CNES A.I CyberSecurity Scoring
CNES
Company Information
Website:http://www.cne-siar.gov.uk/
Employees number:334
Number of followers:950
NAICS:92
Industry Type:Government Administration
Homepage:cne-siar.gov.uk
CNES Risk Score (AI oriented)
Between 650 and 699
CNESGovernment Administration
Updated:
29/03/2026
29/03/2026
688/1000
Weak
B
CNES Global Score (TPRM)
xxxx
CNESGovernment Administration
Score locked

CNESWeak
Current Score
688B (WEAK)
01000
1 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
692
JUNE 2026
692
MAY 2026
691
APRIL 2026
689
MARCH 2026
688
FEBRUARY 2026
687
JANUARY 2026
685
DECEMBER 2025
684
NOVEMBER 2025
682
OCTOBER 2025
681
SEPTEMBER 2025
680
AUGUST 2025
678
NOVEMBER 2023
763
Ransomware
01 Nov 2023 • CNES
Comhairle Nan Eilean Siar: Scottish council still reeling from 2023 ransomware attack
Ransomware Attack on Comhairle nan Eilean Siar (Western Isles Council)
636
CRITICAL-127
COM1764252014.056607
Auditors remain concerned about the cyber resilience of a Scottish council as some systems are yet to be fully rebuilt following a ransomware attack in November 2023.
The ransomware attack on Comhairle nan Eilean Siar, in Scotland's Western Isles, required "several" of its systems to be reconstructed, among other damage – especially to the authority's finance department.
Systems for housing benefits, council tax, and non-domestic rates remain unrestored, with their large data volumes slowing the digital renovation, the audit noted.
A report [PDF] on the attack, published by Scotland's Accounts Commission today, commended the Comhairle's swift response to the attack, but highlights various gaps that remain in its cybersecurity defenses.
In addition to systems destroyed by the attack that still have not been rebuilt two years later, some of the key recommended cybersecurity improvements made at the time have also yet to be implemented.
As of September 2025, the audit notes that only five of the ten recommendations were put in place. The most significant areas yet to be addressed include testing staff training programs, testing the incident response plan, and meeting full compliance with the NCSC's security principles.
The audit report states: "Weaknesses in IT infrastructure, governance, preparedness, and staff capacity were identified back in 2021/22 and had they been addressed sooner, the impact of the attack might have been reduced.
"As a matter of priority, realistic
INCIDENT DETAILS -
TYPE
IMPACT
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for CNES ??
What was CNES's A.I Rankiteo Cyber Score in June 2026 ??
What was CNES's A.I Rankiteo Cyber Score in May 2026 ??
What was CNES's A.I Rankiteo Cyber Score in April 2026 ??
What was CNES's A.I Rankiteo Cyber Score in March 2026 ??
What was CNES's A.I Rankiteo Cyber Score in February 2026 ??
What was CNES's A.I Rankiteo Cyber Score in January 2026 ??
What was CNES's A.I Rankiteo Cyber Score in December 2025 ??
What was CNES's A.I Rankiteo Cyber Score in November 2025 ??
What was CNES's A.I Rankiteo Cyber Score in October 2025 ??
What was CNES's A.I Rankiteo Cyber Score in September 2025 ??
What was CNES's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on CNES's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with CNES ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view CNES's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?