GeoVision
Company Details
Linkedin ID:
targeted-geovision-llc
Website:
Employees number:
33
Number of followers:
2,719
NAICS:
211
Industry Type:
Homepage:
geosteeringvision.com
IP Addresses:
0
Company ID:
GEO_3039069
Scan Status:
In-progress
GeoVision Company CyberSecurity Posture
geosteeringvision.com
When a well kicks off horizontally, our expertise runs deep. At GeoVision, our experienced geologists have overseen every basin in North America. With so much on the line, you need a partner that goes all-in- a team of geologists who put their heart into it. At GeoVision, we steer the way and our clients come out looking like rock stars.
GeoVision A.I CyberSecurity Scoring
GeoVision Risk Score (AI oriented)Between 750 and 799
GeoVision
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
GeoVision Global Score (TPRM)XXXX
GeoVision
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
GeoVision Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
GeoVision
Vulnerability
Rankiteo Explanation
Attack threatening the organization’s existence
Description: GeoVision, a provider of surveillance and security equipment, has been the target of a cyberattack where a zero-day vulnerability identified as CVE-2024-11120 was exploited in their end-of-life devices. This pre-auth command injection flaw allowed attackers to remotely execute arbitrary commands on the devices. As a result, around 17,000 devices, primarily in the United States, have been compromised to carry out DDoS and cryptomining operations. The economic implications of this attack have yet to be fully realized, but with such a large number of devices affected, there is a risk of significant business disruption and potential long-term reputation damage.
GeoVision Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for GeoVision
Incidents vs Oil and Gas Industry Average (This Year)
No incidents recorded for GeoVision in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for GeoVision in 2025.
Incident Types GeoVision vs Oil and Gas Industry Avg (This Year)
No incidents recorded for GeoVision in 2025.
Incident History — GeoVision (X = Date, Y = Severity)
GeoVision cyber incidents detection timeline including parent company and subsidiaries
GeoVision Company Subsidiaries
When a well kicks off horizontally, our expertise runs deep. At GeoVision, our experienced geologists have overseen every basin in North America. With so much on the line, you need a partner that goes all-in- a team of geologists who put their heart into it. At GeoVision, we steer the way and our clients come out looking like rock stars.
Loading...
GeoVision Similar Companies
PETRONAS
Petroliam Nasional Berhad (PETRONAS) is a leading global energy company committed to powering society’s progress in a responsible and sustainable manner. With close to 50,000 employees and a global reach spanning over 100 countries, we are ranked among the world’s largest corporations by revenue in
Petrobras
Nosso propósito é prover energia que assegure prosperidade de forma ética, justa, segura e competitiva. Queremos ser a melhor empresa diversificada e integrada de energia na geração de valor, construindo um mundo mais sustentável, conciliando o foco em óleo e gás com a diversificação em negócios de
Marathon Petroleum Corporation
Marathon Petroleum Corporation (MPC) is a leading, integrated, downstream and midstream energy company headquartered in Findlay, Ohio. The company operates the nation's largest refining system. MPC's marketing system includes branded locations across the United States, including Marathon brand retai
Valero
Valero is an international manufacturer and marketer of transportation fuels and petrochemical products. We are a Fortune 500 company based in San Antonio, Texas, fueled by nearly 10,000 employees and 15 petroleum refineries with a combined throughput capacity of approximately 3.2 million barrels pe
Hindustan Petroleum Corporation Limited
Hindustan Petroleum Corporation Limited (HPCL) is a Maharatna Central Public Sector Enterprise (CPSE) and a S&P Global Platts Top 250 Global Energy Company. HPCL has a strong presence in downstream hydrocarbon sector of the country with a sizable share in petroleum product marketing and also has bus
RussNeft
ОАО Oil and Gas Company «RussNeft» came into existence in September 2002 . The structure of OAO NK “RussNeft” counts 24 upstream enterprises, 2 refineries, its own distribution net of gas filling stations. Geographic reach of “RussNeft” covers 12 regions of Russia and CIS: Khanty-Mansi Autonomous
AREVA NP
On 04 January 2018, AREVA NP, became Framatome, a designer, supplier and installer of nuclear steam supply systems. Framatome contributes to the design of power plants, supplies the nuclear steam supply system, designs and manufactures components and fuels, integrates the instrumentation and control
Halliburton
We collaborate and engineer solutions to maximize asset value for our customers. Founded in 1919, Halliburton is one of the world's largest providers of products and services to the energy industry. With more than 45,000 employees, representing 130 nationalities in more than 80 countries, the compan
PETROVIETNAM
Petrovietnam’s business - Core business: + Exploration, Production, Refinery, Petrochemicals, Storage, Transportation and Service in Petroleum Field; + Importing and Exporting petroleum materials, equipment and productions; + Distributing oil and gas products and hydrocarbon materi
.png)
GeoVision CyberSecurity News
May 13, 2025 07:00 AM
CISA Flags Hidden Functionality Flaw in TeleMessage TM SGNL on KEV List
Cybersecurity and Infrastructure Security Agency (CISA) has escalated its advisory for TeleMessage TM SGNL, adding a critical hidden...
May 09, 2025 07:00 AM
Updated CISA vulnerabilities catalog includes GeoVision IoT bugs
Ongoing attacks leveraging a pair of critical operating system command injection flaws impacting GeoVision Internet of Things devices, tracked as CVE-2024-6047...
May 08, 2025 07:00 AM
U.S. CISA adds GoVision device flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds GoVision device flaws to its Known Exploited Vulnerabilities catalog.
