General Dynamics
Company Details
Linkedin ID:
general-dynamics
Website:
Employees number:
10,880
Number of followers:
354,072
NAICS:
336414
Industry Type:
Homepage:
generaldynamics.com
IP Addresses:
0
Company ID:
GEN_1080398
Scan Status:
In-progress
General Dynamics Company CyberSecurity Posture
generaldynamics.com
From Gulfstream business jets and combat vehicles to nuclear-powered submarines and communications systems, people around the world depend on our products and services for their safety and security. General Dynamics is headquartered in Reston, Virginia, and employs over 100,000 people in 43 countries around the world. At the heart of our company are our employees. We rely on their intimate knowledge of customer requirements and a unique blend of skill and innovation to develop and produce the best possible products and services. The driver that makes our company agile, and ensures our continued performance, is our culture of continuous improvement. This culture enforces a shared commitment to consistently look toward the future and to embrace change. It’s a priority at all levels of our company, with every employee engaged in finding new ways to do things faster, better and more cost-effectively, and push the boundaries of our potential.
General Dynamics A.I CyberSecurity Scoring
General Dynamics Risk Score (AI oriented)Between 750 and 799
General Dynamics
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
General Dynamics Global Score (TPRM)XXXX
General Dynamics
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
General Dynamics Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
General Dynamics Corp.
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Office of the Attorney General reported a data breach involving General Dynamics Corp. on December 23, 2024. The breach, discovered on October 10, 2024, was due to unauthorized access affecting personal information of 37 individuals, with 2 Maine residents specifically identified. Types of compromised data included names, social security numbers, bank account information, and dates of birth.
General Dynamics Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for General Dynamics
Incidents vs Defense and Space Manufacturing Industry Average (This Year)
No incidents recorded for General Dynamics in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for General Dynamics in 2026.
Incident Types General Dynamics vs Defense and Space Manufacturing Industry Avg (This Year)
No incidents recorded for General Dynamics in 2026.
Incident History — General Dynamics (X = Date, Y = Severity)
General Dynamics cyber incidents detection timeline including parent company and subsidiaries
General Dynamics Company Subsidiaries
From Gulfstream business jets and combat vehicles to nuclear-powered submarines and communications systems, people around the world depend on our products and services for their safety and security. General Dynamics is headquartered in Reston, Virginia, and employs over 100,000 people in 43 countries around the world. At the heart of our company are our employees. We rely on their intimate knowledge of customer requirements and a unique blend of skill and innovation to develop and produce the best possible products and services. The driver that makes our company agile, and ensures our continued performance, is our culture of continuous improvement. This culture enforces a shared commitment to consistently look toward the future and to embrace change. It’s a priority at all levels of our company, with every employee engaged in finding new ways to do things faster, better and more cost-effectively, and push the boundaries of our potential.
Loading...
General Dynamics Similar Companies
SAIC® is a premier Fortune 500 mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, civilian and intelligence markets includes secure high-end solutions in mission IT, enterprise IT
L3 Technologies
With headquarters in New York City and approximately 31,000 employees worldwide, L3 develops advanced defense technologies and commercial solutions in pilot training, aviation security, night vision and EO/IR, weapons, maritime systems and space. The company reported 2018 sales of $10.2 billion. To
Northrop Grumman
We are a close-knit community of big thinkers collaborating to keep the world safe. Our passion, creativity and expertise bring next-level technology solutions to life in autonomous systems, cyber, C4ISR, strike, space, and logistics and modernization for our customers around the globe. On the Nor
Indian Army
The Indian Army is the largest branch of the Indian Armed Forces and is responsible for land-based military operations. Its primary mission is the National Security and Defense of India from external aggression and threats, and maintaining peace and security within its borders. It also conducts huma
Aselsan
ASELSAN is a company of Turkish Armed Forces Foundation, established in 1975 in order to meet the communication needs of the Turkish Armed Forces by national means. Currently 74,20% of the shares are owned by the Foundation whereas the remaining 25,8% runs in İstanbul Borsa stock market. ASELSAN is
Babcock International Group
Babcock is a FTSE 100 defence company operating in our focus countries of the UK, Australasia, Canada, France and South Africa, with exports to additional markets. Our Purpose, to create a safe and secure world, together, defines our strategy. We support and enhance our customers’ defence and secu
Naval Sea Systems Command (NAVSEA) Careers
We are NAVSEA. The Force Behind the Fleet. Join us and become part of a mission-driven team, at one of the best places to work in the federal government. This NAVSEA LinkedIn page is all about connecting with talented individuals ready to make a difference through a rewarding career with us. We shar
Leidos
Leidos is a Fortune 500® innovation company rapidly addressing the world’s most vexing challenges in national security and health. The company's global workforce of 48,000 collaborates to create smarter technology solutions for customers in heavily regulated industries. Headquartered in Reston, Virg
UK Ministry of Defence
We protect the security, independence and interests of the United Kingdom at home and abroad. We work with our allies and partners whenever possible. Our aim is to ensure that the UK’s Armed Forces have the training, equipment and support necessary for their work, and that we keep within budget.
