What is the official website of TD Auto Finance (Canada) ?

The official website of TD Auto Finance (Canada) is https://www.td.com/ca/en/personal-banking/products/borrowing/auto-finance/.

What is TD Auto Finance (Canada)'s cybersecurity risk score?

TD Auto Finance (Canada) has an AI-generated cybersecurity risk score of 755 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has TD Auto Finance (Canada) experienced?

According to Rankiteo, TD Auto Finance (Canada) currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has TD Auto Finance (Canada) been affected by any supply chain cyber incidents ?

According to Rankiteo, TD Auto Finance (Canada) has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does TD Auto Finance (Canada) have SOC 2 Type 1 certification ?

According to Rankiteo, TD Auto Finance (Canada) is not certified under SOC 2 Type 1.

Does TD Auto Finance (Canada) have SOC 2 Type 2 certification ?

According to Rankiteo, TD Auto Finance (Canada) does not hold a SOC 2 Type 2 certification.

Does TD Auto Finance (Canada) comply with GDPR ?

According to Rankiteo, TD Auto Finance (Canada) is not listed as GDPR compliant.

Does TD Auto Finance (Canada) have PCI DSS certification ?

According to Rankiteo, TD Auto Finance (Canada) does not currently maintain PCI DSS compliance.

Does TD Auto Finance (Canada) comply with HIPAA ?

According to Rankiteo, TD Auto Finance (Canada) is not compliant with HIPAA regulations.

Does TD Auto Finance (Canada) have ISO 27001 certification ?

According to Rankiteo,TD Auto Finance (Canada) is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does TD Auto Finance (Canada) operate in ?

TD Auto Finance (Canada) operates primarily in the Financial Services industry.

How many employees does TD Auto Finance (Canada) have ?

TD Auto Finance (Canada) employs approximately 0 people worldwide.

Does TD Auto Finance (Canada) own any subsidiaries ?

TD Auto Finance (Canada) presently has no subsidiaries across any sectors.

How many LinkedIn followers does TD Auto Finance (Canada) have ?

TD Auto Finance (Canada)'s official LinkedIn profile has approximately 2,654 followers.

What is the NAICS classification code for TD Auto Finance (Canada) ?

TD Auto Finance (Canada) is classified under the NAICS code 52, which corresponds to Finance and Insurance.

Does TD Auto Finance (Canada) have a Crunchbase profile ?

No, TD Auto Finance (Canada) does not have a profile on Crunchbase.

Does TD Auto Finance (Canada) have a LinkedIn profile ?

Yes, TD Auto Finance (Canada) maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/td-auto-finance-canada.

How many cybersecurity incidents has TD Auto Finance (Canada) experienced ?

As of June 30, 2026, Rankiteo reports that TD Auto Finance (Canada) has experienced 6 cybersecurity incidents.

How many peer or competitor companies does TD Auto Finance (Canada) have ?

TD Auto Finance (Canada) has an estimated 32,183 peer or competitor companies worldwide.

What types of cybersecurity incidents has TD Auto Finance (Canada) faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

TAF

Boost Score +25 with badge (5 left)

755

/1000

Fair

780

/1000

Fair

TD Auto Finance (Canada) Vendor Cyber Rating & Cyber Score

td.com

Add Your Compliance Badge

At TD Auto Finance, we're proud to be the only truly full-spectrum lender in Canada. With our wide range of products and specialized support teams across the country, we're here to support our dealers' and customers' financing needs. We're committed to giving you the support you need. Please contact us directly using the contact list in the documents tab to find out more about our award-winning service and innovative products, and we'll be happy to help.

TAF A.I CyberSecurity Scoring

Scoring History

TAF

TD Auto Finance (Canada) CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

TD Auto Finance (Ca...

Breach

11/2024

TD453072525

TD Auto Finance (Ca...

Breach

8/2024

TD716072925

TD Auto Finance (Ca...

Breach

11/2023

TD912072525

TD Auto Finance (Ca...

Breach

5/2023

TD525072625

TD Auto Finance (Ca...

Breach

5/2022

TD724072725

TD Auto Finance (Ca...

Breach

8/2013

TD336071725

Loading…

A.I.

TAF Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for TAF

Incidents vs Financial Services Industry Avg (This Year)

No incidents recorded for TD Auto Finance (Canada) in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for TD Auto Finance (Canada) in 2026.

