What is National Institute of Standards and Technology (NIST)'s cybersecurity risk score?

National Institute of Standards and Technology (NIST) has an AI-generated cybersecurity risk score of 735 out of 1000, indicating a Moderate security posture according to Rankiteo's assessment.

How many security incidents has National Institute of Standards and Technology (NIST) experienced?

According to Rankiteo, National Institute of Standards and Technology (NIST) currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has National Institute of Standards and Technology (NIST) been affected by any supply chain cyber incidents ?

According to Rankiteo, National Institute of Standards and Technology (NIST) has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does National Institute of Standards and Technology (NIST) have SOC 2 Type 1 certification ?

According to Rankiteo, National Institute of Standards and Technology (NIST) is not certified under SOC 2 Type 1.

Does National Institute of Standards and Technology (NIST) have SOC 2 Type 2 certification ?

According to Rankiteo, National Institute of Standards and Technology (NIST) does not hold a SOC 2 Type 2 certification.

Does National Institute of Standards and Technology (NIST) have PCI DSS certification ?

According to Rankiteo, National Institute of Standards and Technology (NIST) does not currently maintain PCI DSS compliance.

Does National Institute of Standards and Technology (NIST) comply with HIPAA ?

According to Rankiteo, National Institute of Standards and Technology (NIST) is not compliant with HIPAA regulations.

Does National Institute of Standards and Technology (NIST) have ISO 27001 certification ?

According to Rankiteo,National Institute of Standards and Technology (NIST) is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

How many employees does National Institute of Standards and Technology (NIST) have ?

National Institute of Standards and Technology (NIST) employs approximately 4,909 people worldwide.

Does National Institute of Standards and Technology (NIST) own any subsidiaries ?

National Institute of Standards and Technology (NIST) presently has no subsidiaries across any sectors.

How many LinkedIn followers does National Institute of Standards and Technology (NIST) have ?

National Institute of Standards and Technology (NIST)'s official LinkedIn profile has approximately 428,813 followers.

What is the NAICS classification code for National Institute of Standards and Technology (NIST) ?

National Institute of Standards and Technology (NIST) is classified under the NAICS code 5417, which corresponds to Scientific Research and Development Services.

Does National Institute of Standards and Technology (NIST) have a Crunchbase profile ?

No, National Institute of Standards and Technology (NIST) does not have a profile on Crunchbase.

Does National Institute of Standards and Technology (NIST) have a LinkedIn profile ?

Yes, National Institute of Standards and Technology (NIST) maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/nist.

How many peer or competitor companies does National Institute of Standards and Technology (NIST) have ?

National Institute of Standards and Technology (NIST) has an estimated 5,810 peer or competitor companies worldwide.

What types of cybersecurity incidents has National Institute of Standards and Technology (NIST) faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

NIST

Boost Score +25 with badge (5 left)

735

/1000

Moderate

760

/1000

Fair

National Institute of Standards and Technology (NIST) Vendor Cyber Rating & Cyber Score

nist.gov

Add Your Compliance Badge

We are the National Institute of Standards and Technology (NIST), a non-regulatory federal agency within the U.S. Department of Commerce. For more than a century, NIST has helped to keep U.S. technology at the leading edge. Our measurements support the smallest of technologies to the largest and most complex of human-made creations. NIST's mission is to promote U.S. innovation and industrial competitiveness by advancing measurement science, standards, and technology in ways that enhance economic security and improve our quality of life. See what innovative work we’re doing to support it: https://www.nist.gov/

NIST A.I CyberSecurity Scoring

Scoring History

NIST

National Institute of Standards and Technology (NIST) CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

National Institute ...

Breach

2/2025

NIS000022125

Loading…

A.I.

NIST Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for NIST

Incidents vs Research Services Industry Avg (This Year)

No incidents recorded for National Institute of Standards and Technology (NIST) in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for National Institute of Standards and Technology (NIST) in 2026.

Incident Types NIST vs Research Services Industry Avg (This Year)

No incidents recorded for National Institute of Standards and Technology (NIST) in 2026.

