WDEF-TV
Company Details
Linkedin ID:
wdef-tv
Website:
Employees number:
72
Number of followers:
896
NAICS:
515
Industry Type:
Homepage:
wdef.com
IP Addresses:
0
Company ID:
WDE_9607721
Scan Status:
In-progress
WDEF-TV Company CyberSecurity Posture
wdef.com
WDEF–TV, channel 12, is the CBS affiliate television station for Chattanooga and the Tennessee Valley. The station, whose call letters came from its former AM and FM sister stations, is owned by Morris Multimedia. Its studios are located on Broad Street in Chattanooga, while its transmitter is located in nearby Signal Mountain. On cable, WDEF-TV is carried on Comcast channel 13, and on EPB Fiber Optics channels 12 and 312 in the Chattanooga area. Syndicated programming on WDEF includes: Judge Judy, The Insider, and The Andy Griffith Show.
WDEF-TV A.I CyberSecurity Scoring
WDEF-TV Risk Score (AI oriented)Between 650 and 699
WDEF-TV
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
WDEF-TV Global Score (TPRM)XXXX
WDEF-TV
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
WDEF-TV Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
WDEF-TV
Ransomware
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: WDEF-TV, a CBS‐affiliated station in Chattanooga, Tennessee, was claimed by the Lynx ransomware-as-a-service operation to have been breached. Although WDEF-TV has not yet confirmed the incident, Lynx published sample files that appear to be confidential employee agreements, suggesting the attackers accessed internal HR and payroll documents. The release of such materials exposes employees to identity theft and privacy violations, and could trigger legal liabilities and regulatory scrutiny under data protection laws. Beyond individual harm, the station faces reputational damage, loss of viewer trust, and potential fines from authorities overseeing confidential employee records. The breach may also disrupt day-to-day operations if WDEF-TV’s IT infrastructure was encrypted or held for ransom, forcing the station to allocate resources to incident response, forensic investigation, and public relations management. With Lynx known for targeting nearly 200 organizations and linking its payload to existing ransomware variants, WDEF-TV remains at risk of follow-on extortion and further data dissemination on dark web leak sites. The event underscores the growing threat posed by ransomware gangs against media outlets and the critical need for robust backup and employee data protection measures.
WDEF-TV Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for WDEF-TV
Incidents vs Broadcast Media Production and Distribution Industry Average (This Year)
WDEF-TV has 0.0% fewer incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
WDEF-TV has 56.25% more incidents than the average of all companies with at least one recorded incident.
Incident Types WDEF-TV vs Broadcast Media Production and Distribution Industry Avg (This Year)
WDEF-TV reported 1 incidents this year: 0 cyber attacks, 1 ransomware, 0 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — WDEF-TV (X = Date, Y = Severity)
WDEF-TV cyber incidents detection timeline including parent company and subsidiaries
WDEF-TV Company Subsidiaries
WDEF–TV, channel 12, is the CBS affiliate television station for Chattanooga and the Tennessee Valley. The station, whose call letters came from its former AM and FM sister stations, is owned by Morris Multimedia. Its studios are located on Broad Street in Chattanooga, while its transmitter is located in nearby Signal Mountain. On cable, WDEF-TV is carried on Comcast channel 13, and on EPB Fiber Optics channels 12 and 312 in the Chattanooga area. Syndicated programming on WDEF includes: Judge Judy, The Insider, and The Andy Griffith Show.
Loading...
