_VOIS Company Cyber Security Posture
vodafone.com_VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value and enhancing quality and efficiency across 28 countries and operating from 8 locations: Albania, Egypt, Hungary, India, Romania, Spain, Turkey, and the UK. Established in 2006, _VOIS has evolved into a global, multi-functional organisation, focused on adding value and delivering business outcomes for Vodafone. Our strategic aim is to be Vodafoneโs partner of choice for talent, technology, and transformation. We are more than 31,700 highly skilled individuals, acting as โthe nervous systemโ of Vodafone: growing capability, skills, and data intelligence year-on-year to accelerate local markets towards a digital future. With our strategy to scale at speed we have data intelligence from across Vodafoneโs global footprint at our fingertips to help us learn, predict, and help navigate the right path. We utilise technology and data to radically simplify our business. In the face of global uncertainty and constant change we are by the side of our partners, helping them develop solutions and systems to better serve their customers, and deliver on Vodafoneโs strategy and purpose.
_VOIS Company Details
vois
16267 employees
274186
541
IT Services and IT Consulting
vodafone.com
Scan still pending
_VO_5470264
In-progress
_VOIS Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
_VOIS Global Score.png)
_VOIS Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
_VOIS Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Vodafone | Cyber Attack | 100 | 6 | 02/2022 | VOD153310222 | Link | |
Rankiteo Explanation : Attack threatening the economy of a geographical regionDescription: The customer data services of Vodafone Portugal went down recently in several areas as it was targeted in a malicious cyberattack. The 3G network was fixed in the entire county while services like 4G and 5G mobile networks, fixed voice, television, SMS, and voice/digital answering services are still offline. The company is investigating the largest cybersecurity incident with the help of local and international cyber security teams. | |||||||
| Vodafone | Breach | 75 | 4 | 01/2022 | VOD205123422 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: Vodafone realised they suffered a data breach after one of its customers recieved the personal details of 18 other Vodafone customers. The details included name, address and phone numbers for 18 customer accounts along with her e-bill. The company investigated the incident and found out that the issue was a result of an isolated technical glitch which they fixed afterwards. | |||||||
| Vodafone | Breach | 100 | 6 | 09/2022 | VOD202921222 | Link | |
Rankiteo Explanation : Attack threatening the economy of a geographical regionDescription: Vodafone Italia suffered a data breach incident after one of its commercial partners, FourB S.p.A., which operates as a reseller of telecommunicationsย services in the country, sufferedย a cyberattack. The cyberattack took place in the first week of September and resultedย in the compromise of sensitive subscriber details. The exposed information includes subscription details, identity documents with sensitive data, and contact details. Even KelvinSecurity offered to sell a collection of 295,000 files totalling 310 GB of data they allegedly stole from Vodafone Italia and advertised the cache on messaging platforms and at least oneย hacker forum. | |||||||
| Vodafone | Data Leak | 85 | 4 | 09/2013 | VOD231421123 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: An intruder hacked into aย Vodafone Group Plc (VOD)ย server inย Germany and gained access to 2 million customersโ personal details and banking information. A person stole data including names, addresses, birth dates, and bank account information. However, the hacker had no access to credit card information, passwords, PIN numbers or mobile-phone numbers. | |||||||
| Vodafone | Breach | 100 | 4 | 06/2023 | VOD93129723 | Link | |
Rankiteo Explanation : Attack with significant impact with customers data leaksDescription: Vodafone realised they suffered a data breach after that cybercriminals have broken into a sales partner and copied sensitive data. There has been a cyber issue at Vodafone's partner Vertriebswerk in which critical data leaked; this is not a phishing email; many Vodafone customers are currently receiving emails requesting them to set a new password. Name, birthday, email address, mobile phone number, address, bank information (IBAN/BIC), and customer password are all impacted, according to Vodafone in the email that is available online. Vodafone promptly reported the occurrence to the Federal Commissioner for Data Protection and Freedom of Information. | |||||||
| Vodafone | Breach | 50 | 2 | 11/2015 | VOD129261023 | Link | |
Rankiteo Explanation : Attack limited on finance or reputationDescription: Vodafone claims that hackers attempted to access consumers' accounts by using the emails and passwords they had taken from an unidentified source. At that moment, the business started a thorough investigation to get all the information needed to provide the best guidance possible to any impacted clients. The telecoms provider claims that 1,827 customer accounts were hacked by the crooks, who obtained the last four digits of the consumers' bank accounts, their names, and their mobile phone numbers. Although credit or debit card numbers or other information were not acquired, it is crucial to remember that information that is accessible by thieves may be utilized for fraudulent purposes. | |||||||
