Dominion Energy
Company Details
Linkedin ID:
dominionenergy
Employees number:
27,490
Number of followers:
205,127
NAICS:
22
Industry Type:
Homepage:
dominionenergy.com
IP Addresses:
37
Company ID:
DOM_8891748
Scan Status:
Completed
Dominion Energy Company CyberSecurity Posture
dominionenergy.com
Dominion Energy (NYSE: D), headquartered in Richmond, Va., provides regulated electricity service to 3.6 million homes and businesses in Virginia, North Carolina, and South Carolina, and regulated natural gas service to 500,000 customers in South Carolina. The company is one of the nation’s leading developers and operators of regulated offshore wind and solar power and the largest producer of carbon-free electricity in New England. The company’s mission is to provide the reliable, affordable, and increasingly clean energy that powers its customers every day. Please visit DominionEnergy.com to learn more.
Dominion Energy A.I CyberSecurity Scoring
Dominion Energy Risk Score (AI oriented)Between 800 and 849
Dominion Energy
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Dominion Energy Global Score (TPRM)XXXX
Dominion Energy
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Dominion Energy Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Dominion Energy
Cyber Attack
Rankiteo Explanation
Attack threatening the economy of geographical region
Description: Dominion Energy, a critical infrastructure provider in the energy sector, faced a sophisticated cybersecurity incident targeting its operational assets. The attack, detected and managed by the company’s Cyber Security Operations Center (CSOC), involved malicious actors attempting to disrupt or exfiltrate data from systems integral to energy distribution. Given Dominion’s role in powering vital services including residential, commercial, and potentially government-linked facilities the breach posed risks of cascading outages, regulatory non-compliance, and compromise of sensitive infrastructure data.The incident likely involved advanced persistent threats (APTs) or state-sponsored actors, given the high-value target and the company’s proactive collaboration with entities like the FBI’s InfraGard and National Cyber Security Center. While the article does not specify data exfiltration or physical damage, the nature of Dominion’s operations (e.g., power grids, gas plants) means any successful intrusion could escalate to systemic disruptions, financial penalties, or even public safety hazards if critical controls were compromised. The response included incident containment, regulatory reporting, and reinforcement of threat intelligence sharing across public-private partnerships to mitigate future risks.
Dominion Energy Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Dominion Energy
Incidents vs Utilities Industry Average (This Year)
No incidents recorded for Dominion Energy in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Dominion Energy in 2026.
Incident Types Dominion Energy vs Utilities Industry Avg (This Year)
No incidents recorded for Dominion Energy in 2026.
Incident History — Dominion Energy (X = Date, Y = Severity)
Dominion Energy cyber incidents detection timeline including parent company and subsidiaries
Dominion Energy Company Subsidiaries
Dominion Energy (NYSE: D), headquartered in Richmond, Va., provides regulated electricity service to 3.6 million homes and businesses in Virginia, North Carolina, and South Carolina, and regulated natural gas service to 500,000 customers in South Carolina. The company is one of the nation’s leading developers and operators of regulated offshore wind and solar power and the largest producer of carbon-free electricity in New England. The company’s mission is to provide the reliable, affordable, and increasingly clean energy that powers its customers every day. Please visit DominionEnergy.com to learn more.
Loading...