Incident Types TAF vs Financial Services Industry Avg (This Year)

No incidents recorded for TD Auto Finance (Canada) in 2026.

Incident History - TAF (X = Date, Y = Severity)

Loading…

SUBSIDIARY

TD Auto Finance (Canada) Subsidiaries

TAF

Financial Services

Website: https://www.td.com/ca/en/personal-banking/products/borrowing/auto-finance/

Company Size: 0

TDBanking

TD WealthFinancial Services

TD Asset ManagementFinancial Services

TD Enterprise Real EstateFinancial Services

TD Bank Commercial BankingFinancial Services

Loading…

TD Auto Finance (Canada) Similar Companies

Barclays

home.barclays

Barclays is a British universal bank. Our vision is to be the UK-centred leader in global finance. We are a diversified bank with comprehensive UK consumer, corporate and wealth and private banking franchises, a leading investment bank and a strong, specialist US consumer bank. Through these five divisions, we are working together for a better financial future for our customers, clients and communities. With over 325 years of history and expertise in banking, Barclays operates in over 40 countries and employs approximately 83,500 people. Barclays moves, lends, invests and protects money for customers and clients worldwide. Barclays is a trading name of Barclays Bank PLC and its subsidiaries. Barclays Bank PLC is registered in England and is authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority and the Prudential Regulation Authority. Registered in England. Registered No. 1026167. Registered office: 1 Churchill Place, London E14 5HP.

CreditEase

cb creditease.com

Founded in 2006, CreditEase is a Beijing-based world-leading FinTech conglomerate in China. It specializes in inclusive finance and wealth management with a dominant position in credit technology, wealth management technology, insurance technology, etc. Main business sectors of CreditEase include Yiren Digital, CreditEase Wealth Management and CreditEase Insurance. Better tech, better finance, better world.

J.P. Morgan

jpmorgan.com

J.P. Morgan is a leader in financial services, offering solutions to clients in more than 100 countries with one of the most comprehensive global product platforms available. We have been helping our clients to do business and manage their wealth for more than 200 years. Our business has been built upon our core principle of putting our clients' interests first. J.P. Morgan is part of JPMorgan Chase & Co. (NYSE: JPM), a global financial services firm. Social Media Terms and Conditions: https://bit.ly/JPMCSocialTerms © 2017 JPMorgan Chase & Co. JPMorgan Chase is an equal opportunity and affirmative action employer Disability/Veteran.

The Citco Group Limited

cb citco.com

Our heritage, since founding a civil law notary practice in the 1940s to establishing the Curacao International Trust Company in the 1960s, is built on challenging paradigms and delivering exceptional service within the financial and professional services industry. Today, we continue to pioneer award-winning services and technology solutions that meet ever changing markets. A commitment to investing in people, and proprietary technologies, has resulted in our reputation as the industry’s preeminent service provider, reassuring clients that their critical administration functions are in safe hands. Our thought leadership and ability to quickly navigate complex change means our clients can depend on us as trusted advisors to make informed decisions in response to market conditions. Our Divisions Citco Fund Services & Investor Relations CFS is the global leader in services for the alternative investment industry. With over 2,000 funds under administration and net assets exceeding $840 billion, we provide full service fund administration, fund accounting, net asset value calculations, investor relations, and more. Governance Services Leveraging our extensive global office network Citco Governance Services provides customised solutions, including corporate and global subsidiary governance, secretarial services, financial accounting and reporting, tax and audit liaison, and market entry services. Banking, Depositary & Custody Services Citco Banks operate in strategic financial centres and provide Institutional and Fund of Funds clients access to the funds universe through multiple communication and online real-time global funds platforms. Citco Technology Management Through our eight global development centres, Citco Technology Management provides secure infrastructures and develops award-winning technology products that underpin our commitment to service excellence.

BNP Paribas CIB

cib.bnpparibas

In a changing world, we aim at anticipating transformation and driving your company for success. We are convinced to have the expertise and networks you need to develop your business. BNP Paribas Corporate and Institutional Banking is a leading global financial partner, offering you a wide range of tailored solutions in Capital Markets, Securities Services, Financing, Treasury and Advisory Services. If you want to know more about us, visit www.cib.bnpparibas.com

Raymond James

cb raymondjames.com

Founded in 1962 and a public company since 1983, Raymond James Financial, Inc. is a Florida-based diversified holding company providing financial services to individuals, corporations and municipalities through its subsidiary companies engaged primarily in investment and financial planning, in addition to capital markets and asset management. The firm's stock is traded on the New York Stock Exchange (RJF). Through its three broker/dealer subsidiaries, Raymond James Financial has approximately 8,700 financial advisors throughout the United States, Canada and overseas. Total client assets are $1.26 trillion (as of 10/25/2023). Raymond James has been recognized nationally for its community support and corporate philanthropy. The company has been ranked as one of the best in the country in customer service, as a great place to work and as a national leader in support of the arts.

