposés sur le dark web, mise en place de solutions de détection des malwares sur les terminaux personnels, authentification multifacteur (MFA) obligatoire and renforcement de la sensibilisation des utilisateurs aux infostealers.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Next and Tech & Co.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is en cours (équipes internes de France Travail).
Stakeholder and Customer Advisories
What was the most recent stakeholder advisory issued ?
Most Recent Stakeholder Advisory: The most recent stakeholder advisory issued was vigilance accrue sur la robustesse des mots de passe, .
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued were an Email notification to users, public statement and risque de phishing accru ; surveillance des comptes bancaires recommandée.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker were an User account compromise via infostealer malware and ordinateurs personnels des demandeurs d'emploi (via infostealers).
Post-Incident Analysis
What was the most significant root cause identified in post-incident analysis ?
Most Significant Root Cause: The most significant root cause identified in post-incident analysis was User account compromise via infostealer malware, utilisation d'infostealers sur les terminaux personnelsréutilisation de credentials compromismanque de contrôle sur les appareils personnels accédant au système.
What was the most significant corrective action taken based on post-incident analysis ?
Most Significant Corrective Action: The most significant corrective action taken based on post-incident analysis was Strengthened security measures, accelerated rollout of 2FA.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=francetravail' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
