Entergy
Company Details
Linkedin ID:
entergy
Website:
Employees number:
11,655
Number of followers:
143,666
NAICS:
22
Industry Type:
Homepage:
entergy.com
IP Addresses:
0
Company ID:
ENT_1174772
Scan Status:
In-progress
Entergy Company CyberSecurity Posture
entergy.com
At Entergy (NYSE: ETR), we power life. More than 100 years ago, our founder Harvey Couch started this company with a handshake, some sawdust and a vision. Couch wanted to bring safe, affordable, reliable energy to the Middle South – energy that would power the lives of people and communities. Today, we own and operate one of the cleanest large-scale U.S. power generating fleets including more than five gigawatts of carbon-free nuclear capacity, a fleet of highly efficient gas resources, and a fast-growing portfolio of renewable resources. The nearly 12,000 men and women of Entergy deliver electricity and gas services to 3 million utility customers in Arkansas, Louisiana, Mississippi and Texas, generating annual GAAP revenues of $13.8 billion. Headquartered in New Orleans, we continue to play a driving role in the economic growth of the Gulf South. Our work matters. That’s been true for more than 100 years. And as we look to the next century, we remember the constant that bridges our past and future: We Power Life. Fast Facts: Entergy currently has a 90% rating on the 2022 Corporate Equality Index released by the Human Rights Campaign Foundation. This score places Entergy among the top energy and utility companies in the survey. With roots in the Gulf South region for more than a century, Entergy is a recognized leader in corporate citizenship, delivering more than $100 million in economic benefits to local communities through philanthropy and advocacy efforts annually over the last several years. With a total of 44 awards from EEI for its restoration and mutual-assistance work, Entergy remains the only utility company to have won either EEI's Recovery or Assistance Award, or both, every year since the awards began in 1998.
Entergy A.I CyberSecurity Scoring
Entergy Risk Score (AI oriented)Between 800 and 849
Entergy
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Entergy Global Score (TPRM)XXXX
Entergy
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Entergy Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Entergy
Data Leak
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: TALX is working with Entergy to notify former and current Entergy employees whose 2016 W-2 data have been acquired by criminals from the TALX portal. An unauthorized third party gained access to the accounts. It was done primarily by successfully answering personal questions about the affected employees in order to reset the employees’ PINS. It gave unauthorized access to certain Entergy employees’ online portal accounts and electronic W-2 tax forms for the tax year 2016 or earlier. TALX has arranged for two years of complimentary restoration and assistance help for affected Entergy employees.
Entergy Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Entergy
Incidents vs Utilities Industry Average (This Year)
No incidents recorded for Entergy in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Entergy in 2025.
Incident Types Entergy vs Utilities Industry Avg (This Year)
No incidents recorded for Entergy in 2025.
Incident History — Entergy (X = Date, Y = Severity)
Entergy cyber incidents detection timeline including parent company and subsidiaries
Entergy Company Subsidiaries
At Entergy (NYSE: ETR), we power life. More than 100 years ago, our founder Harvey Couch started this company with a handshake, some sawdust and a vision. Couch wanted to bring safe, affordable, reliable energy to the Middle South – energy that would power the lives of people and communities. Today, we own and operate one of the cleanest large-scale U.S. power generating fleets including more than five gigawatts of carbon-free nuclear capacity, a fleet of highly efficient gas resources, and a fast-growing portfolio of renewable resources. The nearly 12,000 men and women of Entergy deliver electricity and gas services to 3 million utility customers in Arkansas, Louisiana, Mississippi and Texas, generating annual GAAP revenues of $13.8 billion. Headquartered in New Orleans, we continue to play a driving role in the economic growth of the Gulf South. Our work matters. That’s been true for more than 100 years. And as we look to the next century, we remember the constant that bridges our past and future: We Power Life. Fast Facts: Entergy currently has a 90% rating on the 2022 Corporate Equality Index released by the Human Rights Campaign Foundation. This score places Entergy among the top energy and utility companies in the survey. With roots in the Gulf South region for more than a century, Entergy is a recognized leader in corporate citizenship, delivering more than $100 million in economic benefits to local communities through philanthropy and advocacy efforts annually over the last several years. With a total of 44 awards from EEI for its restoration and mutual-assistance work, Entergy remains the only utility company to have won either EEI's Recovery or Assistance Award, or both, every year since the awards began in 1998.
