What is the official website of Zakat, Tax and Customs Authority ?

The official website of Zakat, Tax and Customs Authority is http://www.zatca.gov.sa.

What is Zakat, Tax and Customs Authority's cybersecurity risk score?

Zakat, Tax and Customs Authority has an AI-generated cybersecurity risk score of 787 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Zakat, Tax and Customs Authority experienced?

According to Rankiteo, Zakat, Tax and Customs Authority currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Zakat, Tax and Customs Authority been affected by any supply chain cyber incidents ?

According to Rankiteo, Zakat, Tax and Customs Authority has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Zakat, Tax and Customs Authority have SOC 2 Type 1 certification ?

According to Rankiteo, Zakat, Tax and Customs Authority is not certified under SOC 2 Type 1.

Does Zakat, Tax and Customs Authority have SOC 2 Type 2 certification ?

According to Rankiteo, Zakat, Tax and Customs Authority does not hold a SOC 2 Type 2 certification.

Does Zakat, Tax and Customs Authority comply with GDPR ?

According to Rankiteo, Zakat, Tax and Customs Authority is not listed as GDPR compliant.

Does Zakat, Tax and Customs Authority have PCI DSS certification ?

According to Rankiteo, Zakat, Tax and Customs Authority does not currently maintain PCI DSS compliance.

Does Zakat, Tax and Customs Authority comply with HIPAA ?

According to Rankiteo, Zakat, Tax and Customs Authority is not compliant with HIPAA regulations.

Does Zakat, Tax and Customs Authority have ISO 27001 certification ?

According to Rankiteo,Zakat, Tax and Customs Authority is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Zakat, Tax and Customs Authority operate in ?

Zakat, Tax and Customs Authority operates primarily in the Government Administration industry.

How many employees does Zakat, Tax and Customs Authority have ?

Zakat, Tax and Customs Authority employs approximately 6,038 people worldwide.

Does Zakat, Tax and Customs Authority own any subsidiaries ?

Zakat, Tax and Customs Authority presently has no subsidiaries across any sectors.

How many LinkedIn followers does Zakat, Tax and Customs Authority have ?

Zakat, Tax and Customs Authority's official LinkedIn profile has approximately 522,625 followers.

What is the NAICS classification code for Zakat, Tax and Customs Authority ?

Zakat, Tax and Customs Authority is classified under the NAICS code 92, which corresponds to Public Administration.

Does Zakat, Tax and Customs Authority have a Crunchbase profile ?

No, Zakat, Tax and Customs Authority does not have a profile on Crunchbase.

Does Zakat, Tax and Customs Authority have a LinkedIn profile ?

Yes, Zakat, Tax and Customs Authority maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/zatcasa.

How many cybersecurity incidents has Zakat, Tax and Customs Authority experienced ?

As of June 30, 2026, Rankiteo reports that Zakat, Tax and Customs Authority has not experienced any cybersecurity incidents.

How many peer or competitor companies does Zakat, Tax and Customs Authority have ?

Zakat, Tax and Customs Authority has an estimated 12,954 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

ZTCA

Boost Score +25 with badge (5 left)

787

/1000

Fair

812

/1000

Good

Zakat, Tax and Customs Authority Vendor Cyber Rating & Cyber Score

zatca.gov.sa

Add Your Compliance Badge

A new phase of a prosperous Saudi economy represented by the highest levels of integration of the Zakat, Tax, and Customs sectors to make Saudi Arabia a highly competitive international logistic hub and the ideal environment for attracting international business investment. مرحلة جديدة في مسيرة الزكاة والضريبة والجمارك لتكون المملكة مركزًا لوجستيًا عالميًا وذات تنافسية عالية عبر خلق تكامل جديد بين القطاعات الزكوية والضريبية والجمركية؛ تسهيلاً لممارسة الأعمال وحمايةً للأمن الوطني لاقتصاد مزدهر

ZTCA A.I CyberSecurity Scoring

Scoring History

ZTCA

Zakat, Tax and Customs Authority CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

ZTCA Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for ZTCA

Incidents vs Government Administration Industry Avg (This Year)

No incidents recorded for Zakat, Tax and Customs Authority in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Zakat, Tax and Customs Authority in 2026.

