What is the official website of GSMA ?

The official website of GSMA is https://www.gsma.com.

What is GSMA's cybersecurity risk score?

GSMA has an AI-generated cybersecurity risk score of 777 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has GSMA experienced?

According to Rankiteo, GSMA currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has GSMA been affected by any supply chain cyber incidents ?

According to Rankiteo, GSMA has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does GSMA have SOC 2 Type 1 certification ?

According to Rankiteo, GSMA is not certified under SOC 2 Type 1.

Does GSMA have SOC 2 Type 2 certification ?

According to Rankiteo, GSMA does not hold a SOC 2 Type 2 certification.

Does GSMA comply with GDPR ?

According to Rankiteo, GSMA is not listed as GDPR compliant.

Does GSMA have PCI DSS certification ?

According to Rankiteo, GSMA does not currently maintain PCI DSS compliance.

Does GSMA comply with HIPAA ?

According to Rankiteo, GSMA is not compliant with HIPAA regulations.

Does GSMA have ISO 27001 certification ?

According to Rankiteo,GSMA is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does GSMA operate in ?

GSMA operates primarily in the Telecommunications industry.

How many employees does GSMA have ?

GSMA employs approximately 1,295 people worldwide.

Does GSMA own any subsidiaries ?

GSMA presently has no subsidiaries across any sectors.

How many LinkedIn followers does GSMA have ?

GSMA's official LinkedIn profile has approximately 1,112,772 followers.

What is the NAICS classification code for GSMA ?

GSMA is classified under the NAICS code 517, which corresponds to Telecommunications.

Does GSMA have a Crunchbase profile ?

Yes, GSMA has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/gsma.

Does GSMA have a LinkedIn profile ?

Yes, GSMA maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/gsma.

How many cybersecurity incidents has GSMA experienced ?

As of June 23, 2026, Rankiteo reports that GSMA has experienced 1 cybersecurity incidents.

How many peer or competitor companies does GSMA have ?

GSMA has an estimated 10,204 peer or competitor companies worldwide.

What types of cybersecurity incidents has GSMA faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

GSMA

Boost Score +25 with badge (5 left)

777

/1000

Fair

802

/1000

Good

GSMA Vendor Cyber Rating & Cyber Score

gsma.com

cb in

Add Your Compliance Badge

The GSMA is a global organisation unifying the mobile ecosystem to discover, develop and deliver innovation foundational to positive business environments and societal change. Our vision is to unlock the full power of connectivity so that people, industry and society thrive. We operate through three main pillars: ✔️ Connectivity for Good engages members, governments and civil society, to advance positive policy and spectrum outcomes, facilitate digital innovation to reduce inequalities in our world, and tackle today’s biggest societal challenges such as digital inclusion, climate change and sustainability. ✔️ Industry Solutions supports the technology and interoperability that make mobile work. For instance, we assist the industry’s

GSMA A.I CyberSecurity Scoring

Scoring History

GSMA

GSMA CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

GSMA - Security and...

Cyber Attack

6/2025

GOOGSMDC-APP176...

Loading…

A.I.

GSMA Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for GSMA

Incidents vs Telecommunications Industry Avg (This Year)

No incidents recorded for GSMA in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for GSMA in 2026.

Incident Types GSMA vs Telecommunications Industry Avg (This Year)

No incidents recorded for GSMA in 2026.

Incident History - GSMA (X = Date, Y = Severity)

Loading…

SUBSIDIARY

GSMA Subsidiaries

GSMA

Telecommunications

Website: https://www.gsma.com

Company Size: 1,295

GSMA Industry ServicesTelecommunications

Mobile World LiveTelecommunications

GSMA Latin AmericaTelecomunicaciones

GSMA - Security and FraudTelecommunications

GSMA - NetworksTelecommunications

Loading…

GSMA Similar Companies

Vodafone

vodafone.com

At Vodafone, we believe that connectivity is a force for good. If we use it for the things that really matter, it can improve people's lives and the world around us. Through our technology we empower people, connecting everyone regardless of who they are or where they live, we protect the planet and help our customers do the same. But we’re not just shaping the future of technology for our customers – we’re shaping the future for everyone who joins our team too. When you work with us, you’re part of a global mission to connect people, solve complex challenges, and create a sustainable, more inclusive world. If you want to grow your career whilst finding the perfect balance between work and life, Vodafone offers the opportunities and support to help you belong and make a real impact. #TogetherWeCan

