DC Metropolitan Police Department Company CyberSecurity Posture

dc.gov
ISOSOC2 Type 1SOC2 Type 2PCI DSSHIPAAGDPR

As one of the top 10 largest police departments in the country, the Washington, DC Metropolitan Police Department offers opportunities you won’t find anywhere else. From leading motorcades for the President of the United States and world leaders - to joining elite investigative units, our officers are at the forefront of policing in the nation’s capital. We routinely collaborate with federal agencies and are committed to impactful community policing. Here, you’ll be part of a department that is supported by the community and driven by service.

DC Metropolitan Police Department A.I CyberSecurity Scoring

DMPD

Company Details

Linkedin ID:

dc-metropolitan-police-department

Website:

https://joinmpd.dc.gov

Employees number:

1,319

Number of followers:

7,584

NAICS:

92212

Industry Type:

Law Enforcement

Homepage:

dc.gov

IP Addresses:

Scan still pending

Company ID:

DC _6508416

Scan Status:

In-progress

AI scoreDMPD Risk Score (AI oriented)

Between 650 and 699

https://images.rankiteo.com/companyimages/dc-metropolitan-police-department.jpeg
DMPD Law Enforcement
Updated:
  • Powered by our proprietary A.I cyber incident model
  • Insurance preferes TPRM score to calculate premium
globalscoreDMPD Global Score (TPRM)

XXXX

https://images.rankiteo.com/companyimages/dc-metropolitan-police-department.jpeg
DMPD Law Enforcement
  • Instant access to detailed risk factors
  • Benchmark vs. industry & size peers
  • Vulnerabilities
  • Findings

DC Metropolitan Police Department

Weak
Current Score
654
B (Weak)
01000
3 incidents
-49.0 avg impact

Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.

DECEMBER 2025
654
NOVEMBER 2025
652
OCTOBER 2025
650
SEPTEMBER 2025
647
AUGUST 2025
645
JULY 2025
642
JUNE 2025
686
Cyber Attack
04 Jun 2025 • Google, GSMA, Metropolitan Police and Apple: Cops want Apple, Google to kill stolen phones remotely
UK Legislators Question Apple and Google Over Lack of Smartphone Theft Protections

**UK Lawmakers Press Apple and Google Over Stolen Smartphone Protections** UK legislators grilled Apple and Google in a House of Commons hearing over their failure to implement measures that would allow stolen smartphones to be remotely locked, reset, or blocked from accessing cloud services—a request repeatedly made by the Metropolitan Police. During the session, MPs expressed frustration over what they perceived as resistance from the tech giants, suggesting commercial incentives may be influencing their stance. Apple and Google, however, argued that such measures could introduce new fraud risks, including account takeovers and blackmail attempts. **The Scale of the Problem** The Met Police reported a sharp rise in smartphone thefts, with 80,000 devices stolen in London in 2024—up from 64,000 in 2023. Apple devices account for roughly 80% of stolen phones, with an estimated annual replacement value of £50 million ($67 million). Most stolen devices are funneled through criminal networks and resold abroad, primarily in Algeria, China, and Hong Kong. **Current Limitations** While the GSMA industry association allows stolen phones to be blocked at a network level using their IMEI (International Mobile Equipment Identity) numbers, this only covers about 10% of global networks. The Met Police has proposed an international cloud-level block, where reported stolen devices would be barred from accessing Apple or Google services. Security experts argue this could drastically reduce resale value and theft incentives. **Industry Responses** Apple’s Gary Davis acknowledged the risks of IMEI-based blocking, citing concerns over fraud vectors, including impersonation attacks that could lead to account deletions or blackmail. Google’s Simon Wingrove noted that Android devices can already be locked or wiped via the *Find My Device* app, but it remains unclear whether this prevents stolen phones from being reused with new accounts. **Potential Solutions** Dion Price, CEO of Trustonic—a company that provides remote locking for supply chain distributors—suggested a government-regulated system using IMEI data already collected for trade and tax purposes. Such a system could enable near-instant global locking of stolen devices, but only if phones are registered at first activation. The debate highlights the tension between security, user protection, and commercial interests as lawmakers push for stronger anti-theft measures.

