What is the official website of Citi ?

The official website of Citi is http://www.citigroup.com.

What is Citi's cybersecurity risk score?

Citi has an AI-generated cybersecurity risk score of 790 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Citi experienced?

According to Rankiteo, Citi currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Citi been affected by any supply chain cyber incidents ?

According to Rankiteo, Citi has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Citi have SOC 2 Type 1 certification ?

According to Rankiteo, Citi is not certified under SOC 2 Type 1.

Does Citi have SOC 2 Type 2 certification ?

According to Rankiteo, Citi does not hold a SOC 2 Type 2 certification.

Does Citi comply with GDPR ?

According to Rankiteo, Citi is not listed as GDPR compliant.

Does Citi have PCI DSS certification ?

According to Rankiteo, Citi does not currently maintain PCI DSS compliance.

Does Citi comply with HIPAA ?

According to Rankiteo, Citi is not compliant with HIPAA regulations.

Does Citi have ISO 27001 certification ?

According to Rankiteo,Citi is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Citi operate in ?

Citi operates primarily in the Financial Services industry.

How many employees does Citi have ?

Citi employs approximately 200,467 people worldwide.

Does Citi own any subsidiaries ?

Citi presently has no subsidiaries across any sectors.

How many LinkedIn followers does Citi have ?

Citi's official LinkedIn profile has approximately 5,098,515 followers.

What is the NAICS classification code for Citi ?

Citi is classified under the NAICS code 52, which corresponds to Finance and Insurance.

Does Citi have a Crunchbase profile ?

Yes, Citi has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/citigroup.

Does Citi have a LinkedIn profile ?

Yes, Citi maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/citi.

How many cybersecurity incidents has Citi experienced ?

As of June 12, 2026, Rankiteo reports that Citi has experienced 4 cybersecurity incidents.

How many peer or competitor companies does Citi have ?

Citi has an estimated 32,069 peer or competitor companies worldwide.

What types of cybersecurity incidents has Citi faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach and Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Citi

Boost Score +25 with badge (5 left)

790

/1000

Fair

815

/1000

Good

Citi Vendor Cyber Rating & Cyber Score

citigroup.com

cb in

Add Your Compliance Badge

Citi's mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. Our core activities are safeguarding assets, lending money, making payments and accessing the capital markets on behalf of our clients. We have over 200 years of experience helping our clients meet the world's toughest challenges and embrace its greatest opportunities. We are Citi, the global bank – an institution connecting millions of people across hundreds of countries and cities. For information on Citi’s commitment to privacy, visit on.citi/privacy.

Citi A.I CyberSecurity Scoring

Scoring History

Citi

Citi CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Citi

Cyber Attack

12/2025

CITWELNAVUSAFID...

Citi

Breach

1/2025

CITJPM177683210...

Citi

Cyber Attack

02/2022

CIT0362322

Citi

Breach

3/2013

CIT548072625

Loading…

A.I.

Citi Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Citi

Incidents vs Financial Services Industry Avg (This Year)

No incidents recorded for Citi in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Citi in 2026.

Incident Types Citi vs Financial Services Industry Avg (This Year)

No incidents recorded for Citi in 2026.

Incident History - Citi (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Citi Subsidiaries

Citi

Financial Services

Website: http://www.citigroup.com

Company Size: 10,001+ employees

Citi Private BankFinancial Services

Citi Global Wealth at WorkFinancial Services

Loading…

Citi Similar Companies

Aegon

cb aegon.com

People are living longer, and we are excited about the possibilities this brings. We see longevity, aging, and changing life patterns as an opportunity for our customers, our employees, and society as a whole. And we want to support everyone in building the financial means to explore the possibilities and challenges of a long and varied life. As an international financial services group, we unite a diverse range of businesses that, together, help millions of people around the world live their best lives by offering a broad mix of investment, protection, and retirement solutions. We create long-term value for our shareholders and other stakeholders through fully owned businesses, partnerships, and strategic shareholdings. Our portfolio includes fully owned subsidiaries in the US and UK, and a global asset management business; as well as partnerships in Brazil, China, France, Spain and Portugal. In the Netherlands, we generate value through our strategic shareholding in a market-leading insurance and pensions company.