| Vodafone | Ransomware | 75 | 2 | 04/2023 | VOD41441223 | Link | |
Rankiteo Explanation : Attack limited on finance or reputationDescription: Vodafone's online sales of "Callya" prepaid cards were impacted by the purported ransomware attack on the IT service company Materna. The Vodafone website stopped selling the SIM cards, just after Materna had given the business permission to launch a "professionally elaborated cyber attack. Both businesses emphasise that there hasn't been any determination of a consumer data leak. "Restrictions on online sales and online registration of Callya products" should be lifted soon, according to Vodafone. Until then, there would be other ways to make the reservation. Many clients' systems were also impacted by the Materna security breach. There were Materna-operated check-in machine outages at several German airports. Workers were "equipped with newly installed or completely newly configured systems," which had never been linked to the impacted infrastructure. | |||||||
_VOIS Company Subsidiaries
_VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value and enhancing quality and efficiency across 28 countries and operating from 8 locations: Albania, Egypt, Hungary, India, Romania, Spain, Turkey, and the UK. Established in 2006, _VOIS has evolved into a global, multi-functional organisation, focused on adding value and delivering business outcomes for Vodafone. Our strategic aim is to be Vodafoneโs partner of choice for talent, technology, and transformation. We are more than 31,700 highly skilled individuals, acting as โthe nervous systemโ of Vodafone: growing capability, skills, and data intelligence year-on-year to accelerate local markets towards a digital future. With our strategy to scale at speed we have data intelligence from across Vodafoneโs global footprint at our fingertips to help us learn, predict, and help navigate the right path. We utilise technology and data to radically simplify our business. In the face of global uncertainty and constant change we are by the side of our partners, helping them develop solutions and systems to better serve their customers, and deliver on Vodafoneโs strategy and purpose.
Access Data Using Our API
Get company history
Rapid.png)
_VOIS Cyber Security News
Inclusivity Matters: CISO Saloni Vijayโs Insights on Women in Cybersecurity and Leadership
In the dynamic arena of cybersecurity, few figures resonate as profoundly as Saloni Vijay, the Vice President and Chief Information Security Officer (CISO)ย ...
Vodafoneโs techco _VOIS readies for April โrelaunchโ with new CEO
The new phase follows the announcement of a strategic partnership with Accenture last autumn. Gary Adey has been promoted to CEO of Vodafone'sย ...
_VOIS Similar Companies
Hexaware Technologies
At Hexaware, we're not just a global technology and business process services company; we're a community of 32,476 Hexawarians dedicated to one singular purpose: creating smiles through the power of great people and technology. With a presence in 54 offices across 28 countries, we empower enterprise
Neusoft
Neusoft provides innovative information technology โ enabled solutions and services to meet the demands arising from social transformation, to shape new life styles for individuals and to create values for the society. Focusing on software technology, Neusoft provides industrial solutions, smart con
AeC
A AeC รฉ apontada consistentemente como a lรญder brasileira na entrega de soluรงรตes de experiรชncia do cliente e gestรฃo de processos terceirizados. Servindo as principais marcas do mercado nacional, conquistou nos trรชs รบltimos anos a posiรงรฃo de Empresa do Ano de BPO pela conceituada Frost and Sullivan
SoftwareOne
SoftwareOne is a leading global software and cloud solutions provider that is redefining how companies build, buy and manage everything in the cloud. By helping clients to migrate and modernize their workloads and applications โ and in parallel, to navigate and optimize the resulting software and cl
alnamic AG (now Avanade)
Alnamic is pleased to announce that it was acquired by Avanade on April 1st, 2020. Avanade is the leading provider of innovative digital and cloud services, business solutions, and design-led experiences delivered through the power of people and the Microsoft ecosystem. Learn more at www.avanade.co
Carelon Global Solutions India
Carelon Global Solutions makes healthcare operations more practical, effective, and efficient. Our global team of more than 25K innovators drives growth, delivers exceptional support, and develops digital tools specifically for health plans, providers, and systems. Each day, our partners and experts
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
_VOIS CyberSecurity History Information
How many cyber incidents has _VOIS faced?
Total Incidents: According to Rankiteo, _VOIS has faced 7 incidents in the past.
What types of cybersecurity incidents have occurred at _VOIS?
Incident Types: The types of cybersecurity incidents that have occurred incidents Ransomware, Cyber Attack, Breach and Data Leak.