BMO

cb bmo.com

We’re a bank, but there’s more to it than that. When you join BMO, it opens a world of opportunities. This is a team that's committed to helping you succeed – personally and professionally. Because at BMO, when you grow, we grow. You know your worth and so do we. That’s why we offer the right mix of learning programs, on-the-job experiences, and opportunities to build personal and professional connections – so you can build a meaningful career and thrive as a part of a winning culture.   Sound like your kind of place? Then we should be co-workers.

Lars Larsen Group

larslarsengroup.com

Lars Larsen Group is owned by the Brunsborg family, descendants of JYSK founder Lars Larsen. The Group owns companies within a number of business areas including furniture, interior design, restaurants and hotels, and is also an active investor in equities, funds, and real estate. The Group is to this day operated in accordance with the family’s fundamental values of tradesmanship, responsibility and growth.

Ally

ally.com

Ally Financial Inc. (NYSE: ALLY) is a leading digital financial services company and a top 25 U.S. financial holding company offering financial products for consumers, businesses, automotive dealers and corporate clients. NMLS #3015 | #181005 | https://www.nmlsconsumeraccess.org/ Ally's legacy dates back to 1919, and the company was redesigned in 2009 with a distinctive brand, innovative approach and relentless focus on its customers. Ally has an award-winning online bank (Ally Bank, Member FDIC), one of the largest full service auto finance operations in the country, a complementary auto-focused insurance business, and a trusted corporate finance business offering capital for equity sponsors and middle-market companies. We extend equal employment opportunities to qualified applicants and employees on an equal basis regardless of an individual’s age, race, color, sex, religion, national origin, disability, sexual orientation, gender identity or expression, pregnancy status, marital status, military or veteran status, genetic disposition or any other reason protected by law.

Loading…

NEWS

TD Auto Finance (Canada) CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

TD Bank Group provides insurance catastrophe information

Catastrophe claims are insurance claims that relate to any single event that occurred in the relevant fiscal quarter, for which the aggregate ...

Read Article

Media Advisory - TD Bank Group to release first-quarter financial results

TD Bank Group ("TD" or the "Bank") will release its first-quarter financial results and host an earnings conference call on Thursday, ...

Read Article

TD announces changes to its senior executive team

TD Bank Group ("TD" or the "Bank") (TSX: TD) today announced the appointment of Michelle Myers as Global Chief Auditor effective December 9, ...

Read Article

Registration opens for 2025 CADA Summit

Organized by the Canadian Automobile Dealers Association, this perennially-sold out conference features high-level keynotes and panel ...

Read Article

Gen Z most likely to shy away from talking about fraud experiences at home despite being most targeted, reveals TD

Ahead of Fraud Prevention Month in March, a new TD survey has revealed that Gen Z is most likely to shy away from talking about fraud ...

Read Article

TD Bank Group Reports First Quarter 2025 Results

Reported and adjusted earnings were $2.8 billion and $3.6 billion, respectively, relatively flat compared with the first quarter last year.

Read Article

TD Bank Group Announces Intent to Sell its Equity Investment in Schwab

TORONTO, Feb. 10, 2025 /CNW/ - TD Bank Group ("TD" or the "Bank") (TSX: TD) (NYSE: TD) today announced its intent to sell its entire equity ...

Read Article

TD BANK GROUP ANNOUNCES RESOLUTION OF AML INVESTIGATIONS - Oct 10, 2024

"Criminals were able to exploit our systems and our U.S. AML program did not deliver. We continue to work with purpose, focus and urgency to ...