Franklin Templeton

franklinresources.com

Franklin Resources, Inc. [NYSE:BEN] is a global investment management organization with subsidiaries operating as Franklin Templeton (www.franklinresources.com). The products, services, information and materials referenced in this site may not be available to residents in certain jurisdictions. Consult with an investment professional or contact your local Franklin Templeton office for more information. This site and the information contained herein is not intended to constitute an offer to sell or an invitation or solicitation of an offer to buy any product or service by Franklin Templeton. Nothing in this website should be construed as investment, tax, legal or other advice. All investments involve risks, including potential loss of principal. LinkedIn is owned by a third party unaffiliated with us. We are not responsible for LinkedIn’s privacy, security, or terms of use policies that control this service, nor their content, software, or tools (or those of any third party’s) that are available through links from this page. You use any third-party site/media, software and materials at your own risk. US readers: View our Terms and Conditions at: https://www.franklinresources.com/resources/social ©Franklin Templeton. All rights reserved.

M&T Bank

mtb.com

Great companies have an enduring sense of purpose. At M&T, our purpose is a simple one: make a difference in people’s lives and uplift the communities we serve. Founded in 1856 in Buffalo, NY we are now a top 11 full-service US-based commercial bank with a retail footprint across the east coast and wealth services available nationwide and abroad. As a bank, we offer advice, guidance, expertise, and solutions across the entire financial spectrum that combines M&T’s traditional banking services with the wealth management and institutional capabilities offered by Wilmington Trust. We are a community-minded organization with more than 167 years of experience. We serve customers, community, and colleagues whether they be across the street, across the state or across the country. As an employer of choice, we are proud to offer competitive benefits ranging from medical and retirement to forty hours of paid volunteer time, each year. Our core values drive the work we do – integrity, ownership, collaboration, curiosity, candor and we seek to further build upon our record of success by bringing in top talent and fresh skill sets while continuing to support the growth and development of all our team members. M&T Bank is unwavering when it comes to providing equal employment opportunities to all employees and applicants without regard to race, color, national origin, religion, ethnicity, sex, gender identity, age, disability, citizenship, pregnancy, veteran status, military status, marital status, sexual orientation, genetic information or any other characteristic protected under applicable federal, state or local laws.

Ally

ally.com

Ally Financial Inc. (NYSE: ALLY) is a leading digital financial services company and a top 25 U.S. financial holding company offering financial products for consumers, businesses, automotive dealers and corporate clients. NMLS #3015 | #181005 | https://www.nmlsconsumeraccess.org/ Ally's legacy dates back to 1919, and the company was redesigned in 2009 with a distinctive brand, innovative approach and relentless focus on its customers. Ally has an award-winning online bank (Ally Bank, Member FDIC), one of the largest full service auto finance operations in the country, a complementary auto-focused insurance business, and a trusted corporate finance business offering capital for equity sponsors and middle-market companies. We extend equal employment opportunities to qualified applicants and employees on an equal basis regardless of an individual’s age, race, color, sex, religion, national origin, disability, sexual orientation, gender identity or expression, pregnancy status, marital status, military or veteran status, genetic disposition or any other reason protected by law.

Bloomberg

bloomberg.com

Bloomberg is a global leader in business and financial information, delivering trusted data, news, and insights that bring transparency and efficiency, and fairness to markets. We help connect influential communities across the global financial ecosystem via reliable technology solutions that enable our customers to make more informed decisions and foster better collaboration. We challenge the status quo through constant innovation. We collaborate broadly because we know that other perspectives matter. We put our customers first, as a guiding beacon. And we believe doing the right thing – by our people, our clients, and our communities – is the best thing for our business.