Ericsson

ericsson.com

The future of mobile isn’t on the horizon, it’s happening now. At Ericsson, we’re building the foundation for an open network ecosystem where industries, developers, and enterprises thrive. The convergence of 5G, AI, cloud, and network APIs isn’t just a technological shift; it’s a transformation that is redefining industries and enhancing everyday life. Open, programmable networks are enabling real-time innovation and unlocking new business models across the globe. Imagine a world where developers can dynamically access network capabilities on demand, where enterprises don’t just use connectivity but shape it. This isn’t a distant vision, it’s the ecosystem we’re creating today. Collaboration fuels everything we do. By working across industries, we’re designing a future where connectivity isn’t just seamless. It’s intelligent, programmable, and transformative. The shift is happening. Are you part of it?

BT Group

bt.com

We’re one of the world’s leading communications services companies. At BT Group, the solutions we sell are integral to modern life. Our purpose is as simple as it is ambitious: we connect for good. There are no limits to what people can do when they connect. And as technology changes our world, connections are becoming even more important to everyday life. Today, that’s truer than ever. The connections we make are helping solve the world’s biggest challenges such as the global pandemic, climate change and cyber security. Through the power of technology, we’re supporting customers to live, work and play together better.

vivo

vivo.com

vivo is a technology company that creates great products based on a design-driven value, with smart devices and intelligent services as its core. The company aims to build a bridge between humans and the digital world. Through unique creativity, vivo provides users with an increasingly convenient mobile and digital life. vivo has over 18,000 employees across the globe. While bringing together and developing the best local talents to deliver excellence, vivo is supported by a network of 10 R&D centers in Shenzhen, Dongguan, Nanjing, Beijing, Hangzhou, Shanghai, Xi'an, Taipei, Tokyo and San Diego, focusing on the development of state-of-the-art consumer technologies, including 5G, artificial intelligence, industrial design, imaging system and other up-and-coming technologies. vivo has also set up 7 production bases (including brand-authorized manufacturing centers), across China, South- and Southeast Asia, and more regions, with an annual production capacity of nearly 200 million smartphones. As of now, vivo has branched out its sales network across more than 60 countries and regions, and is winning more than 400 million users worldwide with its superior products and services. Following the company's core values, which include Benfen, design-driven value, user-orientation, continuous learning and team spirit. vivo has implemented a sustainable development strategy, with the vision of developing into a healthier, more sustainable world-class corporation. Official Site: www.vivo.com/en Facebook: @vivoGlobal Instagram: @vivo_global

Reliance Communications

rcom.co.in

Reliance Communications Limited, founded by the late Shri Dhirubhai H Ambani (1932-2002), has Corporate clientele that includes 40,000 Indian and multinational corporations, including small and medium enterprises. Reliance Communications has established a pan-India, Next-Generation, digital network that is capable of supporting best-of-class services spanning the entire communications value chain. Reliance Communications owns and operates the world's largest Next-Generation IP-enabled connectivity infrastructure, comprising fiber optic cable systems in India, the USA, Europe, Middle East and the Asia Pacific region.

Telmex

telmex.com

TELMEX, la empresa líder de telecomunicaciones y servicios TI en México, ha realizado importantes inversiones para desarrollar la plataforma tecnológica más robusta y vanguardista del país, que le permite ofrecer la más amplia gama de soluciones, con los mayores estándares de calidad, seguridad, confiabilidad y competitividad; por ello, es el mejor socio estratégico en servicios avanzados de telecomunicaciones y TI. Las Soluciones TI de TELMEX van desde la Conectividad hasta Servicios de Nube, Centros de Datos, Ciberseguridad, Colaboración y Soluciones de Negocio. Un portafolio enfocado a cubrir las necesidades y proporcionar atención en infraestructura y procesos, lo que permite a los clientes aprovechar al máximo su inversión en tecnología, mientras evolucionan hacia nuevos sistemas y plataformas como servicio. TELMEX permite desarrollar e implementar proyectos en empresas de cualquier tamaño y en cualquier vertical de industria, ofreciendo soluciones integrales, innovadoras y de clase mundial, a través de tecnología de punta; brindando conectividad soportada por la mayor cobertura nacional e internacional y anchos de banda que garantizan la continuidad de las operaciones de sus clientes.

