USAID
Company Details
Linkedin ID:
usaid
Website:
Employees number:
17,787
Number of followers:
2,409,041
NAICS:
92812
Industry Type:
Homepage:
usaid.gov
IP Addresses:
0
Company ID:
USA_1501716
Scan Status:
In-progress
USAID Company CyberSecurity Posture
usaid.gov
USAID is the lead U.S. Government agency that works to end extreme global poverty and enable resilient, democratic societies to realize their potential. U.S. foreign assistance has always had the twofold purpose of furthering America's interests while improving lives in the developing world. USAID carries out U.S. foreign policy by promoting broad-scale human progress at the same time it expands stable, free societies, creates markets and trade partners for the United States, and fosters good will abroad. Spending less than 1 percent of the total federal budget, USAID works in over 100 countries to: -Promote broadly shared economic prosperity; -Strengthen democracy and good governance; -Protect human rights; -Improve global health, -Advance food security and agriculture; -Improve environmental sustainability; -Further education; -Help societies prevent and recover from conflicts; and -Provide humanitarian assistance in the wake of natural and man-made disasters. Privacy Policy: http://www.usaid.gov/privacy-policy
USAID A.I CyberSecurity Scoring
USAID Risk Score (AI oriented)Between 750 and 799
USAID
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
USAID Global Score (TPRM)XXXX
USAID
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
USAID Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
USAID
Breach
Rankiteo Explanation
Attack threatening the economy of geographical region
Description: The US Agency for International Development (USAID) is experiencing severe impacts from funding cuts and aid payment pauses. These measures have disrupted humanitarian relief and anti-human-trafficking efforts, leading to chaos among staff and organizations helping trafficking survivors. Services for victims are being limited, investigatory work into criminal groups is dwindling, and some organizations are ceasing operations. These issues embolden criminal groups and impact safe rescue operations, putting at risk thousands who are entrapped in scam compounds across Southeast Asia and face violence and coercion into digital fraud activities.
USAID Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for USAID
Incidents vs International Affairs Industry Average (This Year)
USAID has 0.0% fewer incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
USAID has 28.21% more incidents than the average of all companies with at least one recorded incident.
Incident Types USAID vs International Affairs Industry Avg (This Year)
USAID reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — USAID (X = Date, Y = Severity)
USAID cyber incidents detection timeline including parent company and subsidiaries
USAID Company Subsidiaries
USAID is the lead U.S. Government agency that works to end extreme global poverty and enable resilient, democratic societies to realize their potential. U.S. foreign assistance has always had the twofold purpose of furthering America's interests while improving lives in the developing world. USAID carries out U.S. foreign policy by promoting broad-scale human progress at the same time it expands stable, free societies, creates markets and trade partners for the United States, and fosters good will abroad. Spending less than 1 percent of the total federal budget, USAID works in over 100 countries to: -Promote broadly shared economic prosperity; -Strengthen democracy and good governance; -Protect human rights; -Improve global health, -Advance food security and agriculture; -Improve environmental sustainability; -Further education; -Help societies prevent and recover from conflicts; and -Provide humanitarian assistance in the wake of natural and man-made disasters. Privacy Policy: http://www.usaid.gov/privacy-policy
Loading...
USAID Similar Companies
Established in 1951, the International Organization for Migration is the leading intergovernmental organization in the field of migration and is committed to the principle that humane and orderly migration benefits migrants and society. IOM works with its partners in the international community to
U.S. Department of State
The U.S. Department of State is focused on accomplishing America's mission of diplomacy at home and around the world. The U.S. Department of State manages America’s relationships with foreign governments, international organizations, and the people of other countries. U.S. diplomats and Civil Servic
United Nations
Founded at the end of the Second World War, the United Nations is an international organization made up of 193 Member States committed to maintaining international peace and security. Every day the UN works to tackle global challenges and deliver results for those most in need. Giving life-sav
Bluesky Agency
THE RIGHT WAY TO ITALY. Italian Agency based in Venice-Italy performing general affairs by Public and Private Boards seeks international Partners to develop SMART TOURISM NETWORK. Multilingual staff. Contact us as above
UNHCR, the UN Refugee Agency
UNHCR, the UN Refugee Agency, is a global organisation dedicated to saving lives, protecting rights and building a better future for people forced to flee their homes because of conflict and persecution. We lead international action to protect refugees, forcibly displaced communities and stateless
UNDP
The United Nations Development Programme works in nearly 170 countries and territories, helping to achieve the eradication of poverty, and the reduction of inequalities and exclusion. We help countries to develop policies, leadership skills, partnering abilities, institutional capabilities and build
World Health Organization
The World Health Organization's mission: to promote health, keep the world safe, and serve the vulnerable. Working through offices in more than 150 countries, WHO staff work side by side with governments and other partners to ensure the highest attainable level of health for all people. Stay connec
.png)
USAID CyberSecurity News
July 22, 2025 07:00 AM
USAID Programs in Albania 2025
USAID programs in Albania remain active, supporting long-term development through targeted efforts in governance and security.
