UKG
Company Details
Linkedin ID:
ukg
Website:
Employees number:
16,048
Number of followers:
305,370
NAICS:
5112
Industry Type:
Homepage:
ukg.com
IP Addresses:
0
Company ID:
UKG_2936607
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
UKG Vendor Cyber Rating & Cyber Score
ukg.comUKG is the Workforce Operating Platform that puts workforce understanding to work. With the world's largest collection of workforce insights, and people-first AI, our ability to reveal unseen ways to build trust, amplify productivity, and empower talent, is unmatched. It's this expertise that equips our customers with the intelligence to solve any challenge in any industry — because great organizations know their workforce is their competitive edge.
UKG A.I CyberSecurity Scoring
UKG Risk Score (AI oriented)Between 650 and 699
UKG
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
UKG Global Score (TPRM)XXXX
UKG
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
UKG Company CyberSecurity News & History
Past Incidents
3
Attack Types
2
UKG Inc.
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Office of the Attorney General reported that UKG Inc. experienced an inadvertent disclosure of personal information on October 30, 2023, affecting 45,966 individuals, with one resident reported specifically. The breach involved exposed information such as Social Security numbers, and identity theft protection services were offered.
UKG Inc.
Ransomware
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: On February 3, 2022, the California Attorney General reported a ransomware attack affecting UKG Inc., which compromised personal information of individuals associated with PUMA North America, Inc. The breach occurred on December 11, 2021, but specific details regarding the number of individuals affected and the types of personal information involved remain unknown.
UKG Kronos: State Street Says Kronos Data Breach Cost It $27.6M
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: UKG Kronos Data Breach Costs State Street Bank $27.6M in Legal and Operational Fallout In a prolonged fallout from a 2021 cyberattack, human resources software provider UKG Kronos has faced criticism for its handling of a data breach that disrupted operations for State Street Bank and exposed the financial institution to legal risks across multiple jurisdictions. The incident, which left State Street without critical access to payroll and HR systems, has now resulted in reported losses totaling $27.6 million, according to filings by the bank. The breach, attributed to a ransomware attack on Kronos’ cloud-based workforce management platform, occurred in December 2021 and caused widespread outages for clients relying on the software. State Street, a global financial services firm, was among the hardest hit, experiencing prolonged system downtime that hindered payroll processing, timekeeping, and other HR functions. The disruption triggered regulatory scrutiny and potential compliance violations in regions where the bank operates, compounding financial and reputational damage. While UKG Kronos has since restored services, the incident underscores the cascading consequences of third-party cybersecurity failures in critical infrastructure. The $27.6 million figure reflects direct costs tied to remediation, legal exposure, and operational recovery, though the full scope of long-term impacts including potential litigation and regulatory penalties remains unclear. The case highlights ongoing vulnerabilities in enterprise software supply chains, particularly for organizations reliant on cloud-based HR and payroll systems.
UKG Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for UKG
Incidents vs Software Development Industry Average (This Year)
No incidents recorded for UKG in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for UKG in 2026.
Incident Types UKG vs Software Development Industry Avg (This Year)
No incidents recorded for UKG in 2026.
Incident History — UKG (X = Date, Y = Severity)
UKG cyber incidents detection timeline including parent company and subsidiaries
UKG Company Subsidiaries
UKG is the Workforce Operating Platform that puts workforce understanding to work. With the world's largest collection of workforce insights, and people-first AI, our ability to reveal unseen ways to build trust, amplify productivity, and empower talent, is unmatched. It's this expertise that equips our customers with the intelligence to solve any challenge in any industry — because great organizations know their workforce is their competitive edge.
Loading...
