UNDP
Company Details
Linkedin ID:
undp
Website:
Employees number:
26,338
Number of followers:
2,658,708
NAICS:
92812
Industry Type:
Homepage:
undp.org
IP Addresses:
0
Company ID:
UND_5081748
Scan Status:
In-progress
UNDP Company CyberSecurity Posture
undp.org
The United Nations Development Programme works in nearly 170 countries and territories, helping to achieve the eradication of poverty, and the reduction of inequalities and exclusion. We help countries to develop policies, leadership skills, partnering abilities, institutional capabilities and build resilience in order to sustain development results. DISCLAIMER: The United Nations Development Programme (UNDP) does not guarantee the truthfulness, accuracy, or validity of any comments posted to its social media outlets (blogs, social networks, message boards/forums, etc.). Users must not post any content that is obscene, defamatory, profane, libelous, threatening, harassing, abusive, hateful or embarrassing to any person or entity. UNDP reserves the right to delete or edit any comments that it considers inappropriate or unacceptable, and to delete off-topic comments in order to foster conversations about the topics shared on this page.
UNDP A.I CyberSecurity Scoring
UNDP Risk Score (AI oriented)Between 800 and 849
UNDP
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
UNDP Global Score (TPRM)XXXX
UNDP
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
UNDP Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
UNDP Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for UNDP
Incidents vs International Affairs Industry Average (This Year)
No incidents recorded for UNDP in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for UNDP in 2025.
Incident Types UNDP vs International Affairs Industry Avg (This Year)
No incidents recorded for UNDP in 2025.
Incident History — UNDP (X = Date, Y = Severity)
UNDP cyber incidents detection timeline including parent company and subsidiaries
UNDP Company Subsidiaries
The United Nations Development Programme works in nearly 170 countries and territories, helping to achieve the eradication of poverty, and the reduction of inequalities and exclusion. We help countries to develop policies, leadership skills, partnering abilities, institutional capabilities and build resilience in order to sustain development results. DISCLAIMER: The United Nations Development Programme (UNDP) does not guarantee the truthfulness, accuracy, or validity of any comments posted to its social media outlets (blogs, social networks, message boards/forums, etc.). Users must not post any content that is obscene, defamatory, profane, libelous, threatening, harassing, abusive, hateful or embarrassing to any person or entity. UNDP reserves the right to delete or edit any comments that it considers inappropriate or unacceptable, and to delete off-topic comments in order to foster conversations about the topics shared on this page.
Loading...
UNDP Similar Companies
Bluesky Agency
THE RIGHT WAY TO ITALY. Italian Agency based in Venice-Italy performing general affairs by Public and Private Boards seeks international Partners to develop SMART TOURISM NETWORK. Multilingual staff. Contact us as above
World Health Organization
The World Health Organization's mission: to promote health, keep the world safe, and serve the vulnerable. Working through offices in more than 150 countries, WHO staff work side by side with governments and other partners to ensure the highest attainable level of health for all people. Stay connec
#ExchangeAlumni - Alumni Affairs - State Dept.
Welcome, exchange program alumni! We are Alumni Affairs, an office in the Bureau of Educational and Cultural Affairs (ECA) at the U.S. Department of State. We welcome alumni of all U.S. government exchange programs, from Fulbright to Gilman, IVLP, YALI, YSEALI, YLAI, and many more! We offer grant c
USAID is the lead U.S. Government agency that works to end extreme global poverty and enable resilient, democratic societies to realize their potential. U.S. foreign assistance has always had the twofold purpose of furthering America's interests while improving lives in the developing world. USAI
UNHCR, the UN Refugee Agency
UNHCR, the UN Refugee Agency, is a global organisation dedicated to saving lives, protecting rights and building a better future for people forced to flee their homes because of conflict and persecution. We lead international action to protect refugees, forcibly displaced communities and stateless
Established in 1951, the International Organization for Migration is the leading intergovernmental organization in the field of migration and is committed to the principle that humane and orderly migration benefits migrants and society. IOM works with its partners in the international community to
United Nations
Founded at the end of the Second World War, the United Nations is an international organization made up of 193 Member States committed to maintaining international peace and security. Every day the UN works to tackle global challenges and deliver results for those most in need. Giving life-sav
.png)
UNDP CyberSecurity News
November 27, 2025 07:07 PM
The Tenth Coordination Committee meeting of the UN Global Counter-Terrorism Coordination Compact
The Tenth Coordination Committee meeting of the United Nations Global Counter-Terrorism Coordination Compact (Counter-Terrorism Compact) commenc.