Read Article

TD named Best Consumer Digital Bank in North America for fourth consecutive year by Global Finance - Oct 2, 2024

TORONTO, Oct. 2, 2024 /CNW/ - TD Bank Group (TD) has been named "Best Consumer Digital Bank in North America" for the fourth consecutive year by Global ...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-8023

SUMMARY

Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is enabled) that serves files from a configured root directory. Before this fix, both the HTTP/1 and HTTP/2 front-ends placed the raw, attacker-controlled request path into client-url_buffer (assembled in on_url() for HTTP/1 and copied verbatim from the :path pseudo-header for HTTP/2) without resolving ./.. segments. The static-FS handler then built the on-disk filename by directly concatenating the configured root with that raw URL (snprintk(fname, ..., "%s%s", static_fs_detail-fs_path, client-url_buffer) at http_server_http1.c:603 and http_server_http2.c:490) and opened it with fs_open(fname, FS_O_READ). Because the handler is reached via wildcard/leading-dir (fnmatch FNM_LEADING_DIR) or fallback resource matching, a request such as GET /<prefix/../../<file is dispatched to the handler and, after the underlying filesystem (e.g. LittleFS/FAT) resolves the .. segments, escapes the configured web root, letting an unauthenticated remote client read arbitrary readable files on the mounted volume (information disclosure). The HTTP server requires no TLS or authentication to reach this path. The fix adds http_server_remove_dot_segments(), which canonicalizes the path portion of the URL before resource lookup in both protocol handlers, neutralizing the traversal. Affects releases v4.0.0 through v4.4.0 for deployments that register a static-filesystem resource.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 7.5)

cvss3

Base Score: 7.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score

3.6

Exploitability

3.9

REFERENCES

CVE-2026-7656

SUMMARY

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code check using the wrong operator precedence: the form was '((length/hop/source/target checks) && (icmp_hdr-code != 0))'. Because every legitimate ND message carries ICMPv6 code 0, an attacker setting code == 0 (the normal value) caused the entire predicate to evaluate false, so the packet was never dropped and all of the other checks were silently skipped. The bypassed checks include the mandatory Hop Limit == 255 verification (which proves an ND packet originated on-link and was not forwarded) and, for Router Advertisements, the requirement that the source be a link-local address, as well as multicast-target sanity checks. As a result, an adjacent on-link attacker — and, because the Hop-Limit-255 guard is bypassed, potentially a remote/off-link attacker whose packets would otherwise be rejected — can have forged Router Advertisement, Neighbor Solicitation, and Neighbor Advertisement messages accepted. A forged RA lets the attacker reconfigure the victim's default router, on-link prefixes (SLAAC), MTU, reachable/retransmit timers, and (with CONFIG_NET_IPV6_RA_RDNSS) DNS servers, while forged NS/NA enable neighbor-cache poisoning, enabling man-in-the-middle, traffic redirection, and denial of service. The flaw is an input-validation/authentication weakness rather than a memory-safety issue: the underlying packet-parsing primitives (net_pkt_get_data, net_pkt_read, net_pkt_skip) are independently bounds-safe and the validated 'length' is the true buffer length, so skipping the length check causes no out-of-bounds access. The defect has existed since the logic was introduced in 2018 and shipped in all releases through v4.4.0; it is fixed by splitting the condition so any failing check drops the packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Impact Score

5.2

Exploitability

2.8

REFERENCES

CVE-2026-51219

SUMMARY

A heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service (DoS) via a crafted payload.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-51218

SUMMARY

A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of snap7 v1.4.3 allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-10648

SUMMARY

mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it for NULL. smp_packet_alloc() uses net_buf_alloc(K_NO_WAIT) against the shared MCUmgr packet pool (CONFIG_MCUMGR_TRANSPORT_NETBUF_COUNT, default 4), which returns NULL when the pool is exhausted. In default builds the __ASSERT_NO_MSG in net_buf_reset is a no-op, so net_buf_simple_reset writes through the NULL pointer (buf->len = 0; buf->data = buf->__buf), causing a fault/crash. The fragment data reaches this code from attacker-controlled bytes on the MCUmgr serial/UART/shell-console transports (smp_uart.c, smp_raw_uart.c, smp_shell.c), and a fresh buffer is allocated at the start of essentially every new packet. An attacker on the serial/console link can flood the transport to drive the 4-entry buffer pool to exhaustion and induce the NULL dereference, crashing the device (denial of service). The defect was introduced after the original MCUmgr rework and shipped in Zephyr v4.4.0. The fix moves the NULL check ahead of net_buf_reset.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 6.2)

cvss3

Base Score: 6.2

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.5

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…