Kronos Incorporated Company Cyber Security Posture
ukg.comBuilt from the merger of Ultimate Software & Kronos Inc, we are now UKG. We provide global HCM, payroll and workforce management solutions. UKG is an Equal Opportunity Employer.
Kronos Incorporated Company Details
kronos
2384 employees
100145.0
511
Software Development
ukg.com
Scan still pending
KRO_3012436
In-progress
Kronos Incorporated Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
Kronos Incorporated Global Score.png)
Kronos Incorporated Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
Kronos Incorporated Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Kronos Incorporated | Ransomware | 100 | 6 | 12/2021 | KRO152130322 | Link | |
Rankiteo Explanation : Attack threatening the economy of a geographical regionDescription: A well-known payroll company Kronos was hit by a ransomware attack in December 2021. The attackers broke into a system, encrypted the data, and kept its payroll software offline leading to a delay in the paychecks of hundreds of businesses' staff. The staff details of the companies were compromised in the attack and the attackers demanded a huge sum of money as a ransom. | |||||||
| Kronos | Ransomware | 50 | 1 | 1/2022 | KRO556072625 | Link | |
Rankiteo Explanation : Attack without any consequencesDescription: The Colorado Attorney General's Office reported a data breach involving Kronos, a payroll software vendor used by Vail Health, on January 14, 2022. The breach was due to a ransomware attack, but it is currently unknown whether any personal information was accessed or compromised. The types of information potentially involved include names, addresses, dates of birth, social security numbers, and bank account information. | |||||||
Kronos Incorporated Company Subsidiaries
Built from the merger of Ultimate Software & Kronos Inc, we are now UKG. We provide global HCM, payroll and workforce management solutions. UKG is an Equal Opportunity Employer.
Access Data Using Our API
Get company history
Rapid.png)
Kronos Incorporated Cyber Security News
15 of the Biggest Ransomware Attacks in History
Ransomware group Lapsus$ launched one of the world's most conspicuous ransomware attacks when it struck Impresa, Portugal's largest mediaย ...
11 companies youโll see at Irelandโs Cybersecurity Career Fair
Those looking to begin a career in cybersecurity will meet several potential employers at Ireland's first dedicated career fair for cybersecurity.
Kronos ransomware attack raises questions of vendor liability
The December ransomware attack against workforce management company Ultimate Kronos Group hindered the ability of its customers to processย ...
Kronos ransomware attack impacting hospitals and health systems
A ransomware attack has impacted several Ultimate Kronos Group services that hospitals and other organizations use to manage their employeesย ...
UKG Kronos data breach $6M class action settlement
According to the class action lawsuit, UKG failed to implement reasonable cybersecurity measures that would have prevented a ransomware attack on its Kronosย ...
Hackers disrupt payroll for thousands of employers โ including hospitals
Kronos hack will likely affect how employers issue paychecks and track hours. Now that the disruption has proven to be major, some employers areย ...
Cyber Attacks Strike Three Hawaii Government Systems
The apparent ransomware attack that infiltrated and shut down the timekeeping services for employees at the Board of Water Supply andย ...
Marcus Hutchins: cybersecurity experts rally around arrested WannaCry 'hero'
Marcus Hutchins, who found a 'kill switch' for the WannaCry ransomeware that wreaked.
UKG Hack Disrupts Scheduling and Payroll for Thousands of Employers
โA ransomware attack on a major HR technology provider is creating chaos around attendance, scheduling and payroll for thousands ofย ...
