CPSI
Company Details
Linkedin ID:
cheng-power-systems-inc-
Website:
Employees number:
8
Number of followers:
155
NAICS:
None
Industry Type:
Homepage:
chengpower.com
IP Addresses:
0
Company ID:
CHE_9543063
Scan Status:
In-progress
Cheng Power Systems, Inc. Company CyberSecurity Posture
chengpower.com
Cheng Power System, Inc. is a well established company in the Green Power Generation industry that has developed patented technologies to enable power plants to provide higher power output, increased efficiencies, and lower emissions. With over 300 installations throughout the world since the 1980’s, CPS is a recognized technology leader. Cheng Patented Technologies: Emmision Control, Power Augmentation & Efficiency Enhancement Products: •CLN® Cheng Low NOx Emission Control Technology Utilizing steam injection to reduce the NOx emissions of certain combustion gas turbine generators by up to 95% without producing unacceptable emissions of carbon monoxide. •Cheng Cycle® Utilizing steam injection to boost the power output of certain combustion gas turbine generators by up to 50%. •VSSG® The Variable Synchronous Speed Generator An AC electric generator that enables improved generator set efficiency by operating at the optimum speed of the prime mover instead of at a fixed speed. Our goal is to design, build and perfect power generation products that result in a cleaner and more efficient combustion process while improving output and lowering operating and maintenance costs. Over 2 million operating hours across more than 100 global installations •Kauai Hawaii: The Cheng Cycle® plant, the GE 7LM2500 ACS at the Kapaia Power Station in Hawaii •San Jose State University: The SJSU Cheng Cycle® cogeneration plant produces 36 million kilowatt hours of power every year
Cheng Power Systems, Inc. A.I CyberSecurity Scoring
CPSI Risk Score (AI oriented)Between 750 and 799
CPSI
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CPSI Global Score (TPRM)XXXX
CPSI
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CPSI Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
CPSI Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CPSI
Incidents vs Mechanical Or Industrial Engineering Industry Average (This Year)
No incidents recorded for Cheng Power Systems, Inc. in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Cheng Power Systems, Inc. in 2025.
Incident Types CPSI vs Mechanical Or Industrial Engineering Industry Avg (This Year)
No incidents recorded for Cheng Power Systems, Inc. in 2025.
Incident History — CPSI (X = Date, Y = Severity)
CPSI cyber incidents detection timeline including parent company and subsidiaries
CPSI Company Subsidiaries
Cheng Power System, Inc. is a well established company in the Green Power Generation industry that has developed patented technologies to enable power plants to provide higher power output, increased efficiencies, and lower emissions. With over 300 installations throughout the world since the 1980’s, CPS is a recognized technology leader. Cheng Patented Technologies: Emmision Control, Power Augmentation & Efficiency Enhancement Products: •CLN® Cheng Low NOx Emission Control Technology Utilizing steam injection to reduce the NOx emissions of certain combustion gas turbine generators by up to 95% without producing unacceptable emissions of carbon monoxide. •Cheng Cycle® Utilizing steam injection to boost the power output of certain combustion gas turbine generators by up to 50%. •VSSG® The Variable Synchronous Speed Generator An AC electric generator that enables improved generator set efficiency by operating at the optimum speed of the prime mover instead of at a fixed speed. Our goal is to design, build and perfect power generation products that result in a cleaner and more efficient combustion process while improving output and lowering operating and maintenance costs. Over 2 million operating hours across more than 100 global installations •Kauai Hawaii: The Cheng Cycle® plant, the GE 7LM2500 ACS at the Kapaia Power Station in Hawaii •San Jose State University: The SJSU Cheng Cycle® cogeneration plant produces 36 million kilowatt hours of power every year
Loading...
CPSI Similar Companies
Fores Engineering
“Fores Engineering is an Italian company, part of the Rosetti Marino Group, specialized in the Engineering, Integration and Construction of turnkey systems for offshore and onshore Oil & Gas (upstream to downstream) fields, Chemical, Petrochemical and Power Generation plants. Its activities includ
Bosch Industry Consulting Portugal
A Bosch Industry Consulting acompanha-o na sua caminhada através da transformação digital do seu sistema de produção e de logística. Nós oferecemos consultoria e suporte para automação e digitalização de uma única fonte. Vamos ajudá-lo a conectar os seus processos e a torná-los mais eficientes. Irá
Gilbert Gilkes and Gordon Ltd
Gilkes delivers innovative, single source solutions to the Small Hydropower and High Horsepower Engine markets. Working meticulously with our customers to ensure the very best in product design, total cost of ownership and operational excellence, our range of Hydropower turbines and engine cooling
ENPA Engranajes, S.L.
Talleres ENPA fue fundada en el año 1987 y nació con el fin de dar cobertura a un campo relativamente poco desarrollado en Navarra, el de la fabricación y tallado de engranajes. Básicamente se puede considerar como una empresa de servicios ya que toda su producción se realiza bajo pedido del cliente
Daikin Finland
Daikin Europe N.V. (DENV) is a multinational and leading manufacturer and supplier of HVAC-R (heating, ventilation, air conditioning and refrigeration) equipment. We provide innovative, premium quality indoor climate management solutions to meet the changing needs of our residential, commercial and
Carrier Transicold Container Refrigeration
Carrier Transicold commemorates its heritage of container refrigeration innovation and leadership in 2018 by marking the 50th anniversary of its pioneering front-wall container refrigeration unit design. Carrier Transicold helps improve transport and shipping of temperature-controlled cargoes with a
.png)
CPSI CyberSecurity News
November 17, 2025 09:00 AM
Valmet’s new waste-to-energy boiler to help Cheng Loong Corporation in Taiwan to decarbonize Houli mill’s energy production
Valmet will deliver a CFB boiler, flue gas treatment and automation system for Cheng Loong Corporation's (CLC) Houli paper mill in Taiwan.