June 02, 2025 07:00 AM
Hideez releases mobile authenticator for government agencies and businesses with support from USAID
Ukrainian company Hideez has introduced a mobile application for passwordless multi-factor authentication. The solution has already been...
May 31, 2025 07:00 AM
Ukraine's enduring cyber defense: Assessing resilience and impact of shifting international support
Christopher Burgess is a cybersecurity and intelligence expert, a former CIA officer awarded the Distinguished Career Intelligence Medal.
May 23, 2025 07:00 AM
13 State Cyber Protection Centre Specialists Awarded Qualification Centre Certificates for Network and System Administrators
A regular graduation of specialists took place at the Qualification Centre for Information Technologies and Cybersecurity, which operates...
April 26, 2025 07:00 AM
Ukraine becomes 'easy target' for Russian hackers - Bloomberg names reason
The US has scaled back its efforts to assist Ukraine in cybersecurity, a critical area in countering Russian hacker attacks, reports Bloomberg.
April 24, 2025 07:00 AM
Ukraine Is an `Easy Target' for Russian Hackers After US Aid Pullback
American cybersecurity assistance has been crucial to helping war-torn country fend off hacks, experts say.
April 03, 2025 07:00 AM
Was engaged to provide CEEW services for USAID task: ASAR
ASAR Social Impact Advisors clarified that it received Rs 8 crore from USAID for services provided under a Clean Air Better Health project with CEEW.
March 20, 2025 07:00 AM
Ukraine Teaches Europe Cyber Lessons
Ukraine has withstood relentless cyberattacks and protected its critical infrastructure—all while fighting a full-scale war...
March 17, 2025 07:00 AM
USAID Cuts Demolish Cyber Assistance to U.S. Allies and Partners
Among the $60 billion of cuts in USAID grants and contracts are more than $175 million in critical cybersecurity programs for US partners.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
USAID CyberSecurity History Information
Official Website of USAID
The official website of USAID is http://www.usaid.gov.
USAID’s AI-Generated Cybersecurity Score
According to Rankiteo, USAID’s AI-generated cybersecurity score is 771, reflecting their Fair security posture.
How many security badges does USAID’ have ?
According to Rankiteo, USAID currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does USAID have SOC 2 Type 1 certification ?
According to Rankiteo, USAID is not certified under SOC 2 Type 1.
Does USAID have SOC 2 Type 2 certification ?
According to Rankiteo, USAID does not hold a SOC 2 Type 2 certification.
Does USAID comply with GDPR ?
According to Rankiteo, USAID is not listed as GDPR compliant.
Does USAID have PCI DSS certification ?
According to Rankiteo, USAID does not currently maintain PCI DSS compliance.
Does USAID comply with HIPAA ?
According to Rankiteo, USAID is not compliant with HIPAA regulations.
Does USAID have ISO 27001 certification ?
According to Rankiteo,USAID is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of USAID
USAID operates primarily in the International Affairs industry.
Number of Employees at USAID
USAID employs approximately 17,787 people worldwide.
Subsidiaries Owned by USAID
USAID presently has no subsidiaries across any sectors.
USAID’s LinkedIn Followers
USAID’s official LinkedIn profile has approximately 2,409,041 followers.
NAICS Classification of USAID
USAID is classified under the NAICS code 92812, which corresponds to International Affairs.
USAID’s Presence on Crunchbase
Yes, USAID has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/usaid.