Telkom Indonesia

telkom.co.id

PT Telkom Indonesia (Persero) Tbk (Telkom) is a state-owned information and communications technology enterprise and telecommunications network in Indonesia. The Government of Indonesia is the majority shareholder with 52.09 percent shares while the remaining 47.91 percent shares belong to public shareholders. Telkom’s shares are traded on the Indonesian Stock Exchange (IDX) where it is listed as “TLKM” and on the New York Stock Exchange (NYSE), which lists it as “TLK”. As it transforms to become a digital telecommunication company, TelkomGroup implements a customer-oriented business and company operational strategy. The transformation aims to trim down TelkomGroup’s organization to be leaner and more agile in adapting the fast-changing nature of telecommunications industry. The new organization is expected to be able to improve efficiency and be more effective in producing a quality customer experience. TelkomGroup’s activities grow and change in accordance to the development of new technology, information and digitalization, but still within the corridor of telecommunications and information technology. This is evident in the newly developed business lines, which complements the company’s existing legacy business.

KPN

kpn.com

Welkom bij de LinkedIn pagina van KPN. Sinds jaar en dag maakt KPN technologie toegankelijk. Hier leest u alles over de ontwikkelingen rondom de thema’s die KPN belangrijk vindt, zoals Het Nieuwe Leven & Werken, Veiligheid & Privacy en ICT-infrastructuur. Ook een transparante en betrouwbare dienstverlener zijn, efficiency in de zorg en duurzaam ondernemen staan bij ons hoog in het vaandel. Op onze pagina blijft u op de hoogte van het laatste nieuws rondom onze activiteiten, de thema’s in uw leven waarin technologie een rol speelt en onze producten en services op het gebied van ICT. Ontdek samen met ons voor u en uw organisatie de beste oplossingen.

e& UAE

etisalat.ae

(Formerly etisalat UAE) For more than four decades, we have connected people and now we’ve evolved to become the digital telco of the future. Our mission is to grow, transform and excel as the region’s technology leader while enhancing digital customer experience and operation agility. e& UAE offers digital experiences that cater to your new lifestyle and demands beyond just telecom and are not limited to gaming, health, and insurance. We will continue to be your trusted partner and advisor, enabling connectivity and everything beyond, accelerating the digital world and pioneering future-forward spaces like private networks, autonomous vehicles, and AI. Together, we embark on this new era of e& UAE and step into a new world of possibilities. We are etisalat and so much more.

Loading…

NEWS

GSMA CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

January 24, 2026 08:00 AM

GSMA statement on Cybersecurity Act proposals on behalf of European Mobile Operators

GSMA statement on Cybersecurity Act proposals on behalf of European Mobile Operators ... The GSMA, on behalf of Europe's mobile operators, notes...

Read Article

January 22, 2026 08:00 AM

EU Cybersecurity Act reforms spark backlash, but supporters say supply chain resilience hangs in the balance

The European Commission's proposed revisions to the EU Cybersecurity Act are drawing increasingly polarised reactions, as digital rights...

Read Article

January 21, 2026 08:00 AM

GSMA warns EU Cybersecurity Act revisions could slow network upgrades

While supporting stronger cybersecurity, the industry body argued that any new measures must be strictly risk-based and operationally workable.

Read Article

January 21, 2026 08:00 AM

New research warns drones could launch devastating cyber attacks on critical infrastructure

University of Canberra warns critical infrastructure is vulnerable to drone-enabled cyber attacks amid rising drone use.

