UDT
Company Details
Linkedin ID:
usdot
Employees number:
5,366
Number of followers:
259,416
NAICS:
92
Industry Type:
Homepage:
transportation.gov
IP Addresses:
0
Company ID:
U.S_3000674
Scan Status:
In-progress
U.S. Department of Transportation Company CyberSecurity Posture
transportation.gov
At the US Department of Transportation, we occupy a unique leadership role in global transportation. Since our first official day of operation nearly 50 years ago, our transportation programs have evolved to meet the demands of a changing Nation. Today, DOT is composed of the Office of the Secretary, the Office of the Inspector General and 10 Operating Administrations. At the DOT, the safety of the people who travel is our top priority. We are building a better America by making the nation’s transportation system making it safer, more accessible, more reliable, and multi-modal. Together we will increase economic strength and build global competitiveness for the American people. And we want to continue bringing talented minds into public service to help us in the process. The Department of Transportation (DOT) is ranked #3 in the 2020 best places to work in the Federal Government. We hope you’ll join us!
U.S. Department of Transportation A.I CyberSecurity Scoring
UDT Risk Score (AI oriented)Between 650 and 699
UDT
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
UDT Global Score (TPRM)XXXX
UDT
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
UDT Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
U.S. Department of Transportation: Ransomware Payments Fell After Law Enforcement Actions, But Still High: FinCEN
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: U.S. companies made more than $2 billion in ransomware payments between 2022 and 2024, nearly equaling the total ransoms paid in the previous nine years, according to a new report from the U.S. Treasury’s Financial Crimes Enforcement Network (FinCEN). The report, which looked at threat pattern and trend information identified in Bank Secrecy Act (BSA) filings, said that between Jan. 1, 2022 and Dec. 31, 2024, FinCEN received 7,395 BSA reports related to 4,194 ransomware incidents and totaling more than $2.1 billion in ransomware payments. In the previous nine years, from 2013 to 2021, FinCEN received 3,075 BSA reports totaling approximately $2.4 billion in ransomware payments, the report said. FinCEN notes that because its data is based on BSA filings, it is by nature incomplete, and indeed, the 4,194 ransomware incidents recorded by FinCEN between 2022 and 2024 is less than 40% of the nearly 11,000 ransomware attacks recorded in Cyble’s threat intelligence data over the same period. ALPHV/BlackCat and LockBit Enforcement Actions Lowered Ransomware Payments Ransomware incidents and payments reported to FinCEN reached an all-time high in 2023 of 1,512 incidents totaling approximately $1.1 billion in payments, an increase of 77 percent in payments from 2022. In 2024, incidents decreased slightly to 1,476 while total payments dropped to approximately $734 million. FinCEN attributed the decline in ransomware payments in 2024 to law enforcement disruption of the ALPHV/BlackC
UDT Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for UDT
Incidents vs Government Administration Industry Average (This Year)
U.S. Department of Transportation has 53.85% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
U.S. Department of Transportation has 53.85% more incidents than the average of all companies with at least one recorded incident.
Incident Types UDT vs Government Administration Industry Avg (This Year)
U.S. Department of Transportation reported 1 incidents this year: 0 cyber attacks, 1 ransomware, 0 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — UDT (X = Date, Y = Severity)
UDT cyber incidents detection timeline including parent company and subsidiaries
UDT Company Subsidiaries
At the US Department of Transportation, we occupy a unique leadership role in global transportation. Since our first official day of operation nearly 50 years ago, our transportation programs have evolved to meet the demands of a changing Nation. Today, DOT is composed of the Office of the Secretary, the Office of the Inspector General and 10 Operating Administrations. At the DOT, the safety of the people who travel is our top priority. We are building a better America by making the nation’s transportation system making it safer, more accessible, more reliable, and multi-modal. Together we will increase economic strength and build global competitiveness for the American people. And we want to continue bringing talented minds into public service to help us in the process. The Department of Transportation (DOT) is ranked #3 in the 2020 best places to work in the Federal Government. We hope you’ll join us!
Loading...