Loading...
Entergy Similar Companies
Hitachi Energy
Hitachi Energy is a global technology leader in electrification, powering a sustainable energy future with innovative power grid technologies with digital at the core. Over three billion people depend on our technologies to power their daily lives. With over a century in pioneering mission-critical
Grupo Cobra
Grupo Cobra es una compañía global de 80 años de experiencia en el sector de la ingeniería industrial aplicada y servicios especializados. Contamos con un equipo de 18.700 personas especializadas en todos los campos relacionados con la ingeniería, instalación y mantenimiento industrial de infraestru
Neoenergia
Somos uma companhia de capital aberto com ações (NEOE3) negociadas na Bolsa de Valores de São Paulo. Parte do grupo espanhol Iberdrola, atuamos no Brasil desde 1997, e atualmente, somos uma das líderes do setor elétrico do país. Estamos presentes em 18 estados e no Distrito Federal, com negócios em
NextEra Energy, Inc.
NextEra Energy, Inc. (NYSE: NEE) is one of the largest electric power and energy infrastructure companies in North America and is a leading provider of electricity to American homes and businesses. Headquartered in Juno Beach, Florida, NextEra Energy is a Fortune 200 company that owns Florida Power
The E.ON Group is one of Europe's largest operators of energy networks and energy infrastructure and a provider of innovative customer solutions for 50 million customers. Thus, we are decisively driving forward the energy transition in Europe and are committed to sustainability, climate protection,
Our story began more than 40 years ago. Today we are a global company, among the largest players in the energy sector in Europe and the 4th largest producer of wind energy. We are proud to be a leading utility integrated in the Dow Jones Sustainability Indexes (World). We want to build a new energy
The Saudi Electricity Company was established on the 5th of April in the year 2000, incorporated in accordance with Council of Ministers Mandate No. 169 dated November 30th, 1998, the Saudi Electricity Company was born out of the merger of smaller regional power company in the central, eastern, west
TATA Power
Tata Power is one of India’s largest integrated power companies and together with its subsidiaries and jointly controlled entities, has an installed/managed capacity of 14,294 MW. The Company has a presence across the entire power value chain - generation of renewable as well as conventional power i
Eskom Holdings SOC Ltd
Company profile Eskom Holdings generates, transports and distributes approximately 95% of South Africa’s electricity – making up 60% of the total electricity consumed on the African continent. Eskom is the world’s eleventh-largest power utility in terms of generating capacity, ranks ninth in term
.png)
Entergy CyberSecurity News
November 11, 2025 04:00 AM
SECI Invites Bids For Development Of Renewable Energy Cybersecurity Compliance Portal (RECAP)
The tender dated November 4, 2025, seeks proposals for the development of a project titled “Development of Cybersecurity Compliance Portal for...
October 30, 2025 07:00 AM
EU holds "8th Cybersecurity Forum" on protecting Europe's critical energy grid
Cybersecurity and energy leaders join forces to protect EU power grids ... Europe's top energy, cybersecurity, and technology leaders joined...
October 27, 2025 06:41 AM
Smart Grid Cybersecurity Market Size, Forecast 2025-2034
The smart grid cybersecurity market size exceeded USD 7.5 billion in 2024 and is projected to grow at over 11.7% CAGR from 2025 to 2034, driven by the...
October 17, 2025 07:00 AM
Securing the Energy Frontier: Cybersecurity Roundtable
“Securing the Oil & Gas Frontier,” a Cybersecurity Roundtable hosted by Kaspersky and Oil & Gas Middle East, unites senior executives and...
October 16, 2025 07:00 AM
How utilities work together to guard against cyberattacks
October is National Cybersecurity Month, but for utility employees at Entergy, security is central to our everyday work.
