Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
CalEPA

CalEPA Vendor Cyber Rating & Cyber Score

ca.gov

In 1991, California's environmental authority was unified in a single Cabinet level agency—the California Environmental Protection Agency (CalEPA). Our mission is to restore, protect and enhance the environment, to ensure public health, environmental quality and economic vitality. We fulfill our mission by developing, implementing and enforcing the state's environmental protection laws that regulate clean air, clean water, clean soil, safe pesticides and waste recycling and reduction. Our departments are at the forefront of environmental science, using cutting-edge research to shape the state's environmental laws. The Office of the Secretary heads CalEPA and is responsible for overseeing and coordinating the activities of one office,


CalEPA A.I CyberSecurity Scoring

CalEPA
Company Information
Website:http://www.calepa.ca.gov/
Employees number:203
Number of followers:14,423
NAICS:92
Industry Type:Government Administration
Homepage:ca.gov
CalEPA Risk Score (AI oriented)
Between 700 and 749
logo
CalEPAGovernment Administration
Updated:
02/04/2026
717/1000
Moderate
Ba
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
CalEPA Global Score (TPRM)
xxxx
logo
CalEPAGovernment Administration
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

CalEPA
CalEPAModerate
Current Score
717Ba (MODERATE)
01000
2 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
720Before Incident
JUNE 2026
719Before Incident
MAY 2026
718Before Incident
APRIL 2026
718Before Incident
MARCH 2026
717Before Incident
FEBRUARY 2026
716Before Incident
JANUARY 2026
716Before Incident
DECEMBER 2025
715Before Incident
NOVEMBER 2025
714Before Incident
OCTOBER 2025
713Before Incident
SEPTEMBER 2025
713Before Incident
AUGUST 2025
712Before Incident
MARCH 2023
752Before Incident
Breach
10 Mar 2023CalEPA
Department of Toxic Substances Control

Department of Toxic Substances Control (DTSC) Email Account Compromise

678After Incident
HIGH-74
CAL032090625
The Department of Toxic Substances Control (DTSC) experienced a data breach on March 10, 2023, reported publicly on March 23, 2023, due to an email account compromise. The incident exposed sensitive personal information, including names, Social Security Numbers (SSNs), Driver’s License Numbers, and medical records of individuals associated with the DTSC. While the breach involved unauthorized access to an email account, no files were downloaded, suggesting the exposure was limited to data visible within the compromised emails. The compromised information poses a high risk of identity theft, financial fraud, and privacy violations, particularly given the nature of the exposed data (SSNs and medical details). However, since no files were exfiltrated and the breach was contained to email access, the scope of the leak remains constrained to the data visible in the inbox/sent items. The DTSC has not confirmed whether the breach was part of a larger cyberattack (e.g., phishing, credential stuffing) or an isolated incident. The lack of file downloads reduces the likelihood of mass exploitation but does not eliminate risks for affected individuals, who may face targeted scams or misuse of their exposed credentials.
INCIDENT DETAILS -
TYPE
Data Breach (Email Account Compromise)
IMPACT
NamesSocial Security NumbersDriver’s License NumbersMedical InformationEmail AccountIdentity Theft Risk: Potential (PII exposed)
DATA BREACH
Personal Information (PII)Medical InformationSensitivity Of Data: High (PII and Medical Data)Data Exfiltration: No (no files downloaded)NamesSocial Security NumbersDriver’s License Numbers
JANUARY 2014
761Before Incident
Breach
23 Jan 2014CalEPA
Department of Resources Recycling and Recovery

CalRecycle Data Breach (2014)

686After Incident
HIGH-75
CAL022091825
On February X, 2014, the California Environmental Protection Agency (CalRecycle) disclosed a data breach that occurred on January 23, 2014. The incident involved the unauthorized electronic transmission of a Leave Activity and Balances Report to Personnel Liaisons. The exposed report contained sensitive personal information, specifically individuals' names and Social Security Numbers (SSNs). The exact number of affected individuals remains undetermined, raising concerns about potential identity theft or fraud risks. The breach stemmed from an internal mishandling of data, where confidential employee records were inadvertently shared beyond authorized recipients. While no evidence of malicious exploitation was reported, the exposure of SSNs—highly valuable for identity fraud—poses significant long-term risks to affected employees. The incident highlights vulnerabilities in CalRecycle’s data-sharing protocols and the critical need for stricter access controls to prevent similar leaks in the future.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
NamesSocial Security NumbersIdentity Theft Risk: High (SSNs exposed)
DATA BREACH
Personally Identifiable Information (PII)Number Of Records Exposed: UnknownSensitivity Of Data: High (SSNs included)Data Exfiltration: Yes (sent electronically to unauthorized recipients)Leave Activity and Balances ReportNamesSocial Security Numbers

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for CalEPA ?
?
What was CalEPA's A.I Rankiteo Cyber Score in June 2026 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in May 2026 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in April 2026 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in March 2026 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in February 2026 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in January 2026 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in December 2025 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in November 2025 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in October 2025 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in September 2025 ?
?
What was CalEPA's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on CalEPA's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with CalEPA ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view CalEPA's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?