Dominion Energy Similar Companies
Hitachi Energy
Hitachi Energy is a global technology leader in electrification, powering a sustainable energy future with innovative power grid technologies with digital at the core. Over three billion people depend on our technologies to power their daily lives. With over a century in pioneering mission-critical
American Electric Power
Our team at American Electric Power is committed to improving our customers' lives with reliable, affordable power. We are investing $54 billion from 2025 through 2029 to enhance service for customers and support the growing energy needs of our communities. Our nearly 16,000 employees operate and ma
Dubai Electricity & Water Authority - DEWA
Dubai Electricity and Water Authority (DEWA), established on 1 January 1992, stands at the forefront of sustainable energy and water management. With a dedicated workforce of over 11,000 employees, we ensure reliable services across the entire chain of electricity and water production, transmission,
Grupo Cobra
Grupo Cobra es una compañía global de 80 años de experiencia en el sector de la ingeniería industrial aplicada y servicios especializados. Contamos con un equipo de 18.700 personas especializadas en todos los campos relacionados con la ingeniería, instalación y mantenimiento industrial de infraestru
E.ON
We are one of Europe's largest energy companies with the business areas of energy networks, energy infrastructure solutions and energy sales. It’s on us to make new energy work, and we are actively leading energy’s future – putting our customers first and delivering innovative solutions that help ad
PT PLN (Persero)
Indonesia State Electricity Corporation PLN has a long history in electricity industry of Indonesia. As the sole provider of electricity in Indonesia, PLN is striving to increase quality of services to all Indonesian. In 1972, in accordance with Government Regulation No.17, the State-owned Electric
RWE is leading the way to a clean energy world. With its investment and growth strategy Growing Green, RWE is contributing significantly to the success of the energy transition and the decarbonisation of the energy system. Around 20,000 employees work for the company in almost 30 countries worldwide
Duke Energy, a Fortune 150 company headquartered in Charlotte, N.C., is one of America’s largest energy holding companies. The company’s electric utilities serve 8.4 million customers in North Carolina, South Carolina, Florida, Indiana, Ohio and Kentucky, and collectively own 54,800 megawatts of ene
NTPC Limited is India’s largest power generation utility with roots planted way back in 1975 to accelerate power development in India. Since then it has established itself as the dominant power major with a presence in the entire value chain of the power generation business. From fossil fuels, it ha
.png)
Dominion Energy CyberSecurity News
January 20, 2026 02:16 PM
10 Hires, Promotions Include a New CFO at Dominion Energy CU
Seven professionals are promoted at California's Tucoemas FCU and Jeanne D'Arc CU in Massachusetts.
December 26, 2025 08:00 AM
Dominion Energy Virginia sues over Trump order to halt offshore wind project, calling it ‘arbitrary and capricious’
Dominion called this week's order “the latest in a series of irrational agency actions attacking offshore wind and then doubling down when...
December 24, 2025 08:00 AM
E&E News: Trump efforts to throttle renewables draw more legal challenges
GREENWIRE | Dominion Energy and a national coalition of regional wind and solar developers have filed separate lawsuits challenging the...
December 23, 2025 08:00 AM
Dominion Energy Sues Interior Over Offshore Wind Suspension (1)
The Virginia Electric and Power Company is asking a federal court to block the Interior Department's Monday order directing the Coastal...
December 20, 2025 08:00 AM
Dominion Energy (D) Price Targets Lowered by Analysts
Dominion Energy, Inc. (NYSE:D) is included among the 11 Best Utility Stocks to Invest in According to Hedge Funds. Dominion Energy...
December 19, 2025 08:00 AM
Has the Recent Rally in Dominion Energy Shares Gone Too Far?
If you are wondering whether Dominion Energy is still a solid value play after its recent run, or if most of the upside is already priced in...
December 19, 2025 08:00 AM
Dominion Energy (D) Valuation After Amazon SMR Deal and Renewables Expansion Boost Investor Optimism
Dominion Energy (D) just stepped further into the future of power, expanding its renewable portfolio and signing an SMR focused memorandum...
December 12, 2025 08:00 AM
Dominion Energy acts as a 'Good Neighbor'
The scene at the Dominion Energy offices on Dec. 11 was one full of holiday cheer.
December 07, 2025 08:00 AM
Cybersecurity Pundits: 2025 List Of Industry Experts
These top experts are available to media outlets for their opinions and insights on cybercrime, cybersecurity, cyberwarfare, national security, privacy, and...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Dominion Energy CyberSecurity History Information
Official Website of Dominion Energy
The official website of Dominion Energy is https://http://www.dominionenergy.com.
Dominion Energy’s AI-Generated Cybersecurity Score
According to Rankiteo, Dominion Energy’s AI-generated cybersecurity score is 803, reflecting their Good security posture.
How many security badges does Dominion Energy’ have ?
According to Rankiteo, Dominion Energy currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Dominion Energy been affected by any supply chain cyber incidents ?
According to Rankiteo, Dominion Energy has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Dominion Energy have SOC 2 Type 1 certification ?
According to Rankiteo, Dominion Energy is not certified under SOC 2 Type 1.
Does Dominion Energy have SOC 2 Type 2 certification ?
According to Rankiteo, Dominion Energy does not hold a SOC 2 Type 2 certification.
Does Dominion Energy comply with GDPR ?
According to Rankiteo, Dominion Energy is not listed as GDPR compliant.
Does Dominion Energy have PCI DSS certification ?
According to Rankiteo, Dominion Energy does not currently maintain PCI DSS compliance.
Does Dominion Energy comply with HIPAA ?
According to Rankiteo, Dominion Energy is not compliant with HIPAA regulations.
Does Dominion Energy have ISO 27001 certification ?