.png)
General Dynamics CyberSecurity News
January 04, 2026 05:30 AM
Space Force begins base network overhaul as cybersecurity demands grow
WASHINGTON — The U.S. Space Force is moving to modernize the computer networks that underpin its operations, awarding new work under a $12.5...
December 18, 2025 08:00 AM
General Dynamics Wins a $285M Deal to Provide Cybersecurity Services
General Dynamics Wins a $285M Deal to Provide Cybersecurity Services ... General Dynamics Corp.'s GD business unit, General Dynamics Information...
December 18, 2025 08:00 AM
General Dynamics IT Wins $285M Cybersecurity Contract From Virginia
“This partnership with GDIT marks a significant advancement in our efforts to modernize defenses against evolving threats. It provides greater...
December 17, 2025 08:00 AM
GDIT wins $285M state cybersecurity contract
General Dynamics Information Technology, a business unit of Reston-based Fortune 100 aerospace and defense contractor General Dynamics,...
December 17, 2025 08:00 AM
GDIT wins $285m Virginia contract to bolster statewide cybersecurity
General Dynamics Information Technology (GDIT) has disclosed that it won a contract valued at $285m from the Commonwealth of Virginia to...
December 16, 2025 08:00 AM
GDIT Awarded $285 Million Virginia Cybersecurity Services Contract
PRNewswire/ -- General Dynamics Information Technology (GDIT), a business unit of General Dynamics (NYSE: GD), announced today it was...
December 16, 2025 08:00 AM
Virginia awards GDIT $285 million cybersecurity contract
FALLS CHURCH, Va. - General Dynamics Information Technology (GDIT), a business unit of General Dynamics (NYSE:GD), has secured a $285...
November 22, 2025 08:00 AM
Quorum Cyber expands senior team to support global growth plans
Quorum Cyber appoints four senior leaders to support global growth and strengthen its cybersecurity services across North America,...
November 06, 2025 08:00 AM
GDIT Launches Full-Spectrum Cyber Digital Accelerator
General Dynamics Information Technology (GDIT), a business unit of General Dynamics (NYSE:GD), announced today the launch of its VENIN...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
General Dynamics CyberSecurity History Information
Official Website of General Dynamics
The official website of General Dynamics is http://www.generaldynamics.com.
General Dynamics’s AI-Generated Cybersecurity Score
According to Rankiteo, General Dynamics’s AI-generated cybersecurity score is 798, reflecting their Fair security posture.
How many security badges does General Dynamics’ have ?
According to Rankiteo, General Dynamics currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has General Dynamics been affected by any supply chain cyber incidents ?
According to Rankiteo, General Dynamics has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does General Dynamics have SOC 2 Type 1 certification ?
According to Rankiteo, General Dynamics is not certified under SOC 2 Type 1.
Does General Dynamics have SOC 2 Type 2 certification ?
According to Rankiteo, General Dynamics does not hold a SOC 2 Type 2 certification.
Does General Dynamics comply with GDPR ?
According to Rankiteo, General Dynamics is not listed as GDPR compliant.
Does General Dynamics have PCI DSS certification ?
