CIS
Company Details
Linkedin ID:
ccisinc
Website:
Employees number:
19
Number of followers:
234
NAICS:
None
Industry Type:
Homepage:
otcindustrial.com
IP Addresses:
0
Company ID:
C&C_1517387
Scan Status:
In-progress
C&C Industrial Sales Company CyberSecurity Posture
otcindustrial.com
C & C Industrial Sales (CCIS) is the premier distributor of finishing equipment in North America. We offer a variety of top-of-the-line brands of liquid and powder finishing equipment, spray booths, ovens, filters, etc. We continue to be recognized by major manufacturers such as Graco, Colmet, Binks, DeVilbiss, Ecco, EFC, Gema, Ransburg, Paint Pockets, Global Finishing, etc as a key partner in bringing their finishing products to customers throughout North America. Our ability to repair or rebuild the products we offer is a service that many of our customers take advantage of as well. In addition, we have a team of degreed engineers that work with customers to develop, design, build and start-up engineered finishing systems. CCIS has been in business since 1977. In 2004 we purchased Ritchie Automation to enhance our ability to offer automated finishing systems(ie. Robots). In 2007, we purchased T & G Industrial Equipment to continue to grow our engineered systems capabilities. CCIS, Ritchie Automation and T & G Industrial Equipment are now merged together as one company, CCIS. We are located in Gallatin, Tennessee(Nashville area) Our company is dedicated to the finishing industry. It’s what we do. If you are unable to locate what you are looking for or have technical questions about what you have, please take advantage of our “live chat” capability, contact us toll-free at 1-855-ASK-CCIS (1-855-275-2247) or send us an E-mail.
C&C Industrial Sales A.I CyberSecurity Scoring
CIS Risk Score (AI oriented)Between 750 and 799
CIS
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CIS Global Score (TPRM)XXXX
CIS
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CIS Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
CIS Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CIS
Incidents vs Industrial Automation Industry Average (This Year)
No incidents recorded for C&C Industrial Sales in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for C&C Industrial Sales in 2025.
Incident Types CIS vs Industrial Automation Industry Avg (This Year)
No incidents recorded for C&C Industrial Sales in 2025.
Incident History — CIS (X = Date, Y = Severity)
CIS cyber incidents detection timeline including parent company and subsidiaries
CIS Company Subsidiaries
C & C Industrial Sales (CCIS) is the premier distributor of finishing equipment in North America. We offer a variety of top-of-the-line brands of liquid and powder finishing equipment, spray booths, ovens, filters, etc. We continue to be recognized by major manufacturers such as Graco, Colmet, Binks, DeVilbiss, Ecco, EFC, Gema, Ransburg, Paint Pockets, Global Finishing, etc as a key partner in bringing their finishing products to customers throughout North America. Our ability to repair or rebuild the products we offer is a service that many of our customers take advantage of as well. In addition, we have a team of degreed engineers that work with customers to develop, design, build and start-up engineered finishing systems. CCIS has been in business since 1977. In 2004 we purchased Ritchie Automation to enhance our ability to offer automated finishing systems(ie. Robots). In 2007, we purchased T & G Industrial Equipment to continue to grow our engineered systems capabilities. CCIS, Ritchie Automation and T & G Industrial Equipment are now merged together as one company, CCIS. We are located in Gallatin, Tennessee(Nashville area) Our company is dedicated to the finishing industry. It’s what we do. If you are unable to locate what you are looking for or have technical questions about what you have, please take advantage of our “live chat” capability, contact us toll-free at 1-855-ASK-CCIS (1-855-275-2247) or send us an E-mail.
Loading...
CIS Similar Companies
NSR Energies
Business without credibility is a short-lived affair, whereas for us at NSR Energies (Pvt.) Ltd., the credibility is much more important than the immediate business benefits. Team NSR is committed to the best business practices and always endeavors to achieve results beneficial for itself, its clie
Novaspect Inc.
At Novaspect, our core purpose is to improve our customers' performance through the innovative application of technology. We do this by engineering, selling and servicing industrial process controls, valves, and automated control systems. Novaspect is an Impact Partner of Emerson Automation Solutio
NOVUS Automation
For the last 40 years, NOVUS has developed and manufactured innovative and reliable products for data acquisition, temperature control, process control, signal conditioning and transmission of field variables. All devices comply with worldwide quality requirements, thus providing solutions that exce
Uptime Automation LLC
Uptime Automation is a full-service Automation and Control Systems engineering firm. We provide automation and control system design, build, implementation and startup services. Please visit our website at www.uptimeauto.com to get a glimpse into what our company can offer you. Please know that
ProAutomated
We understand you want to be recognized for your reputation of reliable and efficient project completion. When your projects stack up or go off schedule, you may not have access to enough qualified controls engineers to commission your projects. You shouldn't have to add "overwhelmed with project st
Lucenline Technology, LLC products
LUCENLINE Supplies The Finest Solutions for Today’s Process Measurement Needs Our customers face real challenges specifying, building, commissioning, and operating process measurement systems in today’s plant. Worldwide competition also means fewer resources are available to you. You’re asked to do
.png)
CIS CyberSecurity News
November 23, 2025 12:00 PM
Say Goodbye to the 19°C Rule: Experts Reveal the Ideal and Environmentally Friendly Home Temperature
Experts are quietly ditching the 19°C home heating rule—and the reason could impact your health, energy bills, and even your walls.