UKG Similar Companies
PedidosYa
We’re the delivery market leader in Latin America. Our platform connects over 77.000 restaurants, supermarkets, pharmacies and stores with millions of users. Nowadays we operate in more than 500 cities in Latinamerica. And we are now over 3.400 employees. PedidosYa is available for iOS, Android and
Olá, somos a TOTVS! A maior empresa de tecnologia do Brasil. 🤓 Líder absoluta em sistemas e plataformas para empresas, a TOTVS possui mais de 70 mil clientes. Indo muito além do ERP, oferece tecnologia completa para digitalização dos negócios por meio de 3 unidades de negócio: - Gestão: ERPs, sol
Juniper Networks
Juniper Networks is leading the revolution in networking, making it one of the most exciting technology companies in Silicon Valley today. Since being founded by Pradeep Sindhu, Dennis Ferguson, and Bjorn Liencres nearly 20 years ago, Juniper’s sole mission has been to create innovative products and
PayPal
We're championing possibilities for all by making money fast, easy, and more enjoyable. Our hope is to unlock opportunities for people in their everyday lives and empower the millions of people and businesses around the world who trust, rely, and use PayPal every day. For support, visit the PayPal
Walmart Global Tech
Walmart has a long history of transforming retail and using technology to deliver innovations that improve how the world shops and empower our 2.1 million associates. It began with Sam Walton and continues today with Global Tech associates working together to power Walmart and lead the next retail d
Expedia Group
At Expedia Group (NASDAQ: EXPE), we believe travel is a force for good – it opens minds, builds connections, and bridges divides. We create transformative tech that enables unforgettable experiences for all travelers, everywhere. Our trusted family of brands are known and loved by millions, and we p
Shopify is a leading global commerce company, providing trusted tools to start, grow, market, and manage a retail business of any size. Shopify makes commerce better for everyone with a platform and services that are engineered for reliability, while delivering a better shopping experience for consu
GoTo is the largest technology group in Indonesia, combining on-demand and financial services through the Gojek and GoTo Financial brands. It is the first platform in Southeast Asia to host these two essential use cases in one ecosystem, capturing a majority of Indonesian consumer household expendit
Epic
Join us in our mission to help the world get well, help the world stay well, and help future generations be healthier. We hire smart and motivated people from all academic majors to code, test, and implement healthcare software that hundreds of millions of patients and doctors rely on to improve ca
.png)
UKG CyberSecurity News
March 28, 2026 10:44 AM
BostInno - 🗳️ Vote in Inno Madness round two | 💻 UKG announces layoffs
Featured opportunity: The Boston Impact Initiative and Impact Finance Center are teaming up for a series of events to support emerging fund managers.
March 19, 2026 07:00 AM
When machines judge without knowing: AI, augmentation and the limits of automated cybersecurity decisions
While AI can augment privacy and cybersecurity work, these authors argue it cannot replicate human judgement or governance, making human...
February 03, 2026 08:00 AM
Super Bowl Safeguards: Managing Workplace-Related Risks Before + After the Big Game
Takeaways. Super Bowl celebration activities create multiple attendance, productivity and social behavioral challenges for workplaces before...
January 14, 2026 08:00 AM
Anonymization: The unicorn of privacy engineering
Noemie Weinbaum, Flora Garcia and Roy Kamp explore the confusion around anonymization, pseudonymization and deidentification and explain key...
January 08, 2026 08:00 AM
UKG Receives Multiple Best Place To Work Honors In 2026
UKG receives seven Best Place to Work honors from Forbes and Computerworld, recognizing its employee culture, benefits, and workplace...
January 06, 2026 08:00 AM
UKG Ranked No. 1 Software Provider for Tech Workers by Computerworld, Earns Six Separate Forbes Best Place to Work Honors
UKG, a leading global AI platform unifying HR, pay, and workforce management, was recognized with seven different best place to work honors...
December 22, 2025 08:00 AM
A comprehensive list of 2025 tech layoffs
A complete list of all the known layoffs in tech, from Big Tech to startups, broken down by month throughout 2024 and 2025.
October 10, 2025 07:00 AM
Cybersecurity experts gather in Kilkenny for CINC 2025
Cybersecurity experts from Ireland and abroad gathered in Kilkenny to discuss AI security, quantum readiness and the growth of the industry.
March 04, 2025 08:00 AM
11 companies you’ll see at Ireland’s Cybersecurity Career Fair
Cyber Ireland in conjunction with Cyber Futures is hosting Ireland's first career fair dedicated specifically to cybersecurity.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
UKG CyberSecurity History Information
Official Website of UKG
The official website of UKG is http://ukg.com.
UKG’s AI-Generated Cybersecurity Score
According to Rankiteo, UKG’s AI-generated cybersecurity score is 663, reflecting their Weak security posture.
How many security badges does UKG’ have ?