Kronos Incorporated Similar Companies
The Facebook company is now Meta. Meta builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the way people connect. Apps like Messenger, Instagram and WhatsApp further empowered billions around the world. Now, Meta is moving
PedidosYa
Weโre ย the delivery market leader in Latin America. Our platform connects over 77.000 restaurants, supermarkets, pharmacies and stores with millions of users. Nowadays we operate in more than 500 cities in Latinamerica. And we are now over 3.400 employees. PedidosYa is available for iOS, Android and
Alibaba Group
Alibaba Groupโs mission is to make it easy to do business anywhere. The company aims to build the future infrastructure of commerce. It envisions its customers will meet, work and live at Alibaba and that it will be a good company lasting for 102 years. We pledged to reach carbon neutrality by 2030
Expedia Group
At Expedia Group (NASDAQ: EXPE), we believe travel is a force for good โ it opens minds, builds connections, and bridges divides. We create transformative tech that enables unforgettable experiences for all travelers, everywhere. Our trusted family of brands are known and loved by millions, and we p
Workday
Workday is a leading provider of enterprise cloud applications for finance and human resources, helping customers adapt and thrive in a changing world. Workday applications for financial management, human resources, planning, spend management, and analytics are built with artificial intelligence and
JD.COM
JD.com, also known as Jingdong, is a leading e-commerce company transferring to be a technology and service enterprise with supply chain at its core. JD.comโs business has expanded across retail, technology, logistics, health, insurance, property development, industrials, private label, and internat
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Kronos Incorporated CyberSecurity History Information
How many cyber incidents has Kronos Incorporated faced?
Total Incidents: According to Rankiteo, Kronos Incorporated has faced 2 incidents in the past.
What types of cybersecurity incidents have occurred at Kronos Incorporated?
Incident Types: The types of cybersecurity incidents that have occurred incidents Ransomware.
Incident Details
Can you provide details on each incident?
Incident : Data Breach
Title: Data Breach at Kronos Affecting Vail Health
Description: The Colorado Attorney General's Office reported a data breach involving Kronos, a payroll software vendor used by Vail Health, on January 14, 2022. The breach was due to a ransomware attack, but it is currently unknown whether any personal information was accessed or compromised. The types of information potentially involved include names, addresses, dates of birth, social security numbers, and bank account information.
Date Detected: 2022-01-14
Date Publicly Disclosed: 2022-01-14
Type: Data Breach
Attack Vector: Ransomware
Incident : Ransomware
Title: Ransomware Attack on Kronos
Description: A well-known payroll company Kronos was hit by a ransomware attack in December 2021. The attackers broke into a system, encrypted the data, and kept its payroll software offline leading to a delay in the paychecks of hundreds of businesses' staff. The staff details of the companies were compromised in the attack and the attackers demanded a huge sum of money as a ransom.
Date Detected: December 2021
Type: Ransomware
Motivation: Financial Gain
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident?
Incident : Data Breach KRO556072625
Data Compromised: names, addresses, dates of birth, social security numbers, bank account information
Incident : Ransomware KRO152130322
Data Compromised: Staff details of companies
Systems Affected: Payroll software
Downtime: Delay in paychecks of hundreds of businesses' staff
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are names, addresses, dates of birth, social security numbers, bank account information and Staff details.
Which entities were affected by each incident?
Incident : Ransomware KRO152130322
Entity Type: Payroll Company
Industry: Payroll Services
Customers Affected: Hundreds of businesses
Data Breach Information
What type of data was compromised in each breach?
Incident : Data Breach KRO556072625
Type of Data Compromised: names, addresses, dates of birth, social security numbers, bank account information
Personally Identifiable Information: True
Incident : Ransomware KRO152130322
Type of Data Compromised: Staff details
Ransomware Information
Was ransomware involved in any of the incidents?
References
Where can I find more information about each incident?
Incident : Data Breach KRO556072625
Source: Colorado Attorney General's Office
Date Accessed: 2022-01-14
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Colorado Attorney General's OfficeDate Accessed: 2022-01-14.
Additional Questions
General Information
What was the amount of the last ransom demanded?
Last Ransom Demanded: The amount of the last ransom demanded was Huge sum of money.
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on 2022-01-14.
What was the most recent incident publicly disclosed?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-01-14.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were names, addresses, dates of birth, social security numbers, bank account information and Staff details of companies.
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident was Payroll software.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were names, addresses, dates of birth, social security numbers, bank account information and Staff details of companies.
Ransomware Information
What was the highest ransom demanded in a ransomware incident?
Highest Ransom Demanded: The highest ransom demanded in a ransomware incident was Huge sum of money.
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident is Colorado Attorney General's Office.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