How does _VOIS detect and respond to cybersecurity incidents?
Detection and Response: The company detects and responds to cybersecurity incidents through remediation measures with Newly installed or completely newly configured systems for workers and communication strategy with Vodafone's statement about lifting restrictions soon and communication strategy with Informing affected customers and providing guidance and communication strategy with Notified customers via email to reset their passwords and remediation measures with Technical glitch fixed and third party assistance with local and international cyber security teams.
Incident Details
Can you provide details on each incident?
Incident : Ransomware Attack
Title: Ransomware Attack on Materna Affects Vodafone and German Airports
Description: Vodafone's online sales of 'Callya' prepaid cards were impacted by the purported ransomware attack on the IT service company Materna. The Vodafone website stopped selling the SIM cards, just after Materna had given the business permission to launch a 'professionally elaborated cyber attack.' Both businesses emphasise that there hasn't been any determination of a consumer data leak. 'Restrictions on online sales and online registration of Callya products' should be lifted soon, according to Vodafone. Until then, there would be other ways to make the reservation. Many clients' systems were also impacted by the Materna security breach. There were Materna-operated check-in machine outages at several German airports. Workers were 'equipped with newly installed or completely newly configured systems,' which had never been linked to the impacted infrastructure.
Type: Ransomware Attack
Incident : Data Breach
Title: Vodafone Data Breach
Description: Hackers attempted to access consumers' accounts by using the emails and passwords they had taken from an unidentified source. The telecoms provider claims that 1,827 customer accounts were hacked by the crooks, who obtained the last four digits of the consumers' bank accounts, their names, and their mobile phone numbers. Although credit or debit card numbers or other information were not acquired, it is crucial to remember that information that is accessible by thieves may be utilized for fraudulent purposes.
Type: Data Breach
Attack Vector: Stolen Credentials
Threat Actor: Unknown Hackers
Motivation: Data Theft
Incident : Data Breach
Title: Vodafone Data Breach via Vertriebswerk
Description: Vodafone experienced a data breach after cybercriminals infiltrated a sales partner, Vertriebswerk, and copied sensitive data. The breach involved the leakage of critical customer information, prompting Vodafone to notify affected customers and request password resets.
Type: Data Breach
Attack Vector: Data Breach
Threat Actor: Cybercriminals
Motivation: Unauthorized Access to Sensitive Data
Incident : Data Breach
Title: Vodafone Data Breach
Description: An intruder hacked into a Vodafone Group Plc (VOD) server in Germany and gained access to 2 million customersโ personal details and banking information.
Type: Data Breach
Attack Vector: Server Hack
Threat Actor: Unknown
Incident : Data Breach
Title: Vodafone Italia Data Breach Incident
Description: Vodafone Italia suffered a data breach incident after one of its commercial partners, FourB S.p.A., which operates as a reseller of telecommunications services in the country, suffered a cyberattack.
Type: Data Breach
Threat Actor: FourB S.p.A., Even KelvinSecurity
Incident : Data Breach
Title: Vodafone Data Breach
Description: Vodafone suffered a data breach when a customer received the personal details of 18 other Vodafone customers due to a technical glitch.
Type: Data Breach
Vulnerability Exploited: Technical Glitch
Incident : Cyberattack
Title: Vodafone Portugal Cyberattack
Description: The customer data services of Vodafone Portugal went down recently in several areas as it was targeted in a malicious cyberattack. The 3G network was fixed in the entire county while services like 4G and 5G mobile networks, fixed voice, television, SMS, and voice/digital answering services are still offline. The company is investigating the largest cybersecurity incident with the help of local and international cyber security teams.
Type: Cyberattack
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Stolen Credentials and Sales Partner (Vertriebswerk).
Impact of the Incidents
What was the impact of each incident?
Incident : Ransomware Attack VOD41441223
Systems Affected: Vodafone's online sales of 'Callya' prepaid cards, Materna-operated check-in machines at German airports
Operational Impact: Suspension of online sales and registration of Callya products, Check-in machine outages at German airports
Incident : Data Breach VOD129261023
Data Compromised: Names, Mobile Phone Numbers, Last Four Digits of Bank Account Numbers
Identity Theft Risk: High
Payment Information Risk: Low
Incident : Data Breach VOD93129723
Data Compromised: Name, Birthday, Email Address, Mobile Phone Number, Address, Bank Information (IBAN/BIC), Customer Password
Incident : Data Breach VOD231421123
Data Compromised: names, addresses, birth dates, bank account information
Incident : Data Breach VOD202921222
Data Compