What is the official website of Cherokee Federal ?

The official website of Cherokee Federal is http://Cherokee-Federal.com.

What is Cherokee Federal's cybersecurity risk score?

Cherokee Federal has an AI-generated cybersecurity risk score of 706 out of 1000, indicating a Moderate security posture according to Rankiteo's assessment.

How many security incidents has Cherokee Federal experienced?

According to Rankiteo, Cherokee Federal currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Cherokee Federal been affected by any supply chain cyber incidents ?

According to Rankiteo, Cherokee Federal has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Cherokee Federal have SOC 2 Type 1 certification ?

According to Rankiteo, Cherokee Federal is not certified under SOC 2 Type 1.

Does Cherokee Federal have SOC 2 Type 2 certification ?

According to Rankiteo, Cherokee Federal does not hold a SOC 2 Type 2 certification.

Does Cherokee Federal comply with GDPR ?

According to Rankiteo, Cherokee Federal is not listed as GDPR compliant.

Does Cherokee Federal have PCI DSS certification ?

According to Rankiteo, Cherokee Federal does not currently maintain PCI DSS compliance.

Does Cherokee Federal comply with HIPAA ?

According to Rankiteo, Cherokee Federal is not compliant with HIPAA regulations.

Does Cherokee Federal have ISO 27001 certification ?

According to Rankiteo,Cherokee Federal is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Cherokee Federal operate in ?

Cherokee Federal operates primarily in the Business Consulting and Services industry.

How many employees does Cherokee Federal have ?

Cherokee Federal employs approximately 2,196 people worldwide.

Does Cherokee Federal own any subsidiaries ?

Cherokee Federal presently has no subsidiaries across any sectors.

How many LinkedIn followers does Cherokee Federal have ?

Cherokee Federal's official LinkedIn profile has approximately 60,941 followers.

What is the NAICS classification code for Cherokee Federal ?

Cherokee Federal is classified under the NAICS code 5416, which corresponds to Management, Scientific, and Technical Consulting Services.

Does Cherokee Federal have a Crunchbase profile ?

No, Cherokee Federal does not have a profile on Crunchbase.

Does Cherokee Federal have a LinkedIn profile ?

Yes, Cherokee Federal maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cherokee-federal.

How many cybersecurity incidents has Cherokee Federal experienced ?

As of June 18, 2026, Rankiteo reports that Cherokee Federal has experienced 1 cybersecurity incidents.

How many peer or competitor companies does Cherokee Federal have ?

Cherokee Federal has an estimated 19,462 peer or competitor companies worldwide.

What types of cybersecurity incidents has Cherokee Federal faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Cherokee Federal

Boost Score +25 with badge (5 left)

706

/1000

Moderate

731

/1000

Moderate

Cherokee Federal Vendor Cyber Rating & Cyber Score

Cherokee-Federal.com

Add Your Compliance Badge

Cherokee Federal, a division of Cherokee Nation Businesses, is a trusted team of government contracting professionals who can rapidly build innovative solutions. We work around the globe to help solve issues in national security and intelligence, information technology, health solutions, DoD logistics and humanitarian relief. Our businesses serve the Cherokee Nation tribe, where 100% of our profits support building a brighter future for tribal citizens.

Cherokee Federal A.I CyberSecurity Scoring

Scoring History

Cherokee Federal

Cherokee Federal CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Cherokee Federal

Breach

100

12/2025

CHE1764957982

Loading…

A.I.

Cherokee Federal Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Cherokee Federal

Incidents vs Business Consulting and Services Industry Avg (This Year)

No incidents recorded for Cherokee Federal in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Cherokee Federal in 2026.

Incident Types Cherokee Federal vs Business Consulting and Services Industry Avg (This Year)

No incidents recorded for Cherokee Federal in 2026.

Incident History - Cherokee Federal (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Cherokee Federal Subsidiaries

Cherokee Federal

Business Consulting and Services

Website: http://Cherokee-Federal.com

Company Size: 5,001-10,000 employees

Cherokee Nation BusinessesInformation Services

Cherokee Nation EntertainmentGambling Facilities and Casinos

Cherokee CasinoGambling Facilities and Casinos

Legends Resort & Casino ArkansasGambling Facilities and Casinos

Loading…

Cherokee Federal Similar Companies

ERM

erm.com

Sustainability is our business.  As the world’s largest specialist sustainability consultancy, ERM partners with clients to operationalize sustainability at pace and scale, deploying a unique combination of strategic transformation and technical delivery capabilities. This approach helps clients to accelerate the integration of sustainability at every level of their business.  With more than 50 years of experience, ERM’s diverse team of 8000+ experts in 40 countries and territories helps clients create innovative solutions to their sustainability challenges, unlocking commercial opportunities that meet the needs of today while preserving opportunity for future generations.  

