What is the official website of Norfolk Naval Shipyard ?

The official website of Norfolk Naval Shipyard is https://www.navsea.navy.mil/Home/Shipyards/Norfolk/.

What is Norfolk Naval Shipyard's cybersecurity risk score?

Norfolk Naval Shipyard has an AI-generated cybersecurity risk score of 756 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Norfolk Naval Shipyard experienced?

According to Rankiteo, Norfolk Naval Shipyard currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Norfolk Naval Shipyard been affected by any supply chain cyber incidents ?

According to Rankiteo, Norfolk Naval Shipyard has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Norfolk Naval Shipyard have SOC 2 Type 1 certification ?

According to Rankiteo, Norfolk Naval Shipyard is not certified under SOC 2 Type 1.

Does Norfolk Naval Shipyard have SOC 2 Type 2 certification ?

According to Rankiteo, Norfolk Naval Shipyard does not hold a SOC 2 Type 2 certification.

Does Norfolk Naval Shipyard comply with GDPR ?

According to Rankiteo, Norfolk Naval Shipyard is not listed as GDPR compliant.

Does Norfolk Naval Shipyard have PCI DSS certification ?

According to Rankiteo, Norfolk Naval Shipyard does not currently maintain PCI DSS compliance.

Does Norfolk Naval Shipyard comply with HIPAA ?

According to Rankiteo, Norfolk Naval Shipyard is not compliant with HIPAA regulations.

Does Norfolk Naval Shipyard have ISO 27001 certification ?

According to Rankiteo,Norfolk Naval Shipyard is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Norfolk Naval Shipyard operate in ?

Norfolk Naval Shipyard operates primarily in the Defense and Space Manufacturing industry.

How many employees does Norfolk Naval Shipyard have ?

Norfolk Naval Shipyard employs approximately 3,851 people worldwide.

Does Norfolk Naval Shipyard own any subsidiaries ?

Norfolk Naval Shipyard presently has no subsidiaries across any sectors.

How many LinkedIn followers does Norfolk Naval Shipyard have ?

Norfolk Naval Shipyard's official LinkedIn profile has approximately 20,098 followers.

What is the NAICS classification code for Norfolk Naval Shipyard ?

Norfolk Naval Shipyard is classified under the NAICS code 336414, which corresponds to Guided Missile and Space Vehicle Manufacturing.

Does Norfolk Naval Shipyard have a Crunchbase profile ?

No, Norfolk Naval Shipyard does not have a profile on Crunchbase.

Does Norfolk Naval Shipyard have a LinkedIn profile ?

Yes, Norfolk Naval Shipyard maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/norfolk-naval-shipyard.

How many cybersecurity incidents has Norfolk Naval Shipyard experienced ?

As of June 6, 2026, Rankiteo reports that Norfolk Naval Shipyard has not experienced any cybersecurity incidents.

How many peer or competitor companies does Norfolk Naval Shipyard have ?

Norfolk Naval Shipyard has an estimated 2,511 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

NNS

Boost Score +25 with badge (5 left)

756

/1000

Fair

781

/1000

Fair

Norfolk Naval Shipyard Vendor Cyber Rating & Cyber Score

navy.mil

Add Your Compliance Badge

"We are America's Shipyard" We are Norfolk Naval Shipyard (NNSY), continuously driving to excellence and delivering service to the fleet safely with the right quality on schedule and within budget. NNSY is recognized as a world class organization in executing our mission, developing our people, and aggressively improving performance at a state of the art facility.

NNS A.I CyberSecurity Scoring

Scoring History

NNS

Norfolk Naval Shipyard CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

NNS Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for NNS

Incidents vs Defense and Space Manufacturing Industry Avg (This Year)

No incidents recorded for Norfolk Naval Shipyard in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Norfolk Naval Shipyard in 2026.

Incident Types NNS vs Defense and Space Manufacturing Industry Avg (This Year)

No incidents recorded for Norfolk Naval Shipyard in 2026.

Incident History - NNS (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Norfolk Naval Shipyard Subsidiaries

Parent Company

NNS

Defense and Space Manufacturing

Website: https://www.navsea.navy.mil/Home/Shipyards/Norfolk/

Company Size: 3,851

No subsidiary data available for this company.