637
high -49
GOOGSMDC-APP1766375619
Incident Details -
Type
Policy and Compliance Issue
Motivation
Financial gain through resale of stolen devices
Impact
Financial Loss: £50 million ($67 million) annual replacement value of stolen phones in London Systems Affected: Smartphones (primarily Apple iPhones) Operational Impact: Traumatic disconnection for users, potential data access by criminals Brand Reputation Impact: Potential reputational damage to Apple and Google due to perceived inaction Identity Theft Risk: Potential risk if data is accessed by criminals
Response
Third Party Assistance: Trustonic (provides locking technology for smartphones) Law Enforcement Notified: Metropolitan Police engaged with Apple and Google Communication Strategy: Public statements by Apple and Google to UK Parliament
Data Breach
Sensitivity Of Data: Potential access to cloud services (e.g., Google Photos, Drive, Gmail, Apple iCloud) Personally Identifiable Information: Potential risk if cloud data is accessed
Lessons Learned
Need for collaboration between tech companies, law enforcement, and regulators to address smartphone theft and resale. Potential for IMEI-based blocking systems to reduce theft incentives.
Recommendations
Implement an international cloud-level blocking system for stolen smartphones using IMEI numbers. Establish a regulatory or government body to oversee smartphone registration and locking mechanisms. Enhance fraud detection to prevent misuse of IMEI-based blocking systems. Improve coordination between tech companies, law enforcement, and telecom providers to track and block stolen devices.
Investigation Status
['Ongoing (policy discussion and technical evaluation)']
Stakeholder Advisories
UK Parliament committee urging Apple and Google to implement IMEI-based blocking for stolen devices.
Post Incident Analysis
Lack of standardized IMEI-based blocking system for cloud services Potential commercial incentives for tech companies (e.g., revenue from cloud services and replacement devices) Fraud risks associated with IMEI spoofing or misuse Evaluate feasibility of IMEI-based cloud blocking with fraud prevention measures Explore regulatory or government-led solutions for smartphone registration and locking Improve collaboration between tech companies, law enforcement, and telecom providers
References
Blog URL Source URL
MAY 2025
686
APRIL 2025
685
MARCH 2025
683
FEBRUARY 2025
682
JANUARY 2025
680
MAY 2021
692
Ransomware
01 May 2021 • DC Metropolitan Police Department
Cyber Attack on DC Metropolitan Police Department

DC Metropolitan Police Department was affected by a cyber attack on may 2021. Twenty-two officers’ applicant files were in an archive that was 165 MB compressed. This was in addition to the first small dump the threat actors made with 5 other officers’ applicant files. It was revealed that the ransom demand was $4 million USD, and that the police department’s supposedly final offer was $100,000.00 which was rejected by the hacker group. They also uploaded a new archive of files that appears to be 22.7 GB in size, hackers indicated that they had downloaded 250 GB of data, so this is allegedly another partial dump.

570
critical -122
DCM121313123
Incident Details -
Type
Ransomware
Motivation
Financial
Impact
Applicant files Other sensitive data
Data Breach
Applicant files Other sensitive data Sensitivity Of Data: High Application files
References
Blog URL Source URL
APRIL 2021
765
Breach
01 Apr 2021 • DC Metropolitan Police Department
Metropolitan Police Department Cyber Attack

Metropolitan Police Department suffered a cyber attack by Babuk Locker that led to a breach of its server. An unauthorized accessed on its server compromised the DC Police’s networks and stole 250 GB of unencrypted files. The ransomware gang also posted screenshots of various folders allegedly stolen in the attack, with the folder names looking like they are containing a lot of files related to operations, disciplinary records, and files related to gang members and ‘crews’ operating in DC

691
critical -74
DCM2249251122
Incident Details -
Type
Ransomware
Attack Vector
Unauthorized Access
Motivation
Financial Gain, Data Theft
Impact
Operational files Disciplinary records Gang-related files Systems Affected: Servers
Data Breach
Operational files Disciplinary records Gang-related files Sensitivity Of Data: High
References
Blog URL Source URL

Frequently Asked Questions

According to Rankiteo, the current A.I.-based Cyber Score for DC Metropolitan Police Department is 654, which corresponds to a Weak rating.

According to Rankiteo, the A.I. Rankiteo Cyber Score for November 2025 was 652.

According to Rankiteo, the A.I. Rankiteo Cyber Score for October 2025 was 650.

According to Rankiteo, the A.I. Rankiteo Cyber Score for September 2025 was 647.

According to Rankiteo, the A.I. Rankiteo Cyber Score for August 2025 was 645.

According to Rankiteo, the A.I. Rankiteo Cyber Score for July 2025 was 642.

According to Rankiteo, the A.I. Rankiteo Cyber Score for June 2025 was 686.

According to Rankiteo, the A.I. Rankiteo Cyber Score for May 2025 was 686.

According to Rankiteo, the A.I. Rankiteo Cyber Score for April 2025 was 685.

According to Rankiteo, the A.I. Rankiteo Cyber Score for March 2025 was 683.

According to Rankiteo, the A.I. Rankiteo Cyber Score for February 2025 was 682.

According to Rankiteo, the A.I. Rankiteo Cyber Score for January 2025 was 680.

Over the past 12 months, the average per-incident point impact on DC Metropolitan Police Department’s A.I Rankiteo Cyber Score has been -49.0 points.

You can access DC Metropolitan Police Department’s cyber incident details on Rankiteo by visiting the following link: https://www.rankiteo.com/company/dc-metropolitan-police-department.

You can find the summary of the A.I Rankiteo Risk Scoring methodology on Rankiteo by visiting the following link: Rankiteo Algorithm.

You can view DC Metropolitan Police Department’s profile page on Rankiteo by visiting the following link: https://www.rankiteo.com/company/dc-metropolitan-police-department.

With scores of 18.5/20 from OpenAI ChatGPT, 20/20 from Mistral AI, and 17/20 from Claude AI, the A.I. Rankiteo Risk Scoring methodology is validated as a market leader.