UDT Similar Companies
State of Tennessee
State government is the largest employer in Tennessee, with approximately 43,500 employees in the three branches of government. The State of Tennessee has approximately 1,300 different job classifications in areas such as administrative, health services, historic preservation, legal, agriculture, co
Ministry of Health Saudi Arabia
The Ministry of Health (MOH), by way of its objectives, policies and projects included in this strategy, seeks to accomplish a promising future vision; namely, delivering best-quality integrated and comprehensive healthcare services. Carrying health conditions or health status of Saudi inhabitants t
Ministero dell'Agricoltura, della Sovranità alimentare e delle Foreste
Il Ministero dell'Agricoltura, della Sovranità alimentare e delle Foreste (Masaf) si occupa dell'elaborazione e del coordinamento delle linee politiche agricole, agroalimentari, forestali, della pesca e dell’ippica a livello nazionale e internazionale. Rappresenta l'Italia in sede europea nelle cont
Department for Work and Pensions (DWP)
The Department for Work and Pensions (DWP) is the UK’s largest government department and is responsible for welfare, pensions and child maintenance policy. It administers the State Pension and a range of working age, disability and ill health benefits, serving around 20 million customers. DWP is re
Nav
Nav er en viktig del av sikkerhetsnettet i velferdsstaten. Vi skal bidra til at flere kommer i arbeid og færre går på stønad, og samtidig sørge for at de som trenger det er sikra inntekt og økonomisk trygghet gjennom rett pengestøtte til rett tid. For å løse dette samfunnsoppdraget forvalter Nav om
Land Niedersachsen
Der Arbeitgeber Niedersachsen vereint über 2000 Dienststellen mit einem gemeinsamen Ziel: Wir gestalten das Leben in Niedersachsen verantwortungsvoll und zukunftsorientiert. Als der größte Arbeitgeber im Land Niedersachsen bieten wir sichere Arbeitsplätze, sinnstiftende Aufgaben und vielfältige Ei
City of Toronto
The City of Toronto is committed to fostering a positive and progressive workplace culture, and strives to build a workforce that reflects the citizens it serves. We are committed to building a high performing public service, with strong and effective leaders to enable service excellence, through hi
Department for Education
Help us achieve world-class education, training and care for everyone, whatever their background. Whether you're just starting out, or an experienced professional, we have what you are looking for. Jobs include administration, policy advisers, digital, finance, commercial specialists and many more
U.S. Department of Education
Our mission is to promote student achievement and preparation for global competitiveness by fostering educational excellence and ensuring equal access. ED is dedicated to: • Establishing policies on federal financial aid for education, and distributing as well as monitoring those funds. • Collect
.png)
UDT CyberSecurity News
October 08, 2025 07:00 AM
US government shutdown: Who is still working and who has been furloughed?
Hundreds of thousands of U.S. federal workers have been ordered not to report to work, while others have been told to stay on the job during...
September 30, 2025 07:00 AM
How a Looming Government Shutdown Could Disrupt Transportation and Cybersecurity
Federal workers across agencies are facing massive layoffs as Democrats and Republicans are in a stand off over funds.
September 30, 2025 07:00 AM
Improving Safety for Walking, Biking, and Rolling
The DOT FY 2022-2026 Strategic Plan calls for an increase in the percentage of person trips by transit and active transportation modes by 50% from 2020 levels.
September 02, 2025 07:00 AM
Q&A: Cybersecurity in Student Transportation: Why It Matters, Where It’s Headed
Increasingly, the conversation about cybersecurity and data protection includes student transportation. STN addressed the subject of...
August 12, 2025 07:00 AM
SMART Grants Program
The Infrastructure Investment and Jobs Act (IIJA) established the Strengthening Mobility and Revolutionizing Transportation (SMART)...
August 04, 2025 09:14 PM
The Next Era: Cybersecurity, workforce and the future of digital services
By providing your contact information to us, you agree: (i) to receive promotional and/or news alerts via email from Federal News Network and our third...
July 23, 2025 07:00 AM
Chowdhury wins IEEE award for cybersecurity breakthroughs in transportation
Chowdhury, the Eugene Douglas Mays Chair of Transportation and a professor of civil engineering at Clemson, has built a national reputation...