WDEF-TV Similar Companies
Fox Corporation
Under the FOX banner, we produce and distribute content through some of the world’s leading and most valued brands, including: FOX News Media, FOX Sports, FOX Entertainment, FOX Television Stations and Tubi Media Group. We empower a diverse range of creators to imagine and develop culturally signifi
Alalam News Network
قناة العالم هي قناة تلفزيونية إخبارية مقرها طهران، ايران، رفعت منذ انطلاقتها في شباط/فبراير عام 2003 شعار "الحقيقة كما تراها". وتسعى قناة العالم لتوفير فرصة للتفاعل والتواصل بين شعوب المنطقة والشعوب المسلمة في جميع بقاع الأرض من خلال طرحها لمشاكلهم الحقيقية، خاصة في ظل الهجمة الشرسة لوسائل الإعلام
CBC/Radio-Canada
CBC/Radio-Canada is Canada's national public broadcaster and a strong advocate of Canadian culture. We offer a unique space and a fresh Canadian perspective with unmatched cultural, musical and documentary programming. We do it in French, English and eight Aboriginal languages. Our activities prom
With over a quarter of a billion monthly listeners in the U.S. and over 129 million social followers, iHeartMedia has the largest national reach of any radio or television outlet in America. As the leader in multiplatform connections, it also serves over 150 local markets through 858 owned radio sta
Sky
Sky connects and entertains millions of people across Europe. At the heart of everything we do, is a belief that people deserve better. For decades, we’ve shaken up every category we entered to give people what they love, to make life a little easier and to provide great value. That’s how we bring m
ITI Group
ITI Group was originally founded in 1984 by Jan Wejchert and Mariusz Walter. Bruno Valsangiacomo joined in 1991 as the third Founding Shareholder. They were known as the 3 Musqueteers creating from scratch leading businesses in Poland. ITI Group was a pioneer in building state of the art businesses
MultiChoice Group
MultiChoice Group is a leading entertainment company and we’re home to some of the most recognised brands on the continent. Our entertainment platforms – DStv, GOtv, Showmax and DStv Now – are a hub for more than 19 million people across 50 countries. Through Irdeto, we‘re a world leader in content
ESPN
ESPN is the leading multiplatform sports entertainment brand that features seven U.S. television networks, the leading sports app, direct-to-consumer ESPN+, leading social and digital platforms, ESPN.com, ESPN Audio, endeavors on every continent around the world, and more. ESPN is 80 percent owned b
.png)
WDEF-TV CyberSecurity News
May 02, 2025 07:00 AM
Lynx ransomware claims to strike CBS affiliate
A ransomware actor Lynx has just added WDEF-TV, a major CBS affiliate in Chattanooga, to its dark web hall of shame, alleging a ransomware attack.
May 26, 2024 07:00 AM
Over 75 WDEF-TV Employees, Former Staff Celebrate Station's 70th Anniversary
Over 75 former and current employees gathered in the WDEF TV studio B on S. Broad Street Saturday to celebrate Chattanooga's first television station's 70 th...
March 05, 2020 08:00 AM
EPB testing new cyber security software
CHATTANOOGA, Tenn. (WDEF)- EPB has started testing new cyber security software. The new technology will use science to add extra security to...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
WDEF-TV CyberSecurity History Information
Official Website of WDEF-TV
The official website of WDEF-TV is http://www.wdef.com.
WDEF-TV’s AI-Generated Cybersecurity Score
According to Rankiteo, WDEF-TV’s AI-generated cybersecurity score is 655, reflecting their Weak security posture.
How many security badges does WDEF-TV’ have ?
According to Rankiteo, WDEF-TV currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does WDEF-TV have SOC 2 Type 1 certification ?
According to Rankiteo, WDEF-TV is not certified under SOC 2 Type 1.
Does WDEF-TV have SOC 2 Type 2 certification ?
According to Rankiteo, WDEF-TV does not hold a SOC 2 Type 2 certification.
Does WDEF-TV comply with GDPR ?
According to Rankiteo, WDEF-TV is not listed as GDPR compliant.
Does WDEF-TV have PCI DSS certification ?
According to Rankiteo, WDEF-TV does not currently maintain PCI DSS compliance.
Does WDEF-TV comply with HIPAA ?
According to Rankiteo, WDEF-TV is not compliant with HIPAA regulations.
Does WDEF-TV have ISO 27001 certification ?
According to Rankiteo,WDEF-TV is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of WDEF-TV
WDEF-TV operates primarily in the Broadcast Media Production and Distribution industry.
Number of Employees at WDEF-TV
WDEF-TV employs approximately 72 people worldwide.
Subsidiaries Owned by WDEF-TV
WDEF-TV presently has no subsidiaries across any sectors.
WDEF-TV’s LinkedIn Followers
WDEF-TV’s official LinkedIn profile has approximately 896 followers.
NAICS Classification of WDEF-TV
WDEF-TV is classified under the NAICS code 515, which corresponds to Broadcasting (except Internet).
WDEF-TV’s Presence on Crunchbase
No, WDEF-TV does not have a profile on Crunchbase.
WDEF-TV’s Presence on LinkedIn
Yes, WDEF-TV maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/wdef-tv.
Cybersecurity Incidents Involving WDEF-TV
As of November 30, 2025, Rankiteo reports that WDEF-TV has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
WDEF-TV has an estimated 3,950 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at WDEF-TV ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
Incident Details
Can you provide details on each incident ?
Title: WDEF-TV Ransomware Breach
Description: WDEF-TV, a CBS‐affiliated station in Chattanooga, Tennessee, was claimed by the Lynx ransomware-as-a-service operation to have been breached. Although WDEF-TV has not yet confirmed the incident, Lynx published sample files that appear to be confidential employee agreements, suggesting the attackers accessed internal HR and payroll documents.