Global Payments Inc.

globalpayments.com

Global Payments (NYSE: GPN) is a leading payment technology and software company that powers commerce for businesses of all sizes worldwide. We help businesses grow with confidence by delivering innovative solutions that enable seamless payment acceptance, smarter operations and exceptional client experiences – online, in store and everywhere in between. With its global reach, local expertise and scale, Global Payments manages trillions in payments volume and billions of transactions across more than 175 countries. Headquartered in Atlanta, Georgia, Global Payments is a Fortune 500® company and a member of the S&P 500. Learn more at company.globalpayments.com and follow Global Payments on X (@globalpayinc), LinkedIn and Facebook.

Northern Trust

northerntrust.com

As a global leader in innovative wealth management, asset servicing and investment solutions, Northern Trust (Nasdaq: NTRS) is proud to guide the world’s most successful individuals, families and institutions by remaining true to our enduring principles of service, expertise and integrity. A globally recognized Fortune 500 Company in continuous operation since 1889, we’ve built a legacy of empowering clients to reach their goals with confidence. Since our roots as a trust bank, we’ve grown to a global presence with more than 24,000 employees in more than 20 countries and across five core business units: Wealth Management Asset Management Asset Servicing Technology Corporate Functions Join a Team That’s Made for Greater At Northern Trust, we refer to our employees as partners – with good reason. We understand that relationships are the key to our success. Here you’ll join a diverse and inclusive team of innovators with the drive to challenge the way things have always been done. Instead of choosing between a dynamic career and work-life balance, enjoy working with a team that supports your goals in the office and at home. We’ll help you get where you want to go without sacrificing what matters most to you. As of December 31, 2025, Northern Trust Corporation had: $18.7 trillion assets under custody/administration $14.9 trillion in assets under custody $1.8 trillion in assets under management $177 billion in banking assets

Cholamandalam Investment and Finance Company Limited

cholamandalam.com

Cholamandalam Investment and Finance Company Limited (Chola), founded in 1978 as part of the Murugappa Group, initially focused on equipment financing. Over the years, Chola has transformed into a leading comprehensive financial services provider, offering a wide array of solutions including vehicle finance, home loans, SME loans, home equity loans, loan against property, consumer durable loans, and more. With a nationwide presence of 1,500+ branches and Assets Under Management (AUM) surpassing Rs. 1.77 lakh crore, Chola serves over 42.9 lakh happy customers. The company’s subsidiaries include Cholamandalam Securities Limited (CSEC), Cholamandalam Home Finance Limited (CHFL), and Payswiff Technologies Private Limited (Payswiff), enhancing its diverse portfolio. At Chola, our commitment is to foster growth and empowerment for customers, employees, shareholders, and communities alike. We are driven by a strong foundation of integrity, ethical values, and a deep sense of responsibility towards all our stakeholders. As we continue to grow and innovate, we aim to create sustainable value and contribute positively to the lives of those we serve, enabling them to enter a better life .

Charles Schwab

cb aboutschwab.com

Charles Schwab is a different kind of investment services firm – one that strives to disrupt the status quo of the traditional Wall Street approach on behalf of our clients. We believe today, as we did on Day 1, that when you find ways to improve the investing experience for your clients, then business results will follow. Follow our company culture at #SchwabLife and see how we give back at #Schwab4Good. Support hours: 7 a.m.–7 p.m. CT or 24/7 at schwab.com/contact-us. Social Media Disclosures: https://www.aboutschwab.com/social-media (#0424-TM8W)

Loading…

NEWS

Citi CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

May 07, 2026 12:14 AM

How Citi increased loyalty engagement by 5.1%

Mastercard helped Citi increase their engagement of their loyalty program and improvement of overall brand perception.

Read Article

April 18, 2026 07:00 AM

Everything we know about how Wall Street banks are using AI

Wall Street banks like JPMorgan and Goldman Sachs are investing billions in AI, reshaping workflows and culture — not to mention budgets.

