Sempra
Company Details
Linkedin ID:
sempra-energy
Website:
Employees number:
2,593
Number of followers:
59,646
NAICS:
22
Industry Type:
Homepage:
sempra.com
IP Addresses:
0
Company ID:
SEM_2050342
Scan Status:
In-progress
Sempra Company CyberSecurity Posture
sempra.com
Sempra is a leading North American energy infrastructure company focused on delivering energy to nearly 40 million consumers. As owner of one of the largest energy networks on the continent, Sempra is electrifying and improving the energy resilience of some of the world's most significant economic markets, including California, Texas, Mexico and global energy market. The company is recognized as a leader in sustainable business practices and for its high-performance culture focused on safety and operational excellence, as demonstrated by Sempra's inclusion in the Dow Jones Sustainability Index North America and in The Wall Street Journal's Best Managed Companies. More information about Sempra is available at sempra.com and on social media @Sempra.
Sempra A.I CyberSecurity Scoring
Sempra Risk Score (AI oriented)Between 800 and 849
Sempra
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Sempra Global Score (TPRM)XXXX
Sempra
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Sempra Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Sempra Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Sempra
Incidents vs Utilities Industry Average (This Year)
No incidents recorded for Sempra in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Sempra in 2025.
Incident Types Sempra vs Utilities Industry Avg (This Year)
No incidents recorded for Sempra in 2025.
Incident History — Sempra (X = Date, Y = Severity)
Sempra cyber incidents detection timeline including parent company and subsidiaries
Sempra Company Subsidiaries
Sempra is a leading North American energy infrastructure company focused on delivering energy to nearly 40 million consumers. As owner of one of the largest energy networks on the continent, Sempra is electrifying and improving the energy resilience of some of the world's most significant economic markets, including California, Texas, Mexico and global energy market. The company is recognized as a leader in sustainable business practices and for its high-performance culture focused on safety and operational excellence, as demonstrated by Sempra's inclusion in the Dow Jones Sustainability Index North America and in The Wall Street Journal's Best Managed Companies. More information about Sempra is available at sempra.com and on social media @Sempra.
Loading...
Sempra Similar Companies
Pacific Gas and Electric Company
Pacific Gas and Electric Company, incorporated in California in 1905, is one of the largest combination natural gas and electric utilities in the United States. Based in San Francisco, the company is a subsidiary of PG&E Corporation. There are approximately 20,000 employees who carry out Pacific
American Electric Power
Our team at American Electric Power is committed to improving our customers' lives with reliable, affordable power. We are investing $54 billion from 2025 through 2029 to enhance service for customers and support the growing energy needs of our communities. Our nearly 16,000 employees operate and ma
Grupo Cobra
Grupo Cobra es una compañía global de 80 años de experiencia en el sector de la ingeniería industrial aplicada y servicios especializados. Contamos con un equipo de 18.700 personas especializadas en todos los campos relacionados con la ingeniería, instalación y mantenimiento industrial de infraestru
Together with our subsidiaries, we deliver clean, safe, reliable and affordable energy to our 9 million customers. Our focus is doing so with service excellence. That means we are leaders who take action to meet our customers’ and communities’ needs while advancing our commitment to net zero emiss
Duke Energy, a Fortune 150 company headquartered in Charlotte, N.C., is one of America’s largest energy holding companies. The company’s electric utilities serve 8.4 million customers in North Carolina, South Carolina, Florida, Indiana, Ohio and Kentucky, and collectively own 54,800 megawatts of ene
NTPC Limited is India’s largest power generation utility with roots planted way back in 1975 to accelerate power development in India. Since then it has established itself as the dominant power major with a presence in the entire value chain of the power generation business. From fossil fuels, it ha
PT PLN (Persero)
Indonesia State Electricity Corporation PLN has a long history in electricity industry of Indonesia. As the sole provider of electricity in Indonesia, PLN is striving to increase quality of services to all Indonesian. In 1972, in accordance with Government Regulation No.17, the State-owned Electric
Neoenergia
Somos uma companhia de capital aberto com ações (NEOE3) negociadas na Bolsa de Valores de São Paulo. Parte do grupo espanhol Iberdrola, atuamos no Brasil desde 1997, e atualmente, somos uma das líderes do setor elétrico do país. Estamos presentes em 18 estados e no Distrito Federal, com negócios em
Framatome is an international leader in nuclear energy recognized for its innovative, digital and value added solutions for the global nuclear fleet. With worldwide expertise and a proven track record for reliability and performance, the company designs, services and installs components, fuel, and i
.png)
Sempra CyberSecurity News
September 24, 2025 07:00 AM
E&E News: Southeast Texas LNG expansion plan gets go-ahead
ENERGYWIRE | Developers gave a green light Tuesday to a second phase of the Port Arthur liquefied natural gas export project in southeast...