Publicis Sapient

publicissapient.com

Publicis Sapient is a technology company that provides enterprise AI platforms and services. With over 30 years of digital business transformation experience, we enable enterprise clients to transform how they operate and serve their customers, unlocking new value and enabling them to thrive in an AI-driven world. Our platforms use AI  built off this deep enterprise context to help them modernize, build agentic solutions, and sustain their competitive advantage. The combination of our AI platforms and the expertise of our people enables us to deliver faster and more effective outcomes through solutions that are specific to the unique needs of our clients’ businesses, their industries and their customers.   Publicis Sapient is the technology hub of Publicis Groupe, uniting 20,000 people worldwide across 28 countries. For more information, visit publicissapient.com.

Alvarez & Marsal

alvarezandmarsal.com

Alvarez & Marsal is a leading global professional services firm dedicated to helping organizations tackle their most complex business issues, maximize stakeholder value, and deliver sustainable change. Privately held since its founding in 1983, clients select us for our deep expertise and proven ability to create and deliver practical solutions to their unique problems. Leveraging A&M’s restructuring heritage, our fact-driven, action-oriented approach empowers organizations to drive transformation and unlock value at every stage of growth. Our worldwide network extends across six continents, with over 10,000 people comprised of experienced operators, world-class consultants, former regulators and industry authorities. We foster a uniquely collaborative environment that embraces our peoples’ diverse perspectives and A&M’s entrepreneurial spirit to deliver end-to-end capabilities that span advisory, business performance improvement, and turnaround management. When action matters, find us at www.alvarezandmarsal.com.

ZS

zs.com

ZS is a management consulting and technology firm that partners with companies to improve life and how we live it. We transform ideas into impact by bringing together data, science, technology and human ingenuity to deliver better outcomes for all. Founded in 1983, ZS has more than 13,000 employees in over 35 offices worldwide. To learn more, visit www.zs.com/ At ZS, our mission is to inspire each other to bring our unique perspective and experience to work each day. When you join our firm, you have access to a wealth of community groups to support you, energize you and inspire you to bring your authentic self to work each day.

Accenture

cb accenture.com

Accenture is a leading global professional services company that helps the world’s leading businesses, governments and other organizations build their digital core, optimize their operations, accelerate revenue growth and enhance citizen services—creating tangible value at speed and scale. We are a talent and innovation-led company serving clients in more than 120 countries. We combine our strength in technology and leadership in cloud, data and AI with unmatched industry experience, functional expertise and global delivery capability. We measure our success by the 360° value we create for our clients, each other, our shareholders, partners and communities. This LinkedIn company page is moderated. When engaging with Accenture, we encourage everyone to: - Use common courtesy and be respectful of others. - Create your own original content and avoid content that you know to be fraudulent. - Never repost someone else's copyrighted work, unless you have permission. - Never post personal, identifying, or confidential information. We reserve the right to delete comments or posts we deem to be: - Profane, obscene, inappropriate, offensive, abusive material. - Spam, repeated comments and commercial messages and personal advertisements. - Discriminatory or that contain hateful speech of any kind regarding age, gender, race, religion, nationality, sexual orientation, gender identity or disability. - Threats; personal attacks; abusive, defamatory, derogatory, or inflammatory language; or stalking or harassment of any individual, entity or organization. - False, inaccurate, libelous, or otherwise misleading in any way.

Devoteam

cb devoteam.com

Devoteam is a AI-driven tech consulting firm specialised in cloud platforms, cyber, data, and sustainability. Tech native for almost 30 years, Devoteam guides businesses through sustainable digital transformation to deliver value. With over 11,000 tech architects in more than 25 countries across Europe, the Middle East, and Africa, Devoteam is committed to using technology to serve people.

PwC India

pwc.in

At PwC, we help clients build trust and reinvent so they can turn complexity into competitive advantage. We’re a tech-forward, people-empowered network with more than 364,000 people in 136 countries and 137 territories. Across audit and assurance, tax and legal, deals and consulting, we help clients build, accelerate, and sustain momentum. Find out more at www.pwc.com.   PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.

Capgemini Invent

capgemini.com

Capgemini Invent is the digital innovation, consulting and transformation brand of the Capgemini Group, a global business line that combines market leading expertise in strategy, technology, data science and creative design, to help CxOs envision and build what’s next for their businesses. For more information: http://www.capgemini.com/invent. Follow us on Twitter @CapgeminiInvent.

Applus+

cb applus.com

Applus+ is a worldwide leader in the testing, inspection, and certification sector. We are a trusted partner, enhancing the quality and safety of our clients’ assets and infrastructures while safeguarding their operations and improving their environmental performance. Our innovative approach, technical capabilities and highly-skilled and motivated workforce of over 25,000 employees assure operational excellence across multiple sectors in more than 65 countries. We offer a complete portfolio of solutions that address a range of needs, from asset integrity management to statutory compliance-based inspections. We place a strong emphasis on technological development, digitalisation and innovation, as well as having the latest knowledge of regulatory requirements.

Loading…

NEWS

Cherokee Federal CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 10, 2026 09:25 PM

Cherokee Nation citizen Stacy Leeds named president of the University of Tulsa

Cherokee Nation citizen Stacy Leeds, dean of ASU's law school and former Cherokee Nation Supreme Court justice, will become the University...