November 27, 2025 09:01 AM
Office of Counter-Terrorism
Terrorists, as well as those they inspire, represent a major transnational threat. Detecting and disrupting the travel of these individuals and groups,...
November 21, 2025 08:00 AM
DICT vows better cybersecurity to attract investors
The Department of Information and Communications Technology (DICT) is giving priority to the cybersecurity of its information infrastructure...
November 05, 2025 08:00 AM
UN treaty sparks debate over digital cybersecurity
A new UN cybercrime treaty opened for signature on 25 October, raising concerns about digital cybersecurity and privacy protections. The treaty...
October 31, 2025 07:00 AM
The AU can help African countries adopt the UN cybercrime convention. But the challenges are significant
African countries have very different cybercrime legislation and previous treaties have not been widely adopted. The UN convention is an...
October 25, 2025 07:00 AM
Signing ceremony of UN Convention against Cybercrime solemnly opens in Hà Nội
Leaders from over 110 countries gathered in Hà Nội for the Signing Ceremony of the UN Convention against Cybercrime, marking a historic...
October 25, 2025 07:00 AM
Signing ceremony of UN Convention against Cybercrime opens in Hanoi
The event held on October 25 under the chair of Vietnam's State President Luong Cuong, with the participation of United Nations...
October 22, 2025 07:00 AM
Public Call for Participation in the Implementation of the "Cyber District"
The Office for Information Technologies and eGovernment, in partnership with United Nations Development Programme (UNDP),...
October 22, 2025 07:00 AM
NITDA/CISCO free cybersecurity training program 2025 for young Nigerians.
Application Deadline: October 31st, 2025. Applications are now open for the 2025 NITDA/CISCO free cybersecurity training program.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
UNDP CyberSecurity History Information
Official Website of UNDP
The official website of UNDP is http://www.undp.org.
UNDP’s AI-Generated Cybersecurity Score
According to Rankiteo, UNDP’s AI-generated cybersecurity score is 811, reflecting their Good security posture.
How many security badges does UNDP’ have ?
According to Rankiteo, UNDP currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does UNDP have SOC 2 Type 1 certification ?
According to Rankiteo, UNDP is not certified under SOC 2 Type 1.
Does UNDP have SOC 2 Type 2 certification ?
According to Rankiteo, UNDP does not hold a SOC 2 Type 2 certification.
Does UNDP comply with GDPR ?
According to Rankiteo, UNDP is not listed as GDPR compliant.
Does UNDP have PCI DSS certification ?
According to Rankiteo, UNDP does not currently maintain PCI DSS compliance.
Does UNDP comply with HIPAA ?
According to Rankiteo, UNDP is not compliant with HIPAA regulations.
Does UNDP have ISO 27001 certification ?
According to Rankiteo,UNDP is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of UNDP
UNDP operates primarily in the International Affairs industry.
Number of Employees at UNDP
UNDP employs approximately 26,338 people worldwide.
Subsidiaries Owned by UNDP
UNDP presently has no subsidiaries across any sectors.
UNDP’s LinkedIn Followers
UNDP’s official LinkedIn profile has approximately 2,658,708 followers.
NAICS Classification of UNDP
UNDP is classified under the NAICS code 92812, which corresponds to International Affairs.
UNDP’s Presence on Crunchbase
No, UNDP does not have a profile on Crunchbase.
UNDP’s Presence on LinkedIn
Yes, UNDP maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/undp.
Cybersecurity Incidents Involving UNDP
As of December 11, 2025, Rankiteo reports that UNDP has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
UNDP has an estimated 959 peer or competitor companies worldwide.
UNDP CyberSecurity History Information
How many cyber incidents has UNDP faced ?
Total Incidents: According to Rankiteo, UNDP has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at UNDP ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=undp' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