Read Article

January 21, 2026 08:00 AM

Telcos face multibillion-euro rip-and-replace project as Brussels moves to ban high-risk vendors

In depth: European Commissioner Henna Virkkunen considers the time is now to take network supply chain security “seriously”,...

Read Article

January 15, 2026 08:00 AM

Satellite shake-out arrives early as Starlink tightens grip on NTN market: report

The satellite and non-terrestrial network (NTN) sector is entering a consolidation phase far earlier than expected, even before most...

Read Article

December 31, 2025 08:00 AM

Telecom operators’ cybersecurity spending to hit $42b in six years

The Groupe Spéciale Mobile Association (GSMA) has warned that fragmented cybersecurity regulation is raising costs.

Read Article

December 19, 2025 08:00 AM

Securing the Network: Asia’s Telcos Tackle Cybersecurity Challenges

Asia's telecom operators face escalating cyber threats as 5G and digital services expand. Explore how regulations, AI-powered security,...

Read Article

December 17, 2025 08:00 AM

Mobile operators’ cybersecurity spend to hit $42bn by 2030 as regulation drives costs

Mobile network operators are spending ever larger sums to protect the infrastructure that underpins the global digital economy...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-54236

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, the fix for CVE-2026-22778, which introduced a sanitize_message helper that strips object-repr memory addresses from error messages before they reach the client, is incomplete: several response paths echo str(exc) directly to clients without calling sanitize_message. The unsanitized sites include the Anthropic API router in vllm/entrypoints/anthropic/api_router.py (the POST /v1/messages and POST /v1/messages/count_tokens handlers), the Server-Sent Events streaming converter in vllm/entrypoints/anthropic/serving.py, and the realtime speech-to-text WebSocket in vllm/entrypoints/speech_to_text/realtime/connection.py. These paths catch the exception inside the route coroutine and construct the JSONResponse themselves, bypassing the sanitizing global FastAPI exception handler, and WebSocket frames do not traverse that handler chain at all. Using the same primitive as the parent issue, an unauthenticated attacker can send malformed image bytes through the Anthropic Messages API image content parts so that PIL.Image.open raises an UnidentifiedImageError whose message contains the BytesIO object repr, leaking the heap memory address verbatim in the error.message field of the response body. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: 5.3)

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

3.9

REFERENCES

CVE-2026-54235

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, ll temperature validation gates use comparison operators (<, >), which silently evaluate to False for NaN and for positive Infinity in Python's IEEE 754 float semantics. Both values pass every guard and propagate to GPU sampling kernels, where they produce undefined behavior or CUDA errors that can crash the inference worker. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-54233

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, vLLM's /v1/audio/transcriptions endpoint limits compressed upload size but not decoded PCM output. A 25MB OPUS file expands to ~14.9GB of float32 PCM at decode time. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.8

REFERENCES

CVE-2026-54232

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.22.1, the vLLM Dockerfile is vulnerable to a dependency confusion attack through the flashinfer-jit-cache package. The package is installed from a custom index (flashinfer.ai/whl/) using --extra-index-url, but the package name was not registered on PyPI, and UV_INDEX_STRATEGY="unsafe-best-match" is set globally. An attacker who registers flashinfer-jit-cache on PyPI with version 0.6.11.post2 can execute arbitrary code as root during the Docker build and backdoor every resulting container image, enabling exfiltration of all user prompts, API credentials, and model data from production vLLM deployments This vulnerability is fixed in 0.22.1.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

https://github.com/vllm-project/vllm/security/advisories/GHSA-jrf6-vqxq-pjv2

CVE-2026-53923

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). From 0.5.5 until 0.23.1rc0, integer truncation of tensor dimensions in vLLM's GGUF dequantize kernels (csrc/quantization/gguf/gguf_kernel.cu) causes partial tensor processing. The output tensor is allocated at full size via torch::empty (uninitialized memory), but the dequantize CUDA kernel processes only a truncated number of elements. The unfilled portion of the output tensor retains whatever was previously in GPU memory. In multi-tenant inference deployments, this residual GPU memory may contain tensor data from other users' inference requests, constituting information disclosure. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: )

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…