Read Article

March 08, 2026 11:38 PM

CIRI subsidiary launches tech firm to expand federal IT, cybersecurity contracting

CIRI subsidiary OSC Global launched OSC Technical Solutions, a federal IT and cybersecurity contractor expanding work beyond the Hanford...

Read Article

January 15, 2026 08:00 AM

Multiple Cherokee Federal Companies Awarded Missile Defense Agency SHIELD Contracts in Advancement of Golden Dome Defense Priorities

Cherokee Federal, the federal contracting division of Cherokee Nation Businesses, today announced 12 of its companies have been awarded...

Read Article

December 11, 2025 08:00 AM

Alabama tribe disputes Ernst’s 8(a) claims, says federal data was misapplied

The Poarch Band of Creek Indians says Sen. Joni Ernst misinterpreted data and misapplied 8(a) rules in alleging its contracting firm...

Read Article

December 10, 2025 08:00 AM

Native firms challenge Ernst’s effort to halt SBA’s $25B 8(a) program

Sen. Joni Ernst, R-Iowa, chairs a Senate hearing on the SBA's 8(a) program, where she called for a pause while agencies audit for alleged...

Read Article

November 24, 2025 08:00 AM

States, Tribal Nations Face Shared Cyber Challenges

Three tech executives describe similar challenges across jurisdictions — from replacing lost federal tools to bridging information silos...

Read Article

November 17, 2025 08:00 AM

Cherokee Federal Named Military Times "Best for Vets" Employer

Cherokee Federal, the federal contracting division of Cherokee Nation Businesses, today announced it has been recognized by Military Times...

Read Article

October 14, 2025 07:00 AM

Cherokee Nation citizen Clayton Fulton named chief of staff at IHS

The Indian Health Service appointed Cherokee Nation citizen Clayton Fulton as chief of staff to oversee operations and advance agency...

Read Article

October 13, 2025 07:00 AM

Cherokee Federal acquires Salesforce practice to expand digital services

Cherokee Federal will acquire HESFP, the Salesforce practice of HigherEchelon, effective Nov. 1, adding specialized capabilities for federal...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-48777

SUMMARY

FileBrowser Quantum is a free, self-hosted, web-based file manager. Versions prior to 1.3.2-stable, 1.4.0-beta and 1.4.1-beta are vulnerable to Path Traversal through the publicPatchHandler in backend/http/public.go which joins user-controlled fromPath and toPath body fields with the trusted d.share.Path BEFORE the downstream sanitizer runs. Because filepath.Join collapses .. segments during the join, the sanitizer in resourcePatchHandler never sees the traversal and the move/copy/rename operates on a path outside the shared directory. The same root-cause pattern was patched for the bulk DELETE endpoint as CVE-2026-44542 (GHSA-fwj3-42wh-8673), but the PATCH handler with the identical pattern was not updated. A public share link with AllowModify=true is sufficient to exploit this. Anyone holding such a link can move, copy, or rename arbitrary files within the share owner's source root. This issue has been fixed in versions 1.3.3-stable and 1.4.2-beta.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: )

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-47750

SUMMARY

stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the GLOBAL opcode handler. The issue was caused by missing validation when searching for newline-delimited fields. A crafted .ckpt file without the expected newline could cause the parser to use -1 as a copy length, resulting in immediate heap corruption. The attack requires the victim or application to load a .ckpt file from an untrusted source, such as a downloaded model from a model sharing site. The issue has been resolved in version master-584-0a7ae07. If developers are unable to immediately update their applications they can work around this issue by following these instructions: do not load .ckpt checkpoint files from untrusted sources, and prefer trusted model sources and safer formats such as .safetensors where possible.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: 7.8)

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-47747

SUMMARY

stable-diffusion.cpp is a pure C/C++ library for running diffusion model (Stable Diffusion, Flux, Wan, Qwen Image, Z-Image, and more) inference. In versions prior to master-584-0a7ae07, the pickle .ckpt parser in src/model.cpp contained a heap buffer overflow vulnerability in the BINUNICODE opcode handler. The issue was caused by sign confusion on the opcode length field. A crafted .ckpt file could trigger memcpy with a very large length derived from a negative signed value, causing immediate heap corruption. The issue has been resolved in version master-584-0a7ae07. If developers are unable to immediately update their applications they can work around this issue by only loading .ckpt checkpoint files from trusted sources and preferring trusted model sources and safer formats such as .safetensors where possible.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: 7.8)

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-46448

SUMMARY

In OpenStack Nova before 33.0.2, the server create API does not strip certain hint data. The resulting instance has no Placement allocation.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: 5.4)

cvss3

Base Score: 5.4

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Impact Score

2.5

Exploitability

2.8

REFERENCES

CVE-2026-22313

SUMMARY

The device has a webserver that exposes a REST API authenticated with a token on the management network. By exploiting an OS command injection vulnerability an authenticated attacker can send arbitrary commands to the device that are executed with administrative permissions by the underlying operating system.

Published

Date2026-06-16

Updated

Date2026-06-16

RISK INFORMATION (Score: 9.1)

cvss3

Base Score: 9.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Impact Score

Exploitability

2.3

REFERENCES

https://www.cvcn.gov.it/cvcn/cve/CVE-2026-22313

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…