According to Rankiteo, UKG currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has UKG been affected by any supply chain cyber incidents ?
According to Rankiteo, UKG has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does UKG have SOC 2 Type 1 certification ?
According to Rankiteo, UKG is not certified under SOC 2 Type 1.
Does UKG have SOC 2 Type 2 certification ?
According to Rankiteo, UKG does not hold a SOC 2 Type 2 certification.
Does UKG comply with GDPR ?
According to Rankiteo, UKG is not listed as GDPR compliant.
Does UKG have PCI DSS certification ?
According to Rankiteo, UKG does not currently maintain PCI DSS compliance.
Does UKG comply with HIPAA ?
According to Rankiteo, UKG is not compliant with HIPAA regulations.
Does UKG have ISO 27001 certification ?
According to Rankiteo,UKG is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of UKG
UKG operates primarily in the Software Development industry.
Number of Employees at UKG
UKG employs approximately 16,048 people worldwide.
Subsidiaries Owned by UKG
UKG presently has no subsidiaries across any sectors.
UKG’s LinkedIn Followers
UKG’s official LinkedIn profile has approximately 305,370 followers.
NAICS Classification of UKG
UKG is classified under the NAICS code 5112, which corresponds to Software Publishers.
UKG’s Presence on Crunchbase
No, UKG does not have a profile on Crunchbase.
UKG’s Presence on LinkedIn
Yes, UKG maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/ukg.
Cybersecurity Incidents Involving UKG
As of April 02, 2026, Rankiteo reports that UKG has experienced 3 cybersecurity incidents.
Number of Peer and Competitor Companies
UKG has an estimated 29,308 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at UKG ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware and Breach.
What was the total financial impact of these incidents on UKG ?
Total Financial Loss: The total financial loss from these incidents is estimated to be $27.60 million.
How does UKG detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an remediation measures with services restored by ukg kronos..
Incident Details
Can you provide details on each incident ?
Title: UKG Inc. Data Breach
Description: The Maine Office of the Attorney General reported that UKG Inc. experienced an inadvertent disclosure of personal information on October 30, 2023, affecting 45,966 individuals, with one resident reported specifically. The breach involved exposed information such as Social Security numbers, and identity theft protection services were offered.
Date Detected: 2023-10-30
Type: Data Breach
Title: Ransomware Attack on UKG Inc. Affecting PUMA North America, Inc.
Description: A ransomware attack on UKG Inc. compromised personal information of individuals associated with PUMA North America, Inc.
Date Detected: 2021-12-11
Date Publicly Disclosed: 2022-02-03
Type: Ransomware
Title: UKG Kronos Data Breach Costs State Street Bank $27.6M in Legal and Operational Fallout
Description: In a prolonged fallout from a 2021 cyberattack, human resources software provider UKG Kronos faced criticism for its handling of a data breach that disrupted operations for State Street Bank and exposed the financial institution to legal risks across multiple jurisdictions. The incident left State Street without critical access to payroll and HR systems, resulting in reported losses totaling $27.6 million.
Date Detected: 2021-12
Type: Ransomware
Attack Vector: Third-party software supply chain
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach UKG921072725
Data Compromised: Social security numbers
Identity Theft Risk: High
Incident : Ransomware UKG550080525
Data Compromised: Personal information
Incident : Ransomware UKG1770674656
Financial Loss: $27.6 million
Systems Affected: Payroll and HR systems
Downtime: Prolonged
Operational Impact: Hindered payroll processing, timekeeping, and other HR functions
Brand Reputation Impact: Reputational damage
Legal Liabilities: Potential compliance violations and litigation
What is the average financial loss per incident ?
Average Financial Loss: The average financial loss per incident is $9.20 million.
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Social Security Numbers, , Personal Information and .
Which entities were affected by each incident ?
Incident : Data Breach UKG921072725
Entity Name: UKG Inc.
Entity Type: Company
Customers Affected: 45966
Incident : Ransomware UKG550080525
Entity Name: PUMA North America, Inc.