Read Article

April 16, 2026 07:00 AM

Hot Picks: Cybersecurity stocks stand out as AI reshapes software landscape

AI adoption and rising cyber threats boost outlook for software stocks focused on security, data and infrastructure growth.

Read Article

April 15, 2026 07:00 AM

Citi Reports Record Quarter, Emphasizes AI-Driven Efficiency

Citi posted a record quarterly revenue of **$24.6 billion** and net income of approximately **$5.8 billion** in Q1 2026 as new CFO Gonzalo...

Read Article

April 07, 2026 07:00 AM

Citi Adjusts Stryker (SYK) Target Price Amid Cybersecurity Conce

Citi has adjusted its target price for Stryker SYK from $420 to $385, maintaining a Buy rating. Concerns over a cybersecurity attack linked...

Read Article

March 11, 2026 07:00 AM

Ex-Citi Ventures MD Carbonara joins venture firm Mayfield

Matt Carbonara was a managing director at Citi's venture arm for over six years, following CVC positions at Cisco and Comcast.

Read Article

March 10, 2026 07:00 AM

Citi Cuts PT on CrowdStrike Holdings, Inc. (CRWD) to $525 From $610 – Here’s Why

CrowdStrike Holdings, Inc. (NASDAQ:CRWD) is one of the top stocks that will make you rich in 10 years. Citi cut the price target on...

Read Article

February 17, 2026 04:04 AM

Did Hackers Steal Millions from Citigroup?

Banking giant Citigroup denies that it was victim of a massive international cyber crime scheme.

Read Article

February 12, 2026 08:00 AM

Citi: Banks face $3 trillion risk from quantum cyberattacks

While "Q-Day" may be years away, experts warn hackers are already harvesting encrypted data to decrypt later, making the transition to new...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-47238

SUMMARY

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #133, a normal authenticated user can edit another user's video subtitles because of a lack of authorization. They can upload subtitles, edit their name or delete them. This issue has been patched in version 5.5.3 - #133.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Impact Score

2.5

Exploitability

3.9

REFERENCES

https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-x468-whmw-c863

CVE-2026-45418

SUMMARY

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #132, any authenticated user who can upload videos can add multiple subtitles from different files and change their title (English, Spanish...). The POST /actions/subtitle_edit.php request used to change their title includes a number parameter which is vulnerable to SQL Injection. A boolean-based blind SQL injection can be used to exfiltrate sensitive data. This issue has been patched in version 5.5.3 - #132.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-q233-m544-6jqr

CVE-2026-45060

SUMMARY

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #129, the actions/progress_video.php endpoint is vulnerable to blind SQL injection. Any unauthenticated user can exploit the ids parameter to execute SQL queries and exfiltrate sensitive data. This issue has been patched in version 5.5.3 - #129.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

3.9

REFERENCES

https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-wpq3-gxx7-c76h

CVE-2026-42846

SUMMARY

ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #140, ClipBucket's Remote Play feature allows any authenticated user to add a video by importing an external URL as the source. Some shell commands are run with the URL as a parameter. The URL is concatenated directly into shell commands without escaping then executed, so any shell metacharacter in the URL is interpreted. This results in arbitrary command execution. This issue has been patched in version 5.5.3 - #140.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

3.9

REFERENCES

https://github.com/MacWarrior/clipbucket-v5/security/advisories/GHSA-hvfx-hxmr-28c7

CVE-2026-6250

SUMMARY

An authenticated format string vulnerability exists in the ONVIF service of Tapo C110 v2 due to improper handling of user-controlled input. Externally controlled data is interpreted as a format string, which can be used to manipulate stack memory, including control flow data such as return addresses. A remote authenticated attacker may redirect execution flow to existing internal functions, triggering an unauthorized factory reset, leading to loss of configuration, deletion of stored credentials and service disruption.

Published

Date2026-06-11

Updated

Date2026-06-11

RISK INFORMATION (Score: )

cvss4

Base Score: 7.0

Complexity: LOW

CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…