Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Congressional Budget Office

Congressional Budget Office Vendor Cyber Rating & Cyber Score

cbo.gov

Since its founding in 1974, the Congressional Budget Office (CBO) has produced independent analyses of budgetary and economic issues to support the Congressional budget process. The agency is strictly nonpartisan and conducts objective, impartial analysis, which is evident in each of the dozens of reports and hundreds of cost estimates that its economists and policy analysts produce each year. All CBO employees are appointed solely on the basis of professional competence, without regard to political affiliation. CBO does not make policy recommendations, and each report and cost estimate discloses the agency’s assumptions and methodologies. All of CBO’s products – apart from informal cost estimates for legislation being developed privately


CBO A.I CyberSecurity Scoring

CBO
Company Information
Website:https://www.cbo.gov/
Employees number:359
Number of followers:6,498
NAICS:92
Industry Type:Government Administration
Homepage:cbo.gov
CBO Risk Score (AI oriented)
Between 550 and 599
logo
CBOGovernment Administration
Updated:
01/04/2026
593/1000
Very Poor
Ca
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
CBO Global Score (TPRM)
xxxx
logo
CBOGovernment Administration
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

CBO
CBOVery Poor
Current Score
593Ca (VERY POOR)
01000
5 incidents
-69 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
604Before Incident
JUNE 2026
603Before Incident
MAY 2026
596Before Incident
APRIL 2026
596Before Incident
MARCH 2026
593Before Incident
FEBRUARY 2026
589Before Incident
JANUARY 2026
586Before Incident
DECEMBER 2025
578Before Incident
NOVEMBER 2025
644Before Incident
Breach
07 Nov 2025CBO
Congressional Budget Office (CBO)

Cybersecurity Breach at the Congressional Budget Office (CBO) by Suspected Foreign Threat Actor

575After Incident
CRITICAL-69
CON5793057110725
The Congressional Budget Office (CBO), a critical U.S. legislative agency responsible for independent financial analysis and budget scoring, suffered a sophisticated cyber breach by a suspected foreign threat actor. The intrusion compromised sensitive communications, including internal emails and chat logs between lawmakers’ offices and CBO researchers, risking exposure of confidential legislative deliberations and economic projections that shape federal policy. While detected early, the breach disrupted operations, prompting some congressional offices to halt email correspondence with the CBO, delaying budget analyses and legislative scoring.The attack threatens the integrity of U.S. legislative processes, particularly amid partisan disputes over debt projections. The suspected state-sponsored nature of the breach suggests a targeted effort to influence or surveil federal financial policymaking, with potential long-term implications for national security. Though containment measures were implemented, the incident highlights vulnerabilities in government cybersecurity defenses against advanced persistent threats (APTs), raising concerns about the protection of classified legislative data and the broader stability of U.S. institutional trust.
INCIDENT DETAILS -
TYPE
cyber intrusiondata breachadvanced persistent threat (APT)
MOTIVATION
espionageinfluence on U.S. legislative/financial policyaccess to sensitive budget analyses
IMPACT
sensitive communicationsinternal emailsoffice chat logs between congressional staff and CBO researchersCBO internal networksemail systemscommunication platformssuspension of email correspondence between congressional offices and CBOdisruptions to legislative scoring and budget analysisdelays in supporting lawmakers with timely financial assessmentspotential erosion of trust in CBO's analytical independenceconcerns over data security in legislative processes
DATA BREACH
sensitive communicationsinternal emailsoffice chat logsSensitivity Of Data: high (legislative and budgetary deliberations)Data Exfiltration: suspected (not confirmed)
OCTOBER 2025
643Before Incident
SEPTEMBER 2025
641Before Incident
AUGUST 2025
638Before Incident
MAY 2025
649Before Incident
Cyber Attack
01 May 2025CBO
Congressional Budget Office (CBO)