According to Rankiteo, General Dynamics does not currently maintain PCI DSS compliance.
Does General Dynamics comply with HIPAA ?
According to Rankiteo, General Dynamics is not compliant with HIPAA regulations.
Does General Dynamics have ISO 27001 certification ?
According to Rankiteo,General Dynamics is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of General Dynamics
General Dynamics operates primarily in the Defense and Space Manufacturing industry.
Number of Employees at General Dynamics
General Dynamics employs approximately 10,880 people worldwide.
Subsidiaries Owned by General Dynamics
General Dynamics presently has no subsidiaries across any sectors.
General Dynamics’s LinkedIn Followers
General Dynamics’s official LinkedIn profile has approximately 354,072 followers.
NAICS Classification of General Dynamics
General Dynamics is classified under the NAICS code 336414, which corresponds to Guided Missile and Space Vehicle Manufacturing.
General Dynamics’s Presence on Crunchbase
Yes, General Dynamics has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/general-dynamics.
General Dynamics’s Presence on LinkedIn
Yes, General Dynamics maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/general-dynamics.
Cybersecurity Incidents Involving General Dynamics
As of January 21, 2026, Rankiteo reports that General Dynamics has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
General Dynamics has an estimated 2,395 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at General Dynamics ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Data Breach at General Dynamics Corp.
Description: The Maine Office of the Attorney General reported a data breach involving General Dynamics Corp. on December 23, 2024. The breach, discovered on October 10, 2024, was due to unauthorized access affecting personal information of 37 individuals, with 2 Maine residents specifically identified. Types of compromised data included names, social security numbers, bank account information, and dates of birth.
Date Detected: 2024-10-10
Date Publicly Disclosed: 2024-12-23
Type: Data Breach
Attack Vector: Unauthorized Access
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach GEN250072925
Data Compromised: Names, Social security numbers, Bank account information, Dates of birth
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Social Security Numbers, Bank Account Information, Dates Of Birth and .
Which entities were affected by each incident ?
Incident : Data Breach GEN250072925
Entity Name: General Dynamics Corp.
Entity Type: Corporation
Industry: Defense and Aerospace
Customers Affected: 37
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach GEN250072925
Type of Data Compromised: Names, Social security numbers, Bank account information, Dates of birth
Number of Records Exposed: 37
Sensitivity of Data: High
References
Where can I find more information about each incident ?
Incident : Data Breach GEN250072925
Source: Maine Office of the Attorney General
Date Accessed: 2024-12-23
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney GeneralDate Accessed: 2024-12-23.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2024-10-10.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2024-12-23.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were names, social security numbers, bank account information, dates of birth and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were bank account information, social security numbers, dates of birth and names.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 37.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Maine Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
SummaryA command injection vulnerability (CWE-78) has been found to exist in the `wrangler pages deploy` command. The issue occurs because the `--commit-hash` parameter is passed directly to a shell command without proper validation or sanitization, allowing an attacker with control of `--commit-hash` to execute arbitrary commands on the system running Wrangler. Root causeThe commitHash variable, derived from user input via the --commit-hash CLI argument, is interpolated directly into a shell command using template literals (e.g., execSync(`git show -s --format=%B ${commitHash}`)). Shell metacharacters are interpreted by the shell, enabling command execution. ImpactThis vulnerability is generally hard to exploit, as it requires --commit-hash to be attacker controlled. The vulnerability primarily affects CI/CD environments where `wrangler pages deploy` is used in automated pipelines and the --commit-hash parameter is populated from external, potentially untrusted sources. An attacker could exploit this to: * Run any shell command. * Exfiltrate environment variables. * Compromise the CI runner to install backdoors or modify build artifacts. Credits Disclosed responsibly by kny4hacker. Mitigation * Wrangler v4 users are requested to upgrade to Wrangler v4.59.1 or higher. * Wrangler v3 users are requested to upgrade to Wrangler v3.114.17 or higher. * Users on Wrangler v2 (EOL) should upgrade to a supported major version.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L).
Risk Information
cvss3
Base: 8.1
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=general-dynamics' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