Type: Ransomware
Attack Vector: Ransomware-as-a-service
Threat Actor: Lynx ransomware-as-a-service operation
Motivation: Extortion, Financial Gain
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware WDE901050525
Data Compromised: Confidential employee agreements, Internal hr and payroll documents
Operational Impact: Potential disruption of day-to-day operations
Brand Reputation Impact: Reputational damage, loss of viewer trust
Legal Liabilities: Potential legal liabilities and regulatory scrutiny
Identity Theft Risk: Employees exposed to identity theft
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Employee Agreements, Hr And Payroll Documents and .
Which entities were affected by each incident ?
Incident : Ransomware WDE901050525
Entity Name: WDEF-TV
Entity Type: Media Outlet
Industry: Broadcasting
Location: Chattanooga, Tennessee
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware WDE901050525
Type of Data Compromised: Employee agreements, Hr and payroll documents
Sensitivity of Data: High
Data Exfiltration: Sample files published
Personally Identifiable Information: Yes
Ransomware Information
Was ransomware involved in any of the incidents ?
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Ransomware WDE901050525
Lessons Learned: Need for robust backup and employee data protection measures
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Need for robust backup and employee data protection measures.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Lynx ransomware-as-a-service operation.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Confidential employee agreements, Internal HR and payroll documents and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Internal HR and payroll documents and Confidential employee agreements.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Need for robust backup and employee data protection measures.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A vulnerability was determined in motogadget mo.lock Ignition Lock up to 20251125. Affected by this vulnerability is an unknown functionality of the component NFC Handler. Executing manipulation can lead to use of hard-coded cryptographic key . The physical device can be targeted for the attack. A high complexity level is associated with this attack. The exploitation appears to be difficult. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 1.2
Severity: HIGH
AV:L/AC:H/Au:N/C:P/I:N/A:N
cvss3
Base: 2.0
Severity: HIGH
CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 1.0
Severity: HIGH
CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
OrangeHRM is a comprehensive human resource management (HRM) system. From version 5.0 to 5.7, the interview attachment retrieval endpoint in the Recruitment module serves files based solely on an authenticated session and user-supplied identifiers, without verifying whether the requester has permission to access the associated interview record. Because the server does not perform any recruitment-level authorization checks, an ESS-level user with no access to recruitment workflows can directly request interview attachment URLs and receive the corresponding files. This exposes confidential interview documents—including candidate CVs, evaluations, and supporting files—to unauthorized users. The issue arises from relying on predictable object identifiers and session presence rather than validating the user’s association with the relevant recruitment process. This issue has been patched in version 5.8.
Risk Information
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
OrangeHRM is a comprehensive human resource management (HRM) system. From version 5.0 to 5.7, the application’s recruitment attachment retrieval endpoint does not enforce the required authorization checks before serving candidate files. Even users restricted to ESS-level access, who have no permission to view the Recruitment module, can directly access candidate attachment URLs. When an authenticated request is made to the attachment endpoint, the system validates the session but does not confirm that the requesting user has the necessary recruitment permissions. As a result, any authenticated user can download CVs and other uploaded documents for arbitrary candidates by issuing direct requests to the attachment endpoint, leading to unauthorized exposure of sensitive applicant data. This issue has been patched in version 5.8.
Risk Information
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
OrangeHRM is a comprehensive human resource management (HRM) system. From version 5.0 to 5.7, the application does not invalidate existing sessions when a user is disabled or when a password change occurs, allowing active session cookies to remain valid indefinitely. As a result, a disabled user, or an attacker using a compromised account, can continue to access protected pages and perform operations as long as a prior session remains active. Because the server performs no session revocation or session-store cleanup during these critical state changes, disabling an account or updating credentials has no effect on already-established sessions. This makes administrative disable actions ineffective and allows unauthorized users to retain full access even after an account is closed or a password is reset, exposing the system to prolonged unauthorized use and significantly increasing the impact of account takeover scenarios. This issue has been patched in version 5.8.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
OrangeHRM is a comprehensive human resource management (HRM) system. From version 5.0 to 5.7, the password reset workflow does not enforce that the username submitted in the final reset request matches the account for which the reset process was originally initiated. After obtaining a valid reset link for any account they can receive email for, an attacker can alter the username parameter in the final reset request to target a different user. Because the system accepts the supplied username without verification, the attacker can set a new password for any chosen account, including privileged accounts, resulting in full account takeover. This issue has been patched in version 5.8.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=wdef-tv' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
