Chubb
Company Details
Linkedin ID:
chubb
Website:
Employees number:
39,339
Number of followers:
1,071,644
NAICS:
524
Industry Type:
Homepage:
chubb.com
IP Addresses:
269
Company ID:
CHU_7868561
Scan Status:
Completed
Chubb Company CyberSecurity Posture
chubb.com
Chubb is a world leader in insurance. With operations in 54 countries and territories, Chubb provides commercial and personal property and casualty insurance, personal accident and supplemental health insurance, reinsurance and life insurance to a diverse group of clients. As an underwriting company, we assess, assume and manage risk with insight and discipline. We service and pay our claims fairly and promptly. The company is also defined by its extensive product and service offerings, broad distribution capabilities, exceptional financial strength and local operations globally. Parent company Chubb Limited is listed on the New York Stock Exchange (NYSE: CB) and is a component of the S&P 500 index. Chubb maintains executive offices in Zurich, New York, London, Paris and other locations, and employs approximately 40,000 people worldwide. Read our Social Media Guidelines here: https://www.chubb.com/us-en/about-chubb/chubbs-social-media-guidelines.aspx Notre section « À propos » est également disponible en français, ici: https://www.chubb.com/ca-fr/about-chubb-in-canada/a-propos-de-chubb-au-canada.aspx
Chubb A.I CyberSecurity Scoring
Chubb Risk Score (AI oriented)Between 800 and 849
Chubb
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Chubb Global Score (TPRM)XXXX
Chubb
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Chubb Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Chubb Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Chubb
Incidents vs Insurance Industry Average (This Year)
No incidents recorded for Chubb in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Chubb in 2025.
Incident Types Chubb vs Insurance Industry Avg (This Year)
No incidents recorded for Chubb in 2025.
Incident History — Chubb (X = Date, Y = Severity)
Chubb cyber incidents detection timeline including parent company and subsidiaries
Chubb Company Subsidiaries
Chubb is a world leader in insurance. With operations in 54 countries and territories, Chubb provides commercial and personal property and casualty insurance, personal accident and supplemental health insurance, reinsurance and life insurance to a diverse group of clients. As an underwriting company, we assess, assume and manage risk with insight and discipline. We service and pay our claims fairly and promptly. The company is also defined by its extensive product and service offerings, broad distribution capabilities, exceptional financial strength and local operations globally. Parent company Chubb Limited is listed on the New York Stock Exchange (NYSE: CB) and is a component of the S&P 500 index. Chubb maintains executive offices in Zurich, New York, London, Paris and other locations, and employs approximately 40,000 people worldwide. Read our Social Media Guidelines here: https://www.chubb.com/us-en/about-chubb/chubbs-social-media-guidelines.aspx Notre section « À propos » est également disponible en français, ici: https://www.chubb.com/ca-fr/about-chubb-in-canada/a-propos-de-chubb-au-canada.aspx
Loading...
Chubb Similar Companies
HDFC ERGO General Insurance
HDFC ERGO General Insurance Company Limited was promoted by erstwhile Housing Development Finance Corporation Ltd. (HDFC), India’s premier Housing Finance Institution and ERGO International AG, the primary insurance entity of Munich Re Group. Consequent to the implementation of the Scheme of Amalgam
Zurich Insurance
Zurich Insurance Group (Zurich) is a leading global multi-line insurer founded more than 150 years ago, which has grown into a business serving more than 75 million customers in more than 200 countries and territories, while delivering industry-leading total shareholder returns. Our customers includ
CNO Financial Group
CNO Financial Group, Inc. (NYSE: CNO) secures the future of middle-income America. CNO provides life and health insurance, annuities, financial services, and workforce benefits solutions through our family of brands, including Bankers Life, Colonial Penn, Optavise and Washington National. Our cus
Allianz Partners
Allianz Partners is a world leader in B2B2C insurance and assistance, offering global solutions that span international health and life, travel insurance, automotive and assistance. Customer driven, our innovative experts are redefining insurance services by delivering future-ready, high-tech high-t
Groupama
« Etre là pour les autres, j'ai décidé d'en faire mon métier. » Portée par nos 32 000 collaborateurs, notre campagne de communication employeur souligne ce qui nous rassemble et nous rend fiers au quotidien : notre métier, le point de départ de belles histoires, humaines avant tout. Cette campagne
Axis Max Life Insurance Limited
Axis Max Life Insurance Limited (earlier known as Max Life Insurance Company Limited) is a Joint Venture between Max Financial Services Limited and Axis Bank Limited. Max Financial Services Ltd. is a part of the Max Group, an Indian multi-business corporation. Axis Max Life Insurance Limited has an
Blue Cross Blue Shield of Michigan
Blue Cross Blue Shield of Michigan is a nonprofit corporation and an independent licensee of the Blue Cross and Blue Shield Association. BCBSM's commitment to Michigan is what differentiates it from other health insurance companies doing business in the state. That mission has never changed. Nea
GREAT EASTERN
Established in 1908, Great Eastern places customers at the heart of everything we do. Our legacy extends beyond our products and services to our culture, which is defined by our core values and how we work. As champions of Integrity, Initiative and Involvement, our core values act as a compass, guid
Rosgosstrakh
RGS operates nationwide with over 2,500 branches, agencies and over 400 claims-handling offices covering every one of Russia's 86 regions - from Kaliningrad on the Baltic Sea in the West to Kamchatka on the Pacific Ocean in the Far East, and from Murmansk on the Barents Sea to Sochi (2014 Winter Oly
.png)
Chubb CyberSecurity News
September 17, 2025 07:00 AM
Chubb Unit Wants Data, Cyber Cos. To Pay Ransomware Cost
A Chubb insurance unit has claimed a data management company and a cybersecurity firm failed to prevent or mitigate a ransomware attack on...