August 15, 2025 07:00 AM
MCEC welcomes new faculty for the 2025-2026 academic year - Molinaroli College of Engineering and Computing
The Molinaroli College of Engineering and Computing is welcoming new faculty in the chemical engineering, electrical engineering and...
July 11, 2025 07:00 AM
Multistage adaptive cyberattack in power systems with CNN identification feedback loops
The increasing integration of digital technologies in hybrid hydrogen-power networks has introduced new cybersecurity vulnerabilities that...
May 20, 2025 07:00 AM
Travel’s persistent cybersecurity problem, and why it could get worse
The travel industry faces a growing number of attacks. And many experts, including Cheng, warn that rapid advancements in technology and distribution not only...
March 25, 2025 07:00 AM
AMD launches new Tainan office
The US company's new office is in the Shalun Smart Green Energy Science City, a new AI industry base and cybersecurity hub in southern Taiwan.
January 24, 2025 08:00 AM
What are the most pressing cyber security concerns going into 2025?
Experts warn that cyberattacks will continue to escalate in both volume and sophistication, with more threats targeting digital infrastructure, sensitive data...
December 04, 2024 08:00 AM
The race to build data centers is on - here’s how we keep them secure
Investment in AI infrastructure is booming globally as organizations look to build the strong foundations necessary for an AI-powered...
July 03, 2024 08:04 AM
Beyond surveillance: privacy, ethics, and regulations in face recognition technology
Facial recognition technology (FRT) has emerged as a powerful tool for public governance and security, but its rapid adoption has also raised significant...
June 27, 2024 12:34 PM
An Advanced Accurate Intrusion Detection System for Smart Grid Cybersecurity Based on Evolving Machine Learning
Smart grids, the next generation of electricity systems, would be intelligent and self-aware of physical and cyber activity in the control area.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CPSI CyberSecurity History Information
Official Website of Cheng Power Systems, Inc.
The official website of Cheng Power Systems, Inc. is http://www.chengpower.com.
Cheng Power Systems, Inc.’s AI-Generated Cybersecurity Score
According to Rankiteo, Cheng Power Systems, Inc.’s AI-generated cybersecurity score is 754, reflecting their Fair security posture.
How many security badges does Cheng Power Systems, Inc.’ have ?
According to Rankiteo, Cheng Power Systems, Inc. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Cheng Power Systems, Inc. have SOC 2 Type 1 certification ?
According to Rankiteo, Cheng Power Systems, Inc. is not certified under SOC 2 Type 1.
Does Cheng Power Systems, Inc. have SOC 2 Type 2 certification ?
According to Rankiteo, Cheng Power Systems, Inc. does not hold a SOC 2 Type 2 certification.
Does Cheng Power Systems, Inc. comply with GDPR ?
According to Rankiteo, Cheng Power Systems, Inc. is not listed as GDPR compliant.
Does Cheng Power Systems, Inc. have PCI DSS certification ?
According to Rankiteo, Cheng Power Systems, Inc. does not currently maintain PCI DSS compliance.
Does Cheng Power Systems, Inc. comply with HIPAA ?
According to Rankiteo, Cheng Power Systems, Inc. is not compliant with HIPAA regulations.
Does Cheng Power Systems, Inc. have ISO 27001 certification ?
According to Rankiteo,Cheng Power Systems, Inc. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Cheng Power Systems, Inc.
Cheng Power Systems, Inc. operates primarily in the Mechanical Or Industrial Engineering industry.
Number of Employees at Cheng Power Systems, Inc.
Cheng Power Systems, Inc. employs approximately 8 people worldwide.
Subsidiaries Owned by Cheng Power Systems, Inc.
Cheng Power Systems, Inc. presently has no subsidiaries across any sectors.
Cheng Power Systems, Inc.’s LinkedIn Followers
Cheng Power Systems, Inc.’s official LinkedIn profile has approximately 155 followers.
Cheng Power Systems, Inc.’s Presence on Crunchbase
No, Cheng Power Systems, Inc. does not have a profile on Crunchbase.
Cheng Power Systems, Inc.’s Presence on LinkedIn
Yes, Cheng Power Systems, Inc. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cheng-power-systems-inc-.
Cybersecurity Incidents Involving Cheng Power Systems, Inc.
As of November 27, 2025, Rankiteo reports that Cheng Power Systems, Inc. has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Cheng Power Systems, Inc. has an estimated 2,064 peer or competitor companies worldwide.
Cheng Power Systems, Inc. CyberSecurity History Information
How many cyber incidents has Cheng Power Systems, Inc. faced ?
Total Incidents: According to Rankiteo, Cheng Power Systems, Inc. has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Cheng Power Systems, Inc. ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=cheng-power-systems-inc-' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
