COOEY // HUBcompliance · community · intelligence

FAIL // hall of shame

The security failures of FedRAMP vendors, their competitors, and the hardware they ship — ranked by zero-days, remote code execution, active exploitation, sheer embarrassment, and False-Claims-Act recoveries. A dex.sgc.ai RAG curator writes each event's summary and scores how avoidable the failure was; every name links to its dossier.

722
on the board
1
zero-days
235
RCEs
101
exploited
544
assessed
$82M
FCA recovered
Overview☣ Most embarrassing◐ Most zero-days⚡ Most RCEs⌖ Most exploited⚖ Biggest FCA recoveries
All playersCompaniesVendorsProducts / HW ◧ FedRAMP only

⚖ Biggest FCA recoveries

Dollars recovered from contractors who misrepresented their cybersecurity — DOJ Civil Cyber-Fraud settlements.

  1. 01
    Hill ASC Inc. company
    shame 40
    $14.75M
  2. 02
    Associates company
    shame 40
    $11.30M
  3. 03
    Guidehouse Inc. company
    shame 40
    $11.30M
  4. 04
    Nan McKay company
    shame 40
    $11.30M
  5. 05
    shame 40
    $11.25M
  6. 06
    Centene company
    shame 40
    $11.25M
  7. 07
    Illumina Inc. company
    shame 40
    $9.80M
  8. 08
    shame 40
    $9.00M
  9. 09
    RTX company
    shame 40
    $8.40M
  10. 10
    shame 40
    $8.40M
  11. 11
    Nightwing Group company
    shame 40
    $8.40M
  12. 12
    MORSECORP Inc. company
    shame 40
    $4.60M
  13. 13 $4.09M
  14. 14
    shame 40
    $2.70M
  15. 15
    shame 40
    $1.75M
  16. 16
    shame 40
    $1.75M
  17. 17 $1.25M
  18. 18 $930,000
  19. 19 $875,000
  20. 20
    shame 40
    $421,234
  21. 21 $306,722
  22. 22 $293,771
◄ prev page 1 / 1 next ► · 22 total