Incident Types ZTCA vs Government Administration Industry Avg (This Year)

No incidents recorded for Zakat, Tax and Customs Authority in 2026.

Incident History - ZTCA (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Zakat, Tax and Customs Authority Subsidiaries

ZTCA

Government Administration

Website: http://www.zatca.gov.sa

Company Size: 6,038

Zakat, Tax and Customs Academyمقدمو التعليم الإلكتروني

مؤتمر الزكاة والضريبة والجماركالخدمات المالية

Loading…

Zakat, Tax and Customs Authority Similar Companies

Ministero dell'Interno

interno.gov.it

Il ministero dell'Interno è una struttura complessa il cui assetto organizzativo è disciplinato dal D.L.vo n. 300/99 e dai provvedimenti attuativi. A livello centrale, si articola in uffici di diretta collaborazione con il ministro (D.P.R. n. 98/2002) e cinque dipartimenti (D.P.R. n. 398/2001 e successive modificazioni); a livello periferico, in Prefetture-Uffici Territoriali di Governo, Questure e Comandi dei Vigili del fuoco.

Social Security Administration

ssa.gov

Social Security provides financial protection for our nation’s people, supporting more than 64 million individuals and families. With retirement, disability, and survivors benefits, Social Security is one of the most successful anti-poverty programs in our nation's history. We are there throughout life’s journey, helping secure today and tomorrow. We are one of the largest independent agencies in government, with over 58,000 team members throughout the country. Our talented workforce includes employees who serve customers directly, as well as those who support their work in diverse fields. Through compassion and dedication, our team members help promote the economic security of the country. They are the heart of our agency, providing high-quality, personalized service to people in their communities, nationwide, and even living abroad. Our workforce is our greatest strength at SSA. We place high priority on developing, engaging, and empowering our team members. Through career development programs, our team members have access to a wide range of training and professional development opportunities. We rely on our team members’ feedback to improve how we administer our programs and to create an environment of trust and cooperation across our organization. We also offer an excellent benefits package to our team members. To learn more about a career with SSA, visit SSA.gov/careers.

Ministère de l'Éducation nationale

gouv.fr

Page officielle du ministère de l'Éducation nationale. Retrouvez toute l'information sur www.education.gouv.fr, twitter.com/education_gouv, facebook.com/education.gouv et dans nos lettres d'informations (bulletin hebdo et lettre education.gouv.fr). ------------------------------------------------------------- Le ministère de l'Éducation nationale est en charge de la préparation et de la mise en œuvre de la politique du Gouvernement concernant la jeunesse, au sein et en dehors du milieu scolaire, et l'accès de chacun aux savoirs et au développement de l'enseignement pré-élémentaire, élémentaire et secondaire. Ses compétences principales s’exercent dans : la définition des voies de formation, la fixation des programmes nationaux, l'organisation et le contenu des enseignements ; la définition et la délivrance des diplômes nationaux et la collation des grades et titres universitaires ; / le recrutement et la gestion des personnels qui dépendent de sa responsabilité ; / la répartition des moyens qu'il consacre à l'éducation, afin d'assurer en particulier l'égalité d'accès au service public ; le contrôle et l'évaluation des politiques éducatives, en vue d'assurer la cohérence d'ensemble du système éducatif. L'administration de l'Éducation nationale est présente dans chaque région et dans chaque département : ce sont les services déconcentrés du ministère de l'Éducation nationale. Son organisation s’articule autour de 17 régions académiques, 30 académies et 97 directions des services départementaux de l'Éducation nationale. Les domaines où s'exercent les métiers dans l'éducation nationale sont multiples : l'enseignement avec plus de 80% des effectifs, l'éducation et l'orientation mais aussi la santé et le social, l'administration, la comptabilité, la gestion et les finances, la technique, les systèmes d’information, la recherche et formation, les bibliothèques, l'encadrement (direction et inspection).

City of Philadelphia

phila.gov

With a workforce of 30,000 people, and opportunities in 1,000 different job categories, the City of Philadelphia is one of the largest employers in Southeastern Pennsylvania. As an employer, we operate through the guiding principles of service, integrity, respect, accountability, collaboration, diversity and inclusion. We strive to effectively deliver services, to resolve the challenges facing our city, and to make Philadelphia a place where all of our residents have the opportunity to reach their potential. To learn more about job opportunities, visit www.phila.gov or follow #PHLCityJobs.

Transportation Security Administration (TSA)

tsa.gov

The Transportation Security Administration (TSA) is a component agency of the U.S. Department of Homeland Security (DHS), committed to securing the nation’s transportation systems to ensure safe and efficient travel for all. Our mission is to protect the American people by preventing threats and disruptions in the transportation sector, while enhancing the overall passenger experience. 🔹 Mission: Safeguard transportation systems and prevent security threats 🔹 Vision: Achieve a secure and resilient transportation network 🔹 Values: Integrity, Excellence, Accountability, and Innovation More than 60,000 people around the world make up #TeamTSA and ensure the safety of millions of people each day as they travel by plane, train, automobile or ferry. From the officers you see on the frontlines to our cybersecurity and mission support teams, we’re working hard to combat evolving threats and keep you safe. Join us in our commitment to a more secure travel experience. For more information, visit tsa.gov.

NOAA: National Oceanic & Atmospheric Administration

cb noaa.gov

Welcome! We're the National Oceanic & Atmospheric Administration or NOAA. From daily weather forecasts, severe storm warnings and climate monitoring to fisheries management, coastal restoration and supporting marine commerce, our products and services support economic vitality and affect more than one-third of America’s gross domestic product. NOAA’s dedicated scientists use cutting-edge research and high-tech instrumentation to provide citizens, planners, emergency managers and other decision makers with reliable information they need when they need it. *Looking for your official local weather forecast? Enter your zip code at www.weather.gov or mobile.weather.gov for mobile device users. *Interested in working for NOAA? Find job openings by typing "NOAA" in the search field at www.USAjobs.gov. Connect with us on social media: X: @NOAA Bluesky: noaa.gov Facebook: www.facebook.com/noaa Instagram: www.instagram.com/noaa YouTube: www.youtube.com/noaa LinkedIn: www.linkedin.com/company/noaa For a list of NOAA's major social media channels by mission area, please visit www.noaa.gov/stay-connected

Land Niedersachsen

niedersachsen.de

Der Arbeitgeber Niedersachsen vereint über 2000 Dienststellen mit einem gemeinsamen Ziel: Wir gestalten das Leben in Niedersachsen verantwortungsvoll und zukunftsorientiert. Als der größte Arbeitgeber im Land Niedersachsen bieten wir sichere Arbeitsplätze, sinnstiftende Aufgaben und vielfältige Einsatzbereiche - von Verwaltung über Umwelt, Handwerk, Bildung oder IT bis hin zur Polizei. Wir suchen Menschen mit Engagement und dem Wunsch das Land Niedersachsen mitzugestalten. Ob Berufseinstieg, Quereinstieg oder Laufbahnentwicklung - bei uns findest du deine Perspektive. Vielfalt, Vereinbarkeit und Verlässlichkeit stehen bei uns an erster Stelle. Folge uns, um mehr über aktuelle Stellenangebote, Karrierewege und echte Einblicke in den niedersächsischen Landesdienst zu erfahren. Impressum: https://karriere.niedersachsen.de/impressum.html Datenschutz: https://karriere.niedersachsen.de/datenschutz.html

National Park Service

nps.gov

Most people know that the National Park Service cares for national parks, a network of over 420 natural, cultural and recreational sites across the nation. The treasures in this system – the first of its kind in the world – have been set aside by the American people to preserve, protect, and share the legacies of this land. People from all around the world visit national parks to experience America's story, marvel at the natural wonders, and have fun. Places like the Grand Canyon, the Statue of Liberty, and Gettysburg are popular destinations, but so too are the hundreds of lesser known yet equally meaningful gems like Rosie the Riveter in California, Boston Harbor Islands in Massachusetts, and Russell Cave in Alabama. The American system of national parks was the first of its kind in the world, and provides a living model for other nations wishing to establish and manage their own protected areas. The park service actively consults with these Nations, sharing what we've learned, and gaining knowledge from the experience of others. Beyond national parks, the National Park Service helps communities across America preserve and enhance important local heritage and close-to-home recreational opportunities. Grants and assistance are offered to register, record and save historic places; create community parks and local recreation facilities; conserve rivers and streams, and develop trails and greenways.