September 16, 2025 07:00 AM
Chubb Unit Sues Data, Cyber Firms Over Ransomware Costs (1)
A Chubb Ltd. insurance unit is suing data management and cybersecurity companies, alleging they failed to prevent or mitigate a ransomware...
August 18, 2025 07:00 AM
Cybersecurity Insurance Market Forecast Report 2025-2030, with Case Studies of Securityscorecard, Bitsight, Country Mutual Insurance, Cyberark, Aon, and Chubb
Growth in the cybersecurity insurance market is driven by increasing cyberattacks and stringent data protection regulations making cyber...
July 31, 2025 07:00 AM
Yahoo Says Chubb Unit Must Cover Potential EU Privacy Fines
Yahoo says a Chubb subsidiary is obligated to cover regulatory fines that might be leveled against one of the tech company's subsidiaries...
July 29, 2025 07:00 AM
Insurers regain appetite for coal despite climate pledges
"Chubb's decision to lead reinsure a coal-fuelled power plant in Vietnam raises questions about the insurance industry's role in...
July 24, 2025 07:00 AM
CISO New York 2025 brings together top cybersecurity leaders
The CISO New York summit on Sept 9, 2025, unites 150+ senior cybersecurity leaders for a day of strategy and collaboration.
July 23, 2025 07:00 AM
Chubb’s AI Strategy: Analysis of Dominance in Insurance, Reinsurance
Chubb's AI strategy dominates insurance by leveraging financial power, underwriting excellence, and compounding investments into scalable,...
July 19, 2025 07:00 AM
Cybersecurity Insurance Market to Hit USD 32.19 Billion by 2030
This surge is fueled by the growing frequency and sophistication of cyberattacks particularly ransomware and data breaches pushing...
July 01, 2025 07:00 AM
Chubb, Kyocera Units Face Insurance Suit Over 2023 Data Breach
Michigan-based Miracle Software Systems Inc. is suing Chubb unit ACE American Insurance Co. and Kyocera AVX Components Corp., alleging breach of contract.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Chubb CyberSecurity History Information
Official Website of Chubb
The official website of Chubb is https://www.chubb.com/.
Chubb’s AI-Generated Cybersecurity Score
According to Rankiteo, Chubb’s AI-generated cybersecurity score is 824, reflecting their Good security posture.
How many security badges does Chubb’ have ?
According to Rankiteo, Chubb currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Chubb have SOC 2 Type 1 certification ?
According to Rankiteo, Chubb is not certified under SOC 2 Type 1.
Does Chubb have SOC 2 Type 2 certification ?
According to Rankiteo, Chubb does not hold a SOC 2 Type 2 certification.
Does Chubb comply with GDPR ?
According to Rankiteo, Chubb is not listed as GDPR compliant.
Does Chubb have PCI DSS certification ?
According to Rankiteo, Chubb does not currently maintain PCI DSS compliance.
Does Chubb comply with HIPAA ?
According to Rankiteo, Chubb is not compliant with HIPAA regulations.
Does Chubb have ISO 27001 certification ?
According to Rankiteo,Chubb is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Chubb
Chubb operates primarily in the Insurance industry.
Number of Employees at Chubb
Chubb employs approximately 39,339 people worldwide.
Subsidiaries Owned by Chubb
Chubb presently has no subsidiaries across any sectors.
Chubb’s LinkedIn Followers
Chubb’s official LinkedIn profile has approximately 1,071,644 followers.
NAICS Classification of Chubb
Chubb is classified under the NAICS code 524, which corresponds to Insurance Carriers and Related Activities.
Chubb’s Presence on Crunchbase
No, Chubb does not have a profile on Crunchbase.
Chubb’s Presence on LinkedIn
Yes, Chubb maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/chubb.
Cybersecurity Incidents Involving Chubb
As of November 27, 2025, Rankiteo reports that Chubb has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Chubb has an estimated 14,859 peer or competitor companies worldwide.
Chubb CyberSecurity History Information
How many cyber incidents has Chubb faced ?
Total Incidents: According to Rankiteo, Chubb has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Chubb ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=chubb' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