Incident History - NIST (X = Date, Y = Severity)

Loading…

SUBSIDIARY

National Institute of Standards and Technology (NIST) Subsidiaries

NIST

Research Services

Website: http://www.nist.gov

Company Size: 1,001-5,000 employees

NICEComputer and Network Security

National Cybersecurity Center of Excellence (NCCoE)Computer and Network Security

NIST Communications Technology LaboratoryTelecommunications

Manufacturing USAManufacturing

NIST CareersResearch Services

CHIPS for AmericaSemiconductor Manufacturing

Loading…

National Institute of Standards and Technology (NIST) Similar Companies

CEA

cea.fr

The CEA is the French Alternative Energies and Atomic Energy Commission ("Commissariat à l'énergie atomique et aux énergies alternatives"). It is a public body established in October 1945 by General de Gaulle. A leader in research, development and innovation, the CEA mission statement has two main objectives: To become the leading technological research organization in Europe and to ensure that the nuclear deterrent remains effective in the future. The CEA is active in four main areas: low-carbon energies, defense and security, information technologies and health technologies. In each of these fields, the CEA maintains a cross-disciplinary culture of engineers and researchers, building on the synergies between fundamental and technological research. The civilian programs of the CEA received 49% of their funding from the French government, and 30% from external sources (partner companies and the European Union). The CEA had a budget of 4,3 billion euros. The CEA is based in ten research centers in France, each specializing in specific fields. The laboratories are located in the Paris region, the Rhône-Alpes, the Rhône valley, the Provence-Alpes-Côte d'Azur region, Aquitaine, Central France and Burgundy. The CEA benefits from the strong regional identities of these laboratories and the partnerships forged with other research centers, local authorities and universities.

University of Amsterdam

uva.nl

The University of Amsterdam is one of the largest comprehensive universities in Europe. With some 44,000 students, 6,000 staff, 3,000 PhD candidates, and an annual budget of more than 850 million euros, it is also one of Amsterdam’s biggest employers. There is an inseparable link between the university and its host city. The freedom and creativity with which Amsterdam has long been associated have worked their way into the fabric of the university. This is a place where individuality, authenticity and diversity are celebrated as sources of stimulation, inspiration and innovation. Professional and personal development, challenges and collaboration are undertaken in a versatile and multidimensional (inter)national ecosystem with leading stakeholders. Staff at the UvA make a meaningful contribution to uncovering solutions to some of the world’s most significant problems and to developing the next generation of talent.

Los Alamos National Laboratory

lanl.gov

Los Alamos National Laboratory is one of the world’s most innovative multidisciplinary research institutions. We're engaged in strategic science on behalf of national security to ensure the safety and reliability of the U.S. nuclear stockpile. Our workforce specializes in a wide range of progressive science, technology and engineering across many exciting fields, including space exploration, geophysics, renewable energy, supercomputing, medicine and nanotechnology.

UCL

ac.uk

UCL (University College London) is London's leading multidisciplinary university, ranked 9th in the QS World University Rankings. Established in 1826 UCL opened up education in England for the first time to students of any race, class or religion and was also the first university to welcome female students on equal terms with men. Today UCL is made up of remarkable people: eminent professors and exceptional students. Academic excellence and conducting research that addresses real-world problems inform our ethos to this day. To see more photos of UCL you can visit our Flickr Gallery: www.flickr.com/photos/uclnews/sets/ To view videos of UCL and our work, you can subscribe to our YouTube Channel: http://www.youtube.com/user/UCLTV Looking for a job at UCL? Find out more about working with us and view the latest vacancies: https://www.ucl.ac.uk/jobs

PPD

cb ppd.com

The PPD™ clinical research business of Thermo Fisher Scientific, the world leader in serving science, enables customers to accelerate innovation and drug development through patient-centered strategies and data analytics. Our services, which span multiple therapeutic areas, include early development, all phases of clinical development, peri- and post-approval, patient recruitment, investigator sites and comprehensive laboratory services. As a global industry leader, we offer custom solutions to pharma, biotech, medical device, and government organizations, leveraging cutting-edge technology and therapeutic expertise to help customers deliver life-changing therapies.

The University of Edinburgh

edin.ac

Imagine what you could do at a world-leading university that is globally recognised for its teaching, research and innovation. The University of Edinburgh has been providing students with world-class teaching for more than 425 years, unlocking the potential of some of the world's leading thinkers since 1583. Choose to study with us and you will be investing in an education that will help you build a successful future.

Technical University of Munich

tum.de

Our university combines top-class facilities for cutting-edge research with unique learning opportunities for 52,000 students. Whether our researchers are investigating the origins of life, matter and the universe or looking for solutions to the major challenges for our society, people lie at the heart of our research and innovation agenda. Our goal is to create lasting value for society through excellence in education and research, the active promotion of next-generation talents and a strong entrepreneurial spirit. All of which combine to make TUM one of Europe’s leading universities. | Imprint: http://www.tum.de/legal-notice

Utrecht University

uu.nl

At Utrecht University (UU), we are working towards a better world. We do this by researching complex issues beyond the borders of disciplines. We put thinkers in contact with doers, so new insights can be applied. We give students the space to develop themselves. In so doing, we make substantial contributions to society, both now and in the future.