October 14, 2025 07:00 AM
Dragos sounds alarm over cyberattacks targeting distributed energy and industrial microgrids
Industrial cybersecurity company Dragos identified that distributed energy resources (DERs) and microgrids are transforming how power is...
October 08, 2025 07:00 AM
Cybersecurity a proactive priority backed by billion dollar investment vision
Global energy, petrochemical and industrial segments have become unmistakably more electrified, digitised and interconnected than ever...
October 01, 2025 07:00 AM
Advanced Research on Integrated Energy Systems Cyber Range
NREL's Advanced Research on Integrated Energy Systems (ARIES) Cyber Range is a state-of-the-art cyber-physical modeling, simulation,...
September 30, 2025 11:03 AM
Cybersecure Energy Systems
TNO helps energy stakeholders transform cybersecurity from compliance burden into competitive advantage through sector-specific, stepwise implementation.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Entergy CyberSecurity History Information
Official Website of Entergy
The official website of Entergy is https://www.entergy.com.
Entergy’s AI-Generated Cybersecurity Score
According to Rankiteo, Entergy’s AI-generated cybersecurity score is 805, reflecting their Good security posture.
How many security badges does Entergy’ have ?
According to Rankiteo, Entergy currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Entergy have SOC 2 Type 1 certification ?
According to Rankiteo, Entergy is not certified under SOC 2 Type 1.
Does Entergy have SOC 2 Type 2 certification ?
According to Rankiteo, Entergy does not hold a SOC 2 Type 2 certification.
Does Entergy comply with GDPR ?
According to Rankiteo, Entergy is not listed as GDPR compliant.
Does Entergy have PCI DSS certification ?
According to Rankiteo, Entergy does not currently maintain PCI DSS compliance.
Does Entergy comply with HIPAA ?
According to Rankiteo, Entergy is not compliant with HIPAA regulations.
Does Entergy have ISO 27001 certification ?
According to Rankiteo,Entergy is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Entergy
Entergy operates primarily in the Utilities industry.
Number of Employees at Entergy
Entergy employs approximately 11,655 people worldwide.
Subsidiaries Owned by Entergy
Entergy presently has no subsidiaries across any sectors.
Entergy’s LinkedIn Followers
Entergy’s official LinkedIn profile has approximately 143,666 followers.
NAICS Classification of Entergy
Entergy is classified under the NAICS code 22, which corresponds to Utilities.
Entergy’s Presence on Crunchbase
No, Entergy does not have a profile on Crunchbase.
Entergy’s Presence on LinkedIn
Yes, Entergy maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/entergy.
Cybersecurity Incidents Involving Entergy
As of December 10, 2025, Rankiteo reports that Entergy has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Entergy has an estimated 4,176 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Entergy ?
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.
How does Entergy detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with talx, and remediation measures with two years of complimentary restoration and assistance help, and communication strategy with notification to affected employees..
Incident Details
Can you provide details on each incident ?
Title: TALX Data Breach Affecting Entergy Employees
Description: TALX is working with Entergy to notify former and current Entergy employees whose 2016 W-2 data have been acquired by criminals from the TALX portal. An unauthorized third party gained access to the accounts primarily by successfully answering personal questions about the affected employees in order to reset the employees’ PINS. It gave unauthorized access to certain Entergy employees’ online portal accounts and electronic W-2 tax forms for the tax year 2016 or earlier. TALX has arranged for two years of complimentary restoration and assistance help for affected Entergy employees.
Type: Data Breach
Attack Vector: Account Compromise
Vulnerability Exploited: Weak PIN reset security questions
Threat Actor: Unauthorized third party
Motivation: Data Theft
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through PIN reset security questions.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach ENT18198622
Data Compromised: Employee w-2 data
Systems Affected: TALX portal
Identity Theft Risk: ['High']
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are W-2 Tax Forms and .
Which entities were affected by each incident ?
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach ENT18198622
Third Party Assistance: Talx.
Remediation Measures: Two years of complimentary restoration and assistance help
Communication Strategy: Notification to affected employees
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through TALX, .