August 12, 2025 07:00 AM
Here's Why You Should Include ONE Gas Stock in Your Portfolio Now
ONE Gas, Inc. OGS is benefiting from 100% regulated operations and an expansion of its customer base. The company is also gaining from its...
August 01, 2025 07:00 AM
E&E News: California’s Newsom seeks $18B for utilities’ wildfire fund
ENERGYWIRE | California Gov. Gavin Newsom is circulating a legislative proposal to shore up a state fund for utilities that's at risk of...
July 31, 2025 07:00 AM
Sempra Infrastructure and JERA Announce Sale and Purchase Agreement for U.S. LNG from Port Arthur LNG Phase 2
HOUSTON, July 31, 2025 /PRNewswire/ — Sempra Infrastructure, a subsidiary of Sempra (NYSE: SRE), and JERA Co., Inc.…
May 30, 2025 07:00 AM
Alumni Q&A: Faisel Khan
Faisel Khan (C'98, ENG'98) is the Chief Financial Officer of Sempra Infrastructure, one of three platforms at Sempra. Sempra Infrastructure...
March 27, 2025 07:00 AM
Sempra executes on five value creation initiatives in 2025
Sempra's Chairman and CEO Jeffrey Martin's comprehensive letter to shareholders included in the 2024 Annual Report. The letter includes news...
February 25, 2025 08:00 AM
Sempra Reports 2024 Financial and Business Results
PRNewswire/ -- Sempra (NYSE: SRE) today reported full-year 2024 earnings, prepared in accordance with Generally Accepted Accounting...
January 21, 2025 08:00 AM
Cybersecurity jobs available right now: January 21, 2025
Here are the worldwide cybersecurity job openings available as of January 21, 2025, including on-site, hybrid, and remote roles.
December 11, 2024 08:00 AM
Sempra confirms strong growth outlook
Bullish on utilities, Sempra CEO, Martin discusses LNG, opportunities, value for shareholders, and $48B capital program. Learn More.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Sempra CyberSecurity History Information
Official Website of Sempra
The official website of Sempra is http://www.sempra.com.
Sempra’s AI-Generated Cybersecurity Score
According to Rankiteo, Sempra’s AI-generated cybersecurity score is 816, reflecting their Good security posture.
How many security badges does Sempra’ have ?
According to Rankiteo, Sempra currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Sempra have SOC 2 Type 1 certification ?
According to Rankiteo, Sempra is not certified under SOC 2 Type 1.
Does Sempra have SOC 2 Type 2 certification ?
According to Rankiteo, Sempra does not hold a SOC 2 Type 2 certification.
Does Sempra comply with GDPR ?
According to Rankiteo, Sempra is not listed as GDPR compliant.
Does Sempra have PCI DSS certification ?
According to Rankiteo, Sempra does not currently maintain PCI DSS compliance.
Does Sempra comply with HIPAA ?
According to Rankiteo, Sempra is not compliant with HIPAA regulations.
Does Sempra have ISO 27001 certification ?
According to Rankiteo,Sempra is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Sempra
Sempra operates primarily in the Utilities industry.
Number of Employees at Sempra
Sempra employs approximately 2,593 people worldwide.
Subsidiaries Owned by Sempra
Sempra presently has no subsidiaries across any sectors.
Sempra’s LinkedIn Followers
Sempra’s official LinkedIn profile has approximately 59,646 followers.
NAICS Classification of Sempra
Sempra is classified under the NAICS code 22, which corresponds to Utilities.
Sempra’s Presence on Crunchbase
No, Sempra does not have a profile on Crunchbase.
Sempra’s Presence on LinkedIn
Yes, Sempra maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sempra-energy.
Cybersecurity Incidents Involving Sempra
As of December 11, 2025, Rankiteo reports that Sempra has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Sempra has an estimated 4,180 peer or competitor companies worldwide.
Sempra CyberSecurity History Information
How many cyber incidents has Sempra faced ?
Total Incidents: According to Rankiteo, Sempra has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Sempra ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=sempra-energy' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