Politecnico di Milano

polimi.it

Politecnico Milano is a scientific-technological university which trains engineers, architects and designers. The University has always focused on the quality and innovation of its teaching and research, developing a fruitful relationship with business and productive world by means of experimental research and technological transfer. Research has always been linked to didactics and is a priority commitment which has allowed Politecnico Milano to achieve high quality results at an international level as to join the university to the business world. Research constitutes a parallel path to that formed by cooperation and alliances with the industrial system. Knowing the world in which you are going to work is a vital requirement for training students. By referring back to the needs of the industrial world and public administration, research is facilitated in following new paths and dealing with the need for constant and rapid innovation. The alliance with the industrial world, also favored by Fondazione Politecnico and by consortiums to which Politecnico belongs, allows the university to follow the vocation of the territories in which it operates and to be a stimulus for their development. The challenge which is being met today projects this tradition which is strongly rooted in the territory beyond the borders of the country, in a relationship which is developing first of all at the European level with the objective of contributing to the creation of a single professional training market. Politecnico takes part in several research, sites and training projects collaborating with the most qualified European universities. Politecnico's contribution is increasingly being extended to other countries: from North America to Southeast Asia to Eastern Europe. Today the drive to internationalization sees Politecnico take part in the European and world network of leading technical universities and offers several beside many which are entirely taught in English.

Loading…

NEWS

National Institute of Standards and Technology (NIST) CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 11, 2026 08:35 PM

Senate Advances Bipartisan Health Care Cybersecurity Reform

On February 26, 2026, the Senate Health, Education, Labor, and Pensions (HELP) Committee voted 22-1 to advance the Health Care Cybersecurity...

Read Article

March 11, 2026 03:54 PM

Industry to NIST: Keep agentic AI standards flexible and voluntary

The business community said security guidance should reflect the nascency and diversity of the field.

Read Article

March 10, 2026 06:44 PM

NIST concept paper explores identity and authorization controls for AI agents

A draft concept paper released by the National Institute of Standards and Technology (NIST) asks industry and government stakeholders how...

Read Article

February 24, 2026 08:00 AM

Celebrating Two Years of CSF 2.0!

Celebrate this milestone with us! Email us at [email protected] or tag @NISTcyber on X telling us what your favorite CSF 2.0 resource is (or how...

Read Article

February 20, 2026 08:00 AM

NIST agentic AI initiative looks to get handle on security

The National Institutes of Standards and Technology is launching a new project around standards for artificial intelligence agents,...

Read Article

January 27, 2026 08:00 AM

Celebrating Data Privacy Week with NIST’s Privacy Engineering Program

Grab your party hats – it's Data Privacy Week ! Data Privacy Week is a global initiative led by the National Cybersecurity Alliance to...

Read Article

January 26, 2026 08:00 AM

A first look at NIST’s new cyber AI framework

The National Institute of Standards and Technology (NIST) recently released their initial preliminary draft of NIST IR 8596, also known as...

Read Article

January 26, 2026 08:00 AM

NIST issues draft Transit Community Profile to support cybersecurity programs across transit agencies

The U.S. National Institute of Standards and Technology, through its National Cybersecurity Center of Excellence (NCCoE), has released an...

Read Article

January 23, 2026 08:00 AM

NIST begins overhaul of SP 800-82 to strengthen OT cybersecurity guidance, align with updated NIST frameworks

The U.S. Department of Commerce's National Institute of Standards and Technology (NIST) has kicked off a revision of SP 800-82 Rev.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12191

SUMMARY

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdrive/modeld/modeld.py of the component Pickle Module. The manipulation results in deserialization. The attack is only possible with local access. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 7.8)

cvss2

Base Score: 6.8

Complexity: LOW

AV:L/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.1

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-12190

SUMMARY

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the component ai.mainfunc.genspark. The manipulation leads to improper authorization in handler for custom url scheme. The attack can only be performed from a local environment. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 4.8

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12189

SUMMARY

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzmate. Executing a manipulation can lead to improper authorization in handler for custom url scheme. The attack can only be executed locally. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 1.9

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12188

SUMMARY

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules/core/backend/app/controllers/concerns/grit/core/grit_entity_controller.rb of the component GritEntityController. Performing a manipulation results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-12187

SUMMARY

A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. Affected by this vulnerability is an unknown functionality of the file /usr/bin/one_click_upgrade of the component Online Firmware Upgrade Handler. Such manipulation leads to command injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. Upgrading to version 4.7 addresses this issue. Upgrading the affected component is advised. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…