November 23, 2025 11:57 AM
(MPC.C) Advanced Trading Insights (MPC.C:CA)
Advanced Trading Insights for Madison Pacific Properties Inc. Class C Non-Voting Shares (MPC.C) with Key Buy and Sell Signals.
November 23, 2025 09:44 AM
Embraer delivers second C-390, making Hungary first operator to complete full fleet order
Embraer has delivered the second C-390 Millennium to the Hungarian Air Force, completing the country's contracted fleet and making Hungary...
November 23, 2025 09:14 AM
Paul C Brunson reveals the biggest mistake that stops people finding ‘the one’
EXCLUSIVE: The Celebs Go Dating coach and We Need to Talk host discusses dating myths, red flags, the emotional chaos of the holidays,...
November 23, 2025 09:10 AM
Can overdose of vitamin C cause kidney failure? Nausea, diarrhoea and kidney stone risks explained
While many believe high-dose Vitamin C is harmless, excessive intake can harm kidneys by converting to oxalate, potentially causing stones...
November 23, 2025 09:00 AM
Every player who went from the Washington T of C to the NBA
Dozens of players who starred at the Washington Tournament of Champions then went on to play in the NBA. Here's the list.
November 23, 2025 07:52 AM
Saranac High School football falls in Class C Regional Championship to Schuylerville
The Spartans finish historic season with first state playoff win at 8-4.
November 23, 2025 07:39 AM
Esther C. Mayhugh Obituary (2025) - McMurray, PA - Pittsburgh Cremation & Funeral Care - Peters Township
Esther Mayhugh Obituary Esther C. Mayhugh, 63, of West Mifflin, formerly of the North Side, passed away suddenly on November 21, 2025.
November 23, 2025 06:00 AM
Charles C. Dillon Obituary (2025) - Spring Grove, PA - Beck Funeral Home & Cremation Service Inc. - York
Charles Dillon Obituary Charles C. Dillon, age 58, passed away on November 20, 2025 at Penn State Milton S. Hershey Medical Center.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CIS CyberSecurity History Information
Official Website of C&C Industrial Sales
The official website of C&C Industrial Sales is https://otcindustrial.com/ccis.
C&C Industrial Sales’s AI-Generated Cybersecurity Score
According to Rankiteo, C&C Industrial Sales’s AI-generated cybersecurity score is 754, reflecting their Fair security posture.
How many security badges does C&C Industrial Sales’ have ?
According to Rankiteo, C&C Industrial Sales currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does C&C Industrial Sales have SOC 2 Type 1 certification ?
According to Rankiteo, C&C Industrial Sales is not certified under SOC 2 Type 1.
Does C&C Industrial Sales have SOC 2 Type 2 certification ?
According to Rankiteo, C&C Industrial Sales does not hold a SOC 2 Type 2 certification.
Does C&C Industrial Sales comply with GDPR ?
According to Rankiteo, C&C Industrial Sales is not listed as GDPR compliant.
Does C&C Industrial Sales have PCI DSS certification ?
According to Rankiteo, C&C Industrial Sales does not currently maintain PCI DSS compliance.
Does C&C Industrial Sales comply with HIPAA ?
According to Rankiteo, C&C Industrial Sales is not compliant with HIPAA regulations.
Does C&C Industrial Sales have ISO 27001 certification ?
According to Rankiteo,C&C Industrial Sales is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of C&C Industrial Sales
C&C Industrial Sales operates primarily in the Industrial Automation industry.
Number of Employees at C&C Industrial Sales
C&C Industrial Sales employs approximately 19 people worldwide.
Subsidiaries Owned by C&C Industrial Sales
C&C Industrial Sales presently has no subsidiaries across any sectors.
C&C Industrial Sales’s LinkedIn Followers
C&C Industrial Sales’s official LinkedIn profile has approximately 234 followers.
C&C Industrial Sales’s Presence on Crunchbase
No, C&C Industrial Sales does not have a profile on Crunchbase.
C&C Industrial Sales’s Presence on LinkedIn
Yes, C&C Industrial Sales maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/ccisinc.
Cybersecurity Incidents Involving C&C Industrial Sales
As of November 27, 2025, Rankiteo reports that C&C Industrial Sales has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
C&C Industrial Sales has an estimated 801 peer or competitor companies worldwide.
C&C Industrial Sales CyberSecurity History Information
How many cyber incidents has C&C Industrial Sales faced ?
Total Incidents: According to Rankiteo, C&C Industrial Sales has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at C&C Industrial Sales ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=ccisinc' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