INSS

inss.gov.br

O Instituto Nacional do Seguro Social (INSS) é uma autarquia do Governo Federal do Brasil que recebe as contribuições para a manutenção do Regime Geral da Previdência Social, sendo responsável pelo pagamento da aposentadoria, pensão por morte, auxílio-doença, auxílio-acidente, entre outros benefícios previstos em lei. O INSS trabalha junto com a Dataprev, empresa de tecnologia que faz o processamento de todos os dados da Previdência. Está vinculado ao Ministério da Previdência Social.

Loading…

NEWS

Zakat, Tax and Customs Authority CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

January 22, 2026 08:00 AM

AI in GCC tax administration: from digital compliance to intelligent governance

Hany Elnaggar examines how AI is reshaping tax administration across the Gulf Cooperation Council, transforming the taxpayer experience from...

Read Article

July 02, 2025 07:00 AM

Fintech Laws and Regulations Report 2025-2026 Saudi Arabia

Chapter covers common issues in fintech – including funding, regulation, other regulatory regimes / non-financial regulation, and technology.

Read Article

June 28, 2025 07:00 AM

Nigeria, Saudi Arabia seal deal on customs cooperation

The Nigeria Customs Service (NCS) and the Zakat, Tax and Customs Authority of the Kingdom of Saudi Arabia have signed a bilateral agreement...

Read Article

February 03, 2025 08:00 AM

Interim president of Syrian Arab Republic visits SDAIA headquarters

RIYADH: Ahmad Al-Sharaa, the interim president of the Syrian Arab Republic, has visited the headquarters of the Saudi Authority for Data and...

Read Article

October 29, 2024 07:00 AM

How Saudisoft is helping companies to thrive in Saudi Arabia

Saudisoft's industry-specific expertise ensures that clients receive tailored solutions that address their unique challenges and...

Read Article

August 18, 2023 07:00 AM

DT100: KSA’s Top 100 Visionary Leaders Driving Digital Transformation

Exito Media's DT100 honors exceptional individuals who have spearheaded groundbreaking advancements in technology within the region.

Read Article

June 12, 2023 07:00 AM

IV Polish-Saudi Joint Committee and Business Forum

The Fourth Meeting of the Polish-Saudi Joint Committee was held in Riyadh on June 11-12, ending with the signing of the committee's minutes.

Read Article

February 08, 2023 08:00 AM

Integration of zakat, tax bodies with customs to be completed in Q1: ZATCA governor

RIYADH: The complete merger of the General Authority of Zakat and Tax with the General Authority of Customs will be completed by the end of...

Read Article

June 20, 2022 07:00 AM

KSA Increase in customs duties for 99 Commodities

The Board of Directors of the Zakat, Tax and Customs Authority (ZATCA) has announced an increase in customs duties for (99) commodities.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-8023

SUMMARY

Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STATIC_FS, available when CONFIG_FILE_SYSTEM is enabled) that serves files from a configured root directory. Before this fix, both the HTTP/1 and HTTP/2 front-ends placed the raw, attacker-controlled request path into client-url_buffer (assembled in on_url() for HTTP/1 and copied verbatim from the :path pseudo-header for HTTP/2) without resolving ./.. segments. The static-FS handler then built the on-disk filename by directly concatenating the configured root with that raw URL (snprintk(fname, ..., "%s%s", static_fs_detail-fs_path, client-url_buffer) at http_server_http1.c:603 and http_server_http2.c:490) and opened it with fs_open(fname, FS_O_READ). Because the handler is reached via wildcard/leading-dir (fnmatch FNM_LEADING_DIR) or fallback resource matching, a request such as GET /<prefix/../../<file is dispatched to the handler and, after the underlying filesystem (e.g. LittleFS/FAT) resolves the .. segments, escapes the configured web root, letting an unauthenticated remote client read arbitrary readable files on the mounted volume (information disclosure). The HTTP server requires no TLS or authentication to reach this path. The fix adds http_server_remove_dot_segments(), which canonicalizes the path portion of the URL before resource lookup in both protocol handlers, neutralizing the traversal. Affects releases v4.0.0 through v4.4.0 for deployments that register a static-filesystem resource.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 7.5)