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach ENT18198622
Type of Data Compromised: W-2 tax forms
Sensitivity of Data: High
Data Exfiltration: Yes
File Types Exposed: W-2 forms
Personally Identifiable Information: Yes
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Two years of complimentary restoration and assistance help, .
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Notification To Affected Employees.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach ENT18198622
Entry Point: PIN reset security questions
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach ENT18198622
Root Causes: Weak PIN reset security questions
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Talx, .
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Unauthorized third party.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Employee W-2 data and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was TALX portal.
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was talx, .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Employee W-2 data.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an PIN reset security questions.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Tuleap is a free and open source suite for management of software development and collaboration. Versions of Tuleap Community Edition prior to 17.0.99.1763126988 and Tuleap Enterprise Edition prior to 17.0-3 and 16.13-8 have missing CSRF protections which allow attackers to create or remove tracker triggers. This issue is fixed in Tuleap Community Edition version 17.0.99.1763126988 and Tuleap Enterprise Edition versions 17.0-3 and 16.13-8.
Risk Information
cvss3
Base: 4.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
References
- https://github.com/Enalean/tuleap/commit/71d427b0f7ed8fa269a5ee6f7a557cf3dfc99cd4
- https://github.com/Enalean/tuleap/security/advisories/GHSA-f2xv-x3g6-4j9p
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=71d427b0f7ed8fa269a5ee6f7a557cf3dfc99cd4
- https://tuleap.net/plugins/tracker/?aid=45618
Description
Tuleap is a free and open source suite for management of software development and collaboration. Tuleap Community Editon versions prior to 17.0.99.1762456922 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 are vulnerable to CSRF attacks through planning management API. Attackers have access to create, edit or remove plans. This issue is fixed in Tuleap Community Edition version 17.0.99.1762456922 and Tuleap Enterprise Edtion versions 17.0-2, 16.13-7 and 16.12-10.
Risk Information
cvss3
Base: 4.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
References
- https://github.com/Enalean/tuleap/commit/1734a7bb2964042310ddc3f6dd7b4c82eee27526
- https://github.com/Enalean/tuleap/security/advisories/GHSA-9h47-jg7r-ww7x
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=1734a7bb2964042310ddc3f6dd7b4c82eee27526
- https://tuleap.net/plugins/tracker/?aid=45592
Description
Tuleap is an Open Source Suite for management of software development and collaboration. Tuleap Community Edition versions below 17.0.99.1762444754 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 allow attackers trick victims into changing tracker general settings. This issue is fixed in version Tuleap Community Edition version 17.0.99.1762444754 and Tuleap Enterprise Edition versions 17.0-2, 16.13-7 and 16.12-10.
Risk Information
cvss3
Base: 4.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
References
- https://github.com/Enalean/tuleap/commit/993316dd6a291bb3937cb7a4571eaab0e7d55370
- https://github.com/Enalean/tuleap/security/advisories/GHSA-vxfh-h8p6-p5rg
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=993316dd6a291bb3937cb7a4571eaab0e7d55370
- https://tuleap.net/plugins/tracker/?aid=45593
Description
Tuleap is an Open Source Suite for management of software development and collaboration. Versions below 17.0.99.1762431347 of Tuleap Community Edition and Tuleap Enterprise Edition below 17.0-2, 16.13-7 and 16.12-10 allow attackers to access file release system information in projects they do not have access to. This issue is fixed in version 17.0.99.1762431347 of the Tuleap Community Edition and versions 17.0-2, 16.13-7 and 16.12-10 of Tuleap Enterprise Edition.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
References
- https://github.com/Enalean/tuleap/commit/403eb69f4cfafe52254c8f9bdbe66e1fedadc254
- https://github.com/Enalean/tuleap/security/advisories/GHSA-v6vm-6rxf-7p2v
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=403eb69f4cfafe52254c8f9bdbe66e1fedadc254
- https://tuleap.net/plugins/tracker/?aid=45583
Description
IBM watsonx.data 2.2 through 2.2.1 could allow an authenticated user to cause a denial of service through ingestion pods due to improper allocation of resources without limits.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=entergy' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