July 10, 2025 07:00 AM
The National Transit Database (NTD)
The NTD records the financial, operating, and asset condition of transit systems helping to keep track of the industry and provide public information and...
June 30, 2025 07:00 AM
Cybersecurity
The Department of Homeland Security and its components play a lead role in strengthening cybersecurity resilience across the nation and sectors.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
UDT CyberSecurity History Information
Official Website of U.S. Department of Transportation
The official website of U.S. Department of Transportation is https://www.transportation.gov/careers.
U.S. Department of Transportation’s AI-Generated Cybersecurity Score
According to Rankiteo, U.S. Department of Transportation’s AI-generated cybersecurity score is 665, reflecting their Weak security posture.
How many security badges does U.S. Department of Transportation’ have ?
According to Rankiteo, U.S. Department of Transportation currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does U.S. Department of Transportation have SOC 2 Type 1 certification ?
According to Rankiteo, U.S. Department of Transportation is not certified under SOC 2 Type 1.
Does U.S. Department of Transportation have SOC 2 Type 2 certification ?
According to Rankiteo, U.S. Department of Transportation does not hold a SOC 2 Type 2 certification.
Does U.S. Department of Transportation comply with GDPR ?
According to Rankiteo, U.S. Department of Transportation is not listed as GDPR compliant.
Does U.S. Department of Transportation have PCI DSS certification ?
According to Rankiteo, U.S. Department of Transportation does not currently maintain PCI DSS compliance.
Does U.S. Department of Transportation comply with HIPAA ?
According to Rankiteo, U.S. Department of Transportation is not compliant with HIPAA regulations.
Does U.S. Department of Transportation have ISO 27001 certification ?
According to Rankiteo,U.S. Department of Transportation is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of U.S. Department of Transportation
U.S. Department of Transportation operates primarily in the Government Administration industry.
Number of Employees at U.S. Department of Transportation
U.S. Department of Transportation employs approximately 5,366 people worldwide.
Subsidiaries Owned by U.S. Department of Transportation
U.S. Department of Transportation presently has no subsidiaries across any sectors.
U.S. Department of Transportation’s LinkedIn Followers
U.S. Department of Transportation’s official LinkedIn profile has approximately 259,416 followers.
NAICS Classification of U.S. Department of Transportation
U.S. Department of Transportation is classified under the NAICS code 92, which corresponds to Public Administration.
U.S. Department of Transportation’s Presence on Crunchbase
No, U.S. Department of Transportation does not have a profile on Crunchbase.
U.S. Department of Transportation’s Presence on LinkedIn
Yes, U.S. Department of Transportation maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/usdot.
Cybersecurity Incidents Involving U.S. Department of Transportation
As of December 08, 2025, Rankiteo reports that U.S. Department of Transportation has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
U.S. Department of Transportation has an estimated 11,428 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at U.S. Department of Transportation ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability has been found in TykoDev cherry-studio-TykoFork 0.1. This issue affects the function redirectToAuthorization of the file /.well-known/oauth-authorization-server of the component OAuth Server Discovery. Such manipulation of the argument authorizationUrl leads to os command injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A flaw has been found in code-projects Question Paper Generator up to 1.0. This vulnerability affects unknown code of the file /selectquestionuser.php. This manipulation of the argument subid causes sql injection. Remote exploitation of the attack is possible. The exploit has been published and may be used.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected by this vulnerability is an unknown functionality of the file /dishsub.php. The manipulation of the argument item.name results in cross site scripting. It is possible to launch the attack remotely. The exploit has been made public and could be used. This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 3.3
Severity: LOW
AV:N/AC:L/Au:M/C:N/I:P/A:N
cvss3
Base: 2.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability has been found in alokjaiswal Hotel-Management-services-using-MYSQL-and-php up to 5f8b60a7aa6c06a5632de569d4e3f6a8cd82f76f. Affected is an unknown function of the file /usersub.php of the component Request Pending Page. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A flaw has been found in Verysync 微力同步 up to 2.21.3. This impacts an unknown function of the file /rest/f/api/resources/f96956469e7be39d/tmp/text.txt?override=false of the component Web Administration Module. Executing manipulation can lead to unrestricted upload. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=usdot' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