May 07, 2025 07:00 AM
Mirai botnet spread via GeoVision IoT, Samsung MagicINFO exploits
Attacks aimed at the end-of-life GeoVision IoT devices involved an exploit using the operating system command injection bugs,...
May 06, 2025 07:00 AM
Hackers Exploit Samsung MagicINFO, GeoVision IoT Flaws to Deploy Mirai Botnet
Threat actors have been observed actively exploiting security flaws in GeoVision end-of-life (EoL) Internet of Things (IoT) devices to corral them into a Mirai...
November 18, 2024 08:00 AM
Researchers Warn of Active GeoVision Botnet Used in DDoS and Cryptocurrency Attacks
Cybersecurity researchers have found an active botnet in the wild comprised of older GeoVision devices that have reached end of life (EOL).
June 26, 2020 07:00 AM
Backdoor wide open: critical vulnerabilities uncovered in GeoVision
During a routine network security audit session last year, we uncovered several critical vulnerabilities in devices from GeoVision.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
GeoVision CyberSecurity History Information
Official Website of GeoVision
The official website of GeoVision is http://www.geosteeringvision.com.
GeoVision’s AI-Generated Cybersecurity Score
According to Rankiteo, GeoVision’s AI-generated cybersecurity score is 751, reflecting their Fair security posture.
How many security badges does GeoVision’ have ?
According to Rankiteo, GeoVision currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does GeoVision have SOC 2 Type 1 certification ?
According to Rankiteo, GeoVision is not certified under SOC 2 Type 1.
Does GeoVision have SOC 2 Type 2 certification ?
According to Rankiteo, GeoVision does not hold a SOC 2 Type 2 certification.
Does GeoVision comply with GDPR ?
According to Rankiteo, GeoVision is not listed as GDPR compliant.
Does GeoVision have PCI DSS certification ?
According to Rankiteo, GeoVision does not currently maintain PCI DSS compliance.
Does GeoVision comply with HIPAA ?
According to Rankiteo, GeoVision is not compliant with HIPAA regulations.
Does GeoVision have ISO 27001 certification ?
According to Rankiteo,GeoVision is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of GeoVision
GeoVision operates primarily in the Oil and Gas industry.
Number of Employees at GeoVision
GeoVision employs approximately 33 people worldwide.
Subsidiaries Owned by GeoVision
GeoVision presently has no subsidiaries across any sectors.
GeoVision’s LinkedIn Followers
GeoVision’s official LinkedIn profile has approximately 2,719 followers.
NAICS Classification of GeoVision
GeoVision is classified under the NAICS code 211, which corresponds to Oil and Gas Extraction.
GeoVision’s Presence on Crunchbase
No, GeoVision does not have a profile on Crunchbase.
GeoVision’s Presence on LinkedIn
Yes, GeoVision maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/targeted-geovision-llc.
Cybersecurity Incidents Involving GeoVision
As of December 01, 2025, Rankiteo reports that GeoVision has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
GeoVision has an estimated 10,427 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at GeoVision ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
Incident Details
Can you provide details on each incident ?
Title: GeoVision Cyberattack
Description: GeoVision, a provider of surveillance and security equipment, has been the target of a cyberattack where a zero-day vulnerability identified as CVE-2024-11120 was exploited in their end-of-life devices. This pre-auth command injection flaw allowed attackers to remotely execute arbitrary commands on the devices. As a result, around 17,000 devices, primarily in the United States, have been compromised to carry out DDoS and cryptomining operations. The economic implications of this attack have yet to be fully realized, but with such a large number of devices affected, there is a risk of significant business disruption and potential long-term reputation damage.
Type: Cyberattack
Attack Vector: Command Injection
Vulnerability Exploited: CVE-2024-11120
Motivation: DDoSCryptomining
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
Impact of the Incidents
What was the impact of each incident ?
Incident : Cyberattack TAR000111824
Systems Affected: 17,000 devices
Operational Impact: Significant business disruption and potential long-term reputation damage
Brand Reputation Impact: Potential long-term reputation damage
Which entities were affected by each incident ?
Incident : Cyberattack TAR000111824
Entity Name: GeoVision
Entity Type: Provider of surveillance and security equipment
Industry: Surveillance and Security
Location: Primarily United States
Additional Questions
Impact of the Incidents
.png)
Latest Global CVEs (Not Company-Specific)
Description
A weakness has been identified in codingWithElias School Management System up to f1ac334bfd89ae9067cc14dea12ec6ff3f078c01. Affected is an unknown function of the file /student-view.php of the component Edit Student Info Page. This manipulation of the argument First Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 3.3
Severity: LOW
AV:N/AC:L/Au:M/C:N/I:P/A:N
cvss3
Base: 2.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
By providing a command-line argument starting with a semi-colon ; to an API endpoint created by the EnhancedCommandExecutor class of the HexStrike AI MCP server, the resultant composed command is executed directly in the context of the MCP server’s normal privilege; typically, this is root. There is no attempt to sanitize these arguments in the default configuration of this MCP server at the affected version (as of commit 2f3a5512 in September of 2025).
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
A weakness has been identified in winston-dsouza Ecommerce-Website up to 87734c043269baac0b4cfe9664784462138b1b2e. Affected by this issue is some unknown functionality of the file /includes/header_menu.php of the component GET Parameter Handler. Executing manipulation of the argument Error can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be exploited. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security flaw has been discovered in Qualitor 8.20/8.24. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing manipulation of the argument passageiros results in code injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=targeted-geovision-llc' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