USAID’s Presence on LinkedIn
Yes, USAID maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/usaid.
Cybersecurity Incidents Involving USAID
As of December 21, 2025, Rankiteo reports that USAID has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
USAID has an estimated 987 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at USAID ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: USAID Funding Cuts and Aid Payment Pauses
Description: The US Agency for International Development (USAID) is experiencing severe impacts from funding cuts and aid payment pauses. These measures have disrupted humanitarian relief and anti-human-trafficking efforts, leading to chaos among staff and organizations helping trafficking survivors. Services for victims are being limited, investigatory work into criminal groups is dwindling, and some organizations are ceasing operations. These issues embolden criminal groups and impact safe rescue operations, putting at risk thousands who are entrapped in scam compounds across Southeast Asia and face violence and coercion into digital fraud activities.
Type: Funding Cuts and Aid Payment Pauses
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Funding Cuts and Aid Payment Pauses USA000021225
Operational Impact: Disruption of humanitarian reliefLimited services for victimsDwindling investigatory workCeasing of operations for some organizationsEmboldening of criminal groupsImpact on safe rescue operations
Which entities were affected by each incident ?
Incident : Funding Cuts and Aid Payment Pauses USA000021225
Entity Name: USAID
Entity Type: Government Agency
Industry: International Development
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Versa SASE Client for Windows versions released between 7.8.7 and 7.9.4 contain a local privilege escalation vulnerability in the audit log export functionality. The client communicates user-controlled file paths to a privileged service, which performs file system operations without impersonating the requesting user. Due to improper privilege handling and a time-of-check time-of-use race condition combined with symbolic link and mount point manipulation, a local authenticated attacker can coerce the service into deleting arbitrary directories with SYSTEM privileges. This can be exploited to delete protected system folders such as C:\\Config.msi and subsequently achieve execution as NT AUTHORITY\\SYSTEM via MSI rollback techniques.
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to unauthorized modification of data due to a missing capability check on the 'cs_update_application_status_callback' function in all versions up to, and including, 7.7. This makes it possible for authenticated attackers, with Candidate-level access and above, to inject cross-site scripting into the 'status' parameter of applied jobs for any user.
Risk Information
cvss3
Base: 7.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
Description
The WP JobHunt plugin for WordPress, used by the JobCareer theme, is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 7.7 via the 'cs_update_application_status_callback' due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Candidate-level access and above, to send a site-generated email with injected HTML to any user.
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Description
The FiboSearch – Ajax Search for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `thegem_te_search` shortcode in all versions up to, and including, 1.32.0 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This vulnerability requires TheGem theme (premium) to be installed with Header Builder mode enabled, and the FiboSearch "Replace search bars" option enabled for TheGem integration.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
References
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L104
- https://plugins.trac.wordpress.org/browser/ajax-search-for-woocommerce/tags/1.32.0/partials/themes/thegem-elementor.php#L94
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3420841%40ajax-search-for-woocommerce%2Ftrunk&old=3398612%40ajax-search-for-woocommerce%2Ftrunk&sfp_email=&sfph_mail=#file136
- https://wordpress.org/plugins/ajax-search-for-woocommerce
- https://www.wordfence.com/threat-intel/vulnerabilities/id/8149103e-105d-401d-8a15-b07d131baaac?source=cve
Description
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.0 via the ajax_get_members function. This is due to the use of a predictable low-entropy token (5 hex characters derived from md5 of post ID) to identify member directories and insufficient authorization checks on the unauthenticated AJAX endpoint. This makes it possible for unauthenticated attackers to extract sensitive data including usernames, display names, user roles (including administrator accounts), profile URLs, and user IDs by enumerating predictable directory_id values or brute-forcing the small 16^5 token space.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
References
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/class-functions.php#L41
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-ajax-common.php#L61
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L205
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/includes/core/class-member-directory.php#L2795
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.10.6/templates/members.php#L26
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&new=3421362%40ultimate-member%2Ftrunk&old=3408617%40ultimate-member%2Ftrunk&sfp_email=&sfph_mail=
- https://www.wordfence.com/threat-intel/vulnerabilities/id/61337d2d-d15a-45f2-b730-fc034eb3cd31?source=cve
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=usaid' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