According to Rankiteo,Dominion Energy is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Dominion Energy
Dominion Energy operates primarily in the Utilities industry.
Number of Employees at Dominion Energy
Dominion Energy employs approximately 27,490 people worldwide.
Subsidiaries Owned by Dominion Energy
Dominion Energy presently has no subsidiaries across any sectors.
Dominion Energy’s LinkedIn Followers
Dominion Energy’s official LinkedIn profile has approximately 205,127 followers.
NAICS Classification of Dominion Energy
Dominion Energy is classified under the NAICS code 22, which corresponds to Utilities.
Dominion Energy’s Presence on Crunchbase
Yes, Dominion Energy has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/dominion-resources-inc.
Dominion Energy’s Presence on LinkedIn
Yes, Dominion Energy maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/dominionenergy.
Cybersecurity Incidents Involving Dominion Energy
As of January 25, 2026, Rankiteo reports that Dominion Energy has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Dominion Energy has an estimated 4,236 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Dominion Energy ?
Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.
How does Dominion Energy detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an enhanced monitoring with the dominion energy csoc team actively monitors and reacts to cyber threats and malicious electronic actions directed towards dominion energy assets...
Incident Details
Can you provide details on each incident ?
Title: None
Description: Jeremy leads Cisco's U.S. Public Sector Cybersecurity Threat Intelligence Ecosystem development with 18+ years of experience. He collaborates with governments, universities, and school districts on cybersecurity strategies and initiatives. His role includes overseeing cyber incident response, regulatory compliance, and the Cyber Security Operations Center (CSOC) at Dominion Energy, where the team actively monitors and reacts to cyber threats targeting the company's assets. No specific incident details (e.g., breach, attack, or vulnerability) are provided in the description.
Type: Cyber Attack
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Cyber Attack.
Impact of the Incidents
Which entities were affected by each incident ?
Incident : Cyber Attack DOM2433024102725
Entity Name: Dominion Energy
Entity Type: Organization
Industry: Energy/Utilities
Incident : Cyber Attack DOM2433024102725
Entity Name: Cisco (U.S. Public Sector)
Entity Type: Organization
Industry: Technology/Cybersecurity
Location: United States
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Cyber Attack DOM2433024102725
Enhanced Monitoring: The Dominion Energy CSOC team actively monitors and reacts to cyber threats and malicious electronic actions directed towards Dominion Energy assets.
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as The Dominion Energy CSOC team actively monitors and reacts to cyber threats and malicious electronic actions directed towards Dominion Energy assets..
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the processBackgroundAction() function in all versions up to, and including, 10.0.04. This makes it possible for authenticated attackers, with Subscriber-level access and above, to modify global map engine settings.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Description
The Save as PDF Plugin by PDFCrowd plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘options’ parameter in all versions up to, and including, 4.5.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. NOTE: Successful exploitation of this vulnerability requires that the PDFCrowd API key is blank (also known as "demo mode", which is the default configuration when the plugin is installed) or known.
Risk Information
cvss3
Base: 6.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Description
The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in the action_import_module() function in all versions up to, and including, 7.8.9.2. This makes it possible for authenticated attackers, with a lower-privileged role (e.g., Subscriber-level access and above), to upload arbitrary files on the affected site's server which may make remote code execution possible. Successful exploitation requires an admin to grant Hustle module permissions (or module edit access) to the low-privileged user so they can access the Hustle admin page and obtain the required nonce.
Risk Information
cvss3
Base: 7.5
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Description
The WP Directory Kit plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.9 via the wdk_public_action AJAX handler. This makes it possible for unauthenticated attackers to extract email addresses for users with Directory Kit-specific user roles.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Description
The Meta-box GalleryMeta plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 3.0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with editor-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.
Risk Information
cvss3
Base: 4.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N
References
- https://plugins.trac.wordpress.org/browser/meta-box-gallerymeta/tags/3.0.1/gallerymetaboxes.php#L119
- https://plugins.trac.wordpress.org/browser/meta-box-gallerymeta/tags/3.0.1/gallerymetaboxes.php#L314
- https://plugins.trac.wordpress.org/browser/meta-box-gallerymeta/tags/3.0.1/templates/single-mb_gallery.php#L31
- https://plugins.trac.wordpress.org/browser/meta-box-gallerymeta/tags/3.0.1/templates/single-mb_gallery.php#L33
- https://www.wordfence.com/threat-intel/vulnerabilities/id/bb9ae252-7e5f-4dc0-a162-100493b81980?source=cve
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=dominionenergy' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