Entity Type: Company
Industry: Retail
Location: North America
Incident : Ransomware UKG1770674656
Entity Name: State Street Bank
Entity Type: Financial services firm
Industry: Banking/Finance
Location: Global
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Ransomware UKG1770674656
Remediation Measures: Services restored by UKG Kronos
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach UKG921072725
Type of Data Compromised: Social security numbers
Number of Records Exposed: 45966
Sensitivity of Data: High
Personally Identifiable Information: Yes
Incident : Ransomware UKG550080525
Type of Data Compromised: Personal information
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Services restored by UKG Kronos.
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Ransomware UKG1770674656
Regulations Violated: Potential compliance violations in multiple jurisdictions
Legal Actions: Potential litigation
How does the company ensure compliance with regulatory requirements ?
Ensuring Regulatory Compliance: The company ensures compliance with regulatory requirements through Potential litigation.
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Ransomware UKG1770674656
Lessons Learned: Ongoing vulnerabilities in enterprise software supply chains, particularly for organizations reliant on cloud-based HR and payroll systems.
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Ongoing vulnerabilities in enterprise software supply chains, particularly for organizations reliant on cloud-based HR and payroll systems.
References
Where can I find more information about each incident ?
Incident : Data Breach UKG921072725
Source: Maine Office of the Attorney General
Incident : Ransomware UKG1770674656
Source: Bank filings
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney General, and Source: California Attorney GeneralDate Accessed: 2022-02-03, and Source: Bank filings.
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Ransomware UKG1770674656
Root Causes: Third-party cybersecurity failure in critical infrastructure
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2023-10-30.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-02-03.
Impact of the Incidents
What was the highest financial loss from an incident ?
Highest Financial Loss: The highest financial loss from an incident was $27.6 million.
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Social Security numbers, , Personal Information and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Social Security numbers and Personal Information.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 525.0.
Regulatory Compliance
What was the most significant legal action taken for a regulatory violation ?
Most Significant Legal Action: The most significant legal action taken for a regulatory violation was Potential litigation.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Ongoing vulnerabilities in enterprise software supply chains, particularly for organizations reliant on cloud-based HR and payroll systems.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Maine Office of the Attorney General, California Attorney General and Bank filings.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A security flaw has been discovered in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /manage_user.php of the component Parameter Handler. Performing a manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was identified in Axiomatic Bento4 up to 1.6.0-641. Affected is the function AP4_BitReader::SkipBits of the file Ap4Dac4Atom.cpp of the component DSI v1 Parser. Such manipulation of the argument n_presentations leads to heap-based buffer overflow. The attack needs to be performed locally. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.
Risk Information
cvss2
Base: 4.3
Severity: LOW
AV:L/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was determined in Axiomatic Bento4 up to 1.6.0-641. This impacts the function AP4_BitReader::ReadCache of the file Ap4Dac4Atom.cpp of the component MP4 File Parser. This manipulation causes heap-based buffer overflow. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
Risk Information
cvss2
Base: 4.3
Severity: LOW
AV:L/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a heap-buffer-overflow (HBO) in icAnsiToUtf8() in the XML conversion path. The issue is triggered by a crafted ICC profile which causes icAnsiToUtf8(std::string&, char const*) to treat an input buffer as a C-string and call operations that rely on strlen()/null-termination. AddressSanitizer reports an out-of-bounds READ of size 115 past a 114-byte heap allocation, with the failure observed while running the iccToXml tool. This issue has been patched in version 2.3.1.6.
Risk Information
cvss3
Base: 6.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a stack-buffer-overflow (SBO) in CIccTagFixedNum<>::GetValues() and a related bug chain. The primary crash is an AddressSanitizer-reported WRITE of size 4 that overflows a 4-byte stack variable (rv) via the call chain CIccTagFixedNum::GetValues() -> CIccTagStruct::GetElemNumberValue(). This issue has been patched in version 2.3.1.6.
Risk Information
cvss3
Base: 6.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
- https://github.com/InternationalColorConsortium/iccDEV/issues/696
- https://github.com/InternationalColorConsortium/iccDEV/issues/697
- https://github.com/InternationalColorConsortium/iccDEV/issues/698
- https://github.com/InternationalColorConsortium/iccDEV/issues/703
- https://github.com/InternationalColorConsortium/iccDEV/pull/739
- https://github.com/InternationalColorConsortium/iccDEV/security/advisories/GHSA-983c-rgh5-4982
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=ukg' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