Loading…

Norfolk Naval Shipyard Similar Companies

Amentum

amentum.com

Amentum is a global leader in advanced engineering and innovative technology solutions, trusted by the United States and its allies to address their most significant and complex challenges in science, security and sustainability. Our people apply undaunted curiosity, relentless ambition and boundless imagination to challenge convention and drive progress. Our commitments are underpinned by the belief that safety, collaboration and well-being are integral to success. Headquartered in Chantilly, Virginia, we have approximately 50,000 employees in more than 70 countries across all 7 continents.

Saab

cb saab.com

As a leading defence and security company, we offer solutions that range from the depths of the oceans to high in the sky, on land and in cyberspace, to keep people and society safe. Empowered by our 22,000 talented people, we constantly push the boundaries of technology to create a safer, more sustainable and more equitable world. We design, manufacture and maintain advanced systems in aeronautics, weapons, command and control, sensors and underwater systems. We are headquartered in Sweden and have major operations all over the world and are part of the domestic defence capability of several nations.

V2X Inc

gov2x.com

V2X is a leading provider of critical mission solutions and support to defense clients globally, formed by the 2022 Merger of Vectrus and Vertex to build on more than 120 combined years of successful mission support. We deliver a comprehensive suite of integrated solutions across the operations and logistics, aerospace, training, and technology markets to national security, defense, civilian and international clients. Our global team of approximately 14,000 employees brings innovation to every point in the mission lifecycle, from preparation, to operations, to sustainment, as it tackles the most complex challenges with agility, grit, and dedication.

General Dynamics

cb generaldynamics.com

From Gulfstream business jets and combat vehicles to nuclear-powered submarines and communications systems, people around the world depend on our products and services for their safety and security. General Dynamics is headquartered in Reston, Virginia, and employs over 100,000 people in 43 countries around the world. At the heart of our company are our employees. We rely on their intimate knowledge of customer requirements and a unique blend of skill and innovation to develop and produce the best possible products and services. The driver that makes our company agile, and ensures our continued performance, is our culture of continuous improvement. This culture enforces a shared commitment to consistently look toward the future and to embrace change. It’s a priority at all levels of our company, with every employee engaged in finding new ways to do things faster, better and more cost-effectively, and push the boundaries of our potential.

Indian Army

onlinecareer360.com

The Indian Army is the largest branch of the Indian Armed Forces and is responsible for land-based military operations. Its primary mission is the National Security and Defense of India from external aggression and threats, and maintaining peace and security within its borders. It also conducts humanitarian rescue operations during natural calamities and other disturbances. The Indian Army is one of the three services under the Ministry of Defence. The President of India is the Commander-in-Chief of the Indian Armed Forces, and thus of the Indian Army. The highest ranking military officer is the Chief of Army Staff (COAS), who is also a member of the Chiefs of Staff Committee. The Indian Army came into being at the Independence of India in 1947, and inherited most of the regiments and infrastructure of the British Indian Army that were located in post-partition India.

Leonardo

cb leonardo.com

Leonardo is a global security company that realises multi-domain technological capabilities in AD&S. With over 60,000 employees worldwide, the company has a significant industrial presence in Italy, the UK, Poland, and the US. It also has a commercial presence in 150 countries through subsidiaries, joint ventures and investments. A key player in major international strategic programmes, it is a technological and industrial partner of governments, defence administrations, institutions and companies. In 2024, Leonardo recorded consolidated revenues of €17.8 bn, new orders for €20.9 bn and invested €2.5 bn in R&D. Innovation, continuous research, digitalisation and sustainability are the pillars of its business worldwide. Stefano Pontecorvo has been the Chairman since 9 May 2023 and Roberto Cingolani has been the CEO and General Manager since 9 May 2023. Follow Leonardo on social media: ➡️https://x.com/Leonardo_live ➡️https://www.instagram.com/leonardo_company/ ➡️https://www.youtube.com/leonardocompany

Lockheed Martin

cb lockheedmartin.com

The world relies on what we do. Headquartered in Bethesda, Maryland, with offices across the U.S. and around the globe, our team delivers solutions that strengthen national security, shape industries and push engineering and technology to new levels. We collaborate to win. We put our customers first. And we perform with excellence. The best careers are built at Lockheed Martin. Join us.