cvss3

Base Score: 7.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score

3.6

Exploitability

3.9

REFERENCES

CVE-2026-7656

SUMMARY

The IPv6 Neighbor Discovery handlers in subsys/net/ip/ipv6_nbr.c (handle_ra_input, handle_ns_input, handle_na_input) used an incorrect boolean expression that combined the RFC 4861 validity checks with the ICMPv6 code check using the wrong operator precedence: the form was '((length/hop/source/target checks) && (icmp_hdr-code != 0))'. Because every legitimate ND message carries ICMPv6 code 0, an attacker setting code == 0 (the normal value) caused the entire predicate to evaluate false, so the packet was never dropped and all of the other checks were silently skipped. The bypassed checks include the mandatory Hop Limit == 255 verification (which proves an ND packet originated on-link and was not forwarded) and, for Router Advertisements, the requirement that the source be a link-local address, as well as multicast-target sanity checks. As a result, an adjacent on-link attacker — and, because the Hop-Limit-255 guard is bypassed, potentially a remote/off-link attacker whose packets would otherwise be rejected — can have forged Router Advertisement, Neighbor Solicitation, and Neighbor Advertisement messages accepted. A forged RA lets the attacker reconfigure the victim's default router, on-link prefixes (SLAAC), MTU, reachable/retransmit timers, and (with CONFIG_NET_IPV6_RA_RDNSS) DNS servers, while forged NS/NA enable neighbor-cache poisoning, enabling man-in-the-middle, traffic redirection, and denial of service. The flaw is an input-validation/authentication weakness rather than a memory-safety issue: the underlying packet-parsing primitives (net_pkt_get_data, net_pkt_read, net_pkt_skip) are independently bounds-safe and the validated 'length' is the true buffer length, so skipping the length check causes no out-of-bounds access. The defect has existed since the logic was introduced in 2018 and shipped in all releases through v4.4.0; it is fixed by splitting the condition so any failing check drops the packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: LOW

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Impact Score

5.2

Exploitability

2.8

REFERENCES

CVE-2026-51219

SUMMARY

A heap buffer overflow in the HighPriorityASDUQueue_hasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service (DoS) via a crafted payload.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-51218

SUMMARY

A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of snap7 v1.4.3 allows attackers to cause a Denial of Service (DoS) via a crafted packet.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: )

Impact Score

Exploitability

REFERENCES

CVE-2026-10648

SUMMARY

mcumgr_serial_process_frag() in subsys/mgmt/mcumgr/transport/src/serial_util.c calls net_buf_reset() on the result of smp_packet_alloc() before checking it for NULL. smp_packet_alloc() uses net_buf_alloc(K_NO_WAIT) against the shared MCUmgr packet pool (CONFIG_MCUMGR_TRANSPORT_NETBUF_COUNT, default 4), which returns NULL when the pool is exhausted. In default builds the __ASSERT_NO_MSG in net_buf_reset is a no-op, so net_buf_simple_reset writes through the NULL pointer (buf->len = 0; buf->data = buf->__buf), causing a fault/crash. The fragment data reaches this code from attacker-controlled bytes on the MCUmgr serial/UART/shell-console transports (smp_uart.c, smp_raw_uart.c, smp_shell.c), and a fresh buffer is allocated at the start of essentially every new packet. An attacker on the serial/console link can flood the transport to drive the 4-entry buffer pool to exhaustion and induce the NULL dereference, crashing the device (denial of service). The defect was introduced after the original MCUmgr rework and shipped in Zephyr v4.4.0. The fix moves the NULL check ahead of net_buf_reset.

Published

Date2026-06-29

Updated

Date2026-06-29

RISK INFORMATION (Score: 6.2)

cvss3

Base Score: 6.2

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.5

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…