Suspected Cyberattack on the Congressional Budget Office (CBO) by Foreign Actors

627After Incident
CRITICAL-22
CON0232102110725
The Congressional Budget Office (CBO), a nonpartisan U.S. government agency responsible for critical financial analyses, suffered a sophisticated cyber breach by suspected foreign actors. The attack exposed sensitive financial research data, including budget projections, economic models, and legislative cost estimates—information vital for congressional decision-making affecting millions of Americans.The compromised data could provide foreign adversaries with insights into U.S. fiscal planning and legislative priorities, potentially influencing policy outcomes. While the exact scope of the breach remains undisclosed, the CBO confirmed unauthorized access to its systems, prompting an immediate federal investigation. The incident underscores persistent vulnerabilities in high-value government infrastructure, with state-sponsored hackers increasingly targeting agencies holding strategic intelligence.Authorities are assessing the full impact, but the breach aligns with a broader trend of cyberattacks on U.S. government entities, raising concerns over cybersecurity inadequacies in protecting national interests. The CBO is collaborating with federal cybersecurity officials to mitigate risks and prevent future intrusions, though no attacker details or methods have been publicly revealed. The breach may accelerate calls for enhanced security funding and stricter data-handling protocols across government agencies.
INCIDENT DETAILS -
TYPE
cyberattackdata breachunauthorized access
MOTIVATION
espionageaccess to U.S. fiscal planning and legislative prioritiesgeopolitical advantage
IMPACT
sensitive financial research dataeconomic modelsbudget analysislegislative cost estimatesCBO databasesinternal systemspotential disruption to legislative decision-makingcompromised confidentiality of fiscal analysespotential erosion of trust in CBO's data securityconcerns over government cybersecurity adequacy
DATA BREACH
financial research dataeconomic modelsbudget analysislegislative cost estimatesSensitivity Of Data: high (influences U.S. fiscal and legislative decisions)
DECEMBER 2024
707Before Incident
Breach
01 Dec 2024CBO
U.S. Congressional Budget Office (CBO)

U.S. Congressional Budget Office (CBO) Cyber Breach by Suspected Foreign Actor

637After Incident
CRITICAL-70
CON5603756110725
The U.S. Congressional Budget Office (CBO) suffered a cyber breach by a suspected foreign actor, potentially exposing internal communications, research, and email/chat logs used to guide federal legislation. The incident, discovered recently, is under federal investigation due to concerns over unauthorized access to sensitive interactions between lawmakers and CBO analysts. The CBO confirmed the breach and took immediate containment measures, though the extent of data compromise and the attacker’s identity remain undisclosed. Given the CBO’s role in shaping economic and budgetary policies, the breach poses risks of legislative manipulation or intelligence gathering by state-sponsored actors. The incident echoes a December 2024 attack on the U.S. Treasury via a third-party vendor, though no direct link has been established.
INCIDENT DETAILS -
TYPE
cyberespionagedata breach
MOTIVATION
espionageinfluence on federal legislationeconomic intelligence
IMPACT
internal communicationsresearch documentsemail logschat logsBrand Reputation Impact: potential erosion of trust in CBO's data security
DATA BREACH
internal communicationsresearch documentsemail logschat logsSensitivity Of Data: high (influences federal legislation and financial projections)
JUNE 2024
721Before Incident
Cyber Attack
16 Jun 2024CBO
Congressional Budget Office (CBO)

CBO Hit by Suspected Nation-State Cyberattack

700After Incident
CRITICAL-21
CON5502155110825
The U.S. Congressional Budget Office (CBO), a federal agency responsible for providing nonpartisan economic and budgetary analysis to Congress, suffered a suspected nation-state cyberattack. The breach, detected recently, prompted immediate containment measures, including enhanced monitoring and new security controls. While details remain undisclosed, the attack may have exploited a firewall vulnerability in an unpatched Cisco ASA device, rendering the network security system unreachable.The CBO handles highly sensitive fiscal data, including economic projections and legislative cost estimates, which could provide foreign adversaries with strategic insights into U.S. policy priorities. The incident follows a pattern of targeted attacks on congressional entities, such as the 2024 breach of the Library of Congress, where hackers accessed months of emails tied to draft legislation. The ongoing federal government shutdown has exacerbated vulnerabilities, delaying critical defensive actions like patching and threat intelligence sharing.The full scope of the intrusion—including whether congressional communications, internal analyses, or budget models were compromised—remains under investigation. The attack underscores escalating risks to government agencies from state-sponsored cyber operations, with potential long-term implications for national security and legislative integrity.
INCIDENT DETAILS -
TYPE
CyberwarfareNation-State AttackUnauthorized Access
MOTIVATION
EspionageAccess to sensitive fiscal/policy dataInsight into U.S. legislative priorities
IMPACT
Potential exposure of sensitive fiscal dataEconomic projectionsBudget modelingPossible email correspondence with congressional officesCBO networkCisco ASA firewall deviceOngoing investigationAdditional monitoring and security controls implementedWork for Congress continues despite intrusionPotential erosion of trust in CBO's cybersecurity postureConcerns over protection of sensitive legislative data
DATA BREACH
Sensitive fiscal dataEconomic projectionsBudget modelingPotential email correspondenceSensitivity Of Data: High (nonpublic legislative analysis, policy discussions)
JUNE 2021
761Before Incident
Breach
16 Jun 2021CBO
U.S. Congressional Budget Office (CBO)

Cybersecurity Incident at U.S. Congressional Budget Office (CBO)

687After Incident
CRITICAL-74
CON3362133110725
The U.S. Congressional Budget Office (CBO) suffered a cybersecurity breach by a suspected foreign hacker, potentially exposing sensitive internal communications and data. The intrusion, detected recently, raised concerns over the exposure of emails and exchanges between congressional offices and CBO analysts. While officials claim the breach was contained early, some congressional offices temporarily halted communications with the CBO due to security fears. The CBO, a nonpartisan agency providing economic analysis and legislative cost estimates, could have had draft reports, economic forecasts, and internal discussions compromised. The attack aligns with a broader trend of cyber incidents targeting U.S. government agencies, including prior breaches at the Treasury Department and the Committee on Foreign Investment in the United States (CFIUS), attributed to the Chinese state-sponsored APT group Silk Typhoon. This group previously exploited the ProxyLogon zero-day vulnerabilities in Microsoft Exchange Server in 2021, compromising tens of thousands of systems.
INCIDENT DETAILS -
TYPE
Data BreachUnauthorized Network AccessEspionage
MOTIVATION
EspionageData TheftIntelligence Gathering
IMPACT
EmailsExchanges between congressional offices and CBO analystsDraft reportsEconomic forecastsInternal communicationsCBO NetworkTemporary halt of email communications between some congressional offices and the CBOOngoing investigationPotential erosion of trust in CBO's ability to secure sensitive legislative and economic data
DATA BREACH
EmailsInternal CommunicationsDraft Legislative ReportsEconomic ForecastsAnalyst ExchangesHigh (sensitive legislative and economic data)Suspected, but unconfirmed

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for CBO ?
?
What was CBO's A.I Rankiteo Cyber Score in June 2026 ?
?
What was CBO's A.I Rankiteo Cyber Score in May 2026 ?
?
What was CBO's A.I Rankiteo Cyber Score in April 2026 ?
?
What was CBO's A.I Rankiteo Cyber Score in March 2026 ?
?
What was CBO's A.I Rankiteo Cyber Score in February 2026 ?
?
What was CBO's A.I Rankiteo Cyber Score in January 2026 ?
?
What was CBO's A.I Rankiteo Cyber Score in December 2025 ?
?
What was CBO's A.I Rankiteo Cyber Score in November 2025 ?
?
What was CBO's A.I Rankiteo Cyber Score in October 2025 ?
?
What was CBO's A.I Rankiteo Cyber Score in September 2025 ?
?
What was CBO's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on CBO's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with CBO ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view CBO's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?