General Atomics

ga.com

The freedom to explore. The promise to deliver. General Atomics, based in San Diego, CA, develops advanced technology solutions for government and commercial applications. Privately owned and vertically integrated, we have the freedom to invest in the most innovative technologies, and the resources to deliver them as products for customers around the world. Predator® unmanned aerial vehicles, TRIGA® research reactors, aircraft carrier launch and recovery systems, MagLev transport and fusion energy are some of our most innovative programs.

NAVAL GROUP

naval-group.com

As an international naval defence player, Naval Group is a partner for countries seeking to maintain control of their maritime sovereignty. Naval Group develops innovative solutions to meet its customers’ requirements. The group is present throughout the entire life cycle of vessels. It designs, produces, equips, integrates, supports and upgrades submarines and surface ships, as well as their systems and equipment, right up to the final phases of deconstruction and dismantling. Naval Group’s unique know-how in autonomous systems, underwater weapons and drones place it in pole position to become European leader in the sector. As a high-tech company, it draws on its outstanding expertise, unique design and production resources and ability to establish strategic partnerships, in particular within the framework of transfers of technology. It also provides shipyard and naval base services. Ever mindful of the issues concerning corporate social responsibility (CSR), Naval Group is a signatory to the United Nations Global Compact. Located on five continents, the group generates revenue of 4.355 billion euros and has 16,722 employees (Full-Time Equivalent average annual workforce - figures as on 31 December 2024).

Loading…

NEWS

Norfolk Naval Shipyard CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 05, 2026 01:21 PM

DecisionPoint Wins Navy IT Support Task Order

DecisionPoint secured a Navy task order to provide IT and cybersecurity support for the Norfolk Naval Shipyard Command Information Office.

Read Article

February 03, 2026 08:00 AM

Business Notes: Feds recognize ODU cybersecurity school; submarine reaches milestone in Newport News

Former Gov. Glenn Youngkin made the following appointments to state authorities, boards and committees: Ashley McLeod of Virginia Beach,...

Read Article

December 04, 2025 08:00 AM

News - Shipyard Spotlight: Tajuana “Renee” Martin - Code 109 Customer Service Branch Manager

Retail therapy, Carolina Panthers football, the U.S. Navy and contributing to the mission success of Norfolk Naval Shipyard (NNSY) bring joy...

Read Article

October 07, 2025 07:00 AM

Rear Admiral Jonathan J. Jett-Parmer, PE

Rear Adm. Jett-Parmer is a native of Florida. He graduated from the University of South Florida with a Bachelor of Science degree in...

Read Article

August 29, 2025 07:00 AM

Navy’s top cybersecurity official abruptly leaves

The Navy's chief information officer announced her sudden retirement on Aug. 22, the same day two other senior Navy officials were fired.

Read Article

April 09, 2025 07:00 AM

Norfolk Naval Shipyard Trivia

The official Norfolk Naval Shipyard (NNSY) command history entry for April 28, 1965 is yet only one sentence long and reads as follows:"USS...

Read Article

March 17, 2025 02:25 PM

VIRGINIA: Cybersecurity Is In the Commonwealth’s DNA

V irginia takes keeping its tech-talent pond well stocked very seriously. Its Tech Talent Investment Program, for example, is investing $2 billion to double...

Read Article

March 14, 2025 07:00 AM

Norfolk Naval Shipyard Contracting Personnel Complete Contracts Management & Practical Acq

Norfolk Naval Shipyard (NNSY) Contracting Department (Code 400) executes approximately 1400 contracts each year. To ensure that all Code 400...

Read Article

November 01, 2024 07:00 AM

Serco Inc. Books $97M NAVSEA Contract for Shipyard Support

Serco Inc. has secured a five-year, $97 million contract from the Naval Sea Systems Command to provide shipyard program management and...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…