CFPB A.I CyberSecurity Scoring
CFPB
Company Information
Website:http://www.cfpb.gov
Employees number:1,233
Number of followers:136,310
NAICS:92
Industry Type:Government Administration
Homepage:cfpb.gov
CFPB Risk Score (AI oriented)
Between 600 and 649
CFPBGovernment Administration
Updated:
03/04/2026
03/04/2026
636/1000
Poor
Caa
CFPB Global Score (TPRM)
xxxx
CFPBGovernment Administration
Score locked

CFPBPoor
Current Score
636Caa (POOR)
01000
1 incidents
-140 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
644
JUNE 2026
642
MAY 2026
639
APRIL 2026
638
MARCH 2026
634
FEBRUARY 2026
632
JANUARY 2026
770
Breach
23 Jan 2026 • CFPB
Netflix, Facebook, TikTok, Binance, OnlyFans, Microsoft Outlook, Apple iCloud, Consumer Banks and Government Systems: 149 million login details leaked via unsecured database
Massive Exposed Database Containing 149 Million Credentials Discovered Online
630
CRITICAL-140
NETFACTIKBINONLMICAPPCONGOV1769182444
Massive Exposed Database Containing 149 Million Credentials Discovered Online
Security researcher Jeremiah Fowler uncovered a publicly accessible database containing 149 million usernames and passwords, including credentials for major platforms and sensitive systems. The unsecured collection, which was freely accessible via a web browser, included 48 million Gmail accounts, 17 million Facebook logins, 420,000 Binance credentials, 3.4 million Netflix accounts, 780,000 TikTok logins, and 100,000 OnlyFans accounts. Additionally, it held 1.5 million Microsoft Outlook, 900,000 Apple iCloud, and 1.4 million .edu credentials, along with login details for government systems and consumer bank accounts.
Fowler reported the database to the Canadian hosting provider, which took it offline after nearly a month for violating its terms of service. During this period, the database continued to grow, suggesting ongoing data collection. Fowler suspects the credentials were harvested via infostealing malware, which logs keystrokes when victims enter login details on compromised sites.
The discovery highlights the thriving infostealer market, where stolen credentials are sold for as little as $10 per log on the dark web. The simplicity of such malware makes it a popular tool for cybercriminals, enabling large-scale credential theft with minimal effort. The incident underscores the risks of unsecured databases and the widespread impact of infostealer-driven breaches.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
DECEMBER 2025
770
NOVEMBER 2025
770
OCTOBER 2025
770
SEPTEMBER 2025
770
AUGUST 2025
770
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for CFPB ??
What was CFPB's A.I Rankiteo Cyber Score in June 2026 ??
What was CFPB's A.I Rankiteo Cyber Score in May 2026 ??
What was CFPB's A.I Rankiteo Cyber Score in April 2026 ??
What was CFPB's A.I Rankiteo Cyber Score in March 2026 ??
What was CFPB's A.I Rankiteo Cyber Score in February 2026 ??
What was CFPB's A.I Rankiteo Cyber Score in January 2026 ??
What was CFPB's A.I Rankiteo Cyber Score in December 2025 ??
What was CFPB's A.I Rankiteo Cyber Score in November 2025 ??
What was CFPB's A.I Rankiteo Cyber Score in October 2025 ??
What was CFPB's A.I Rankiteo Cyber Score in September 2025 ??
What was CFPB's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on CFPB's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with CFPB ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view CFPB's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?