PRIA Logo
← All companies

NTCT · CIK 0001078075

What NetScout Systems, Inc. told the SEC could break it.

2 self-disclosed vulnerabilities, pulled from its own filings — each in the company’s words, with the source. This is the risk register almost nobody reads.

A limited set so far — we surface every cited disclosure we’ve extracted for NTCT. More may follow as additional filings are processed.

In its own words

What could break it.

Sole-source dependency

  • Sole/single-source components — network interface cards and proprietary hardware — from suppliers in geopolitically-uncertain locations; AI-data-center-driven hardware shortagesmedium

    NetScout's instruments require specific hardware components — notably network interface cards and proprietary hardware — that are obtained from separate sole-source suppliers or a limited group of suppliers, some with operations in locations of geopolitical uncertainty. While it has identified qualifiable alternate suppliers for certain single-sourced parts (e.g., network interface cards), its reliance on sole/limited suppliers means a shortage, capacity constraint, or geopolitical disruption could delay product assembly. It also flags that hardware shortages caused by the rapid build-out of AI data centers have led to (and could continue to lead to) component delays, shortages and longer lead times. A sole-source/limited-supplier hardware-component risk amplified by current AI-driven supply-chain strain. Suppliers are unnamed, so this registers as a risk.

    Specific components that are necessary for the hardware assembly of our instruments are obtained from separate sole source suppliers or a limited group of suppliers, including some with operations in locations with geopolitical uncertainty. These components include our network interface cards and proprietary hardware.

    SEC filing →As of 2026

Regulatory & policy

  • Export controls (EAR), OFAC economic/trade sanctions, and government-contracting laws restrict sales of its cybersecurity/network products in certain countries and to certain personslow

    Because NetScout sells service-assurance and cybersecurity (incl. DDoS-protection) products globally to service providers, enterprises and government entities — with ~45% of revenue from outside the U.S. — it is subject to laws that govern or restrict its business in certain countries and with certain persons, including the U.S. Commerce Department's Export Administration Regulations (EAR) and OFAC economic/trade sanctions, plus FCPA/anti-bribery and government-contracting laws. These export-control and sanctions regimes can limit which customers and geographies it may sell to (a real constraint for network-visibility/cyber tooling), and violations could harm its business. A trade/export-control regulatory exposure tied to its global, partly government-facing sales.

    global laws and regulations that govern or restrict our business and activities in certain countries and with certain persons, including the U.S. Commerce Department's Export Administration Regulations and economic and trade sanctions regulations maintained by the Office of Foreign Asset Control (OFAC)

    SEC filing →As of 202647 others exposed to Export Controls →

The hidden graph

Who it depends on, and who depends on it.

Relationships surfaced from filings — including ones disclosed by the other side, which is how the non-obvious ones come to light.

Its customers

  • Verizon

    During the fiscal year ended March 31, 2023, one direct customer, Verizon, accounted for more than 10% of our total revenue, while no indirect channel partners accounted for more than 10% of our total revenue.

    Cited →

In the MyPRIA app, this is checked against the companies you actually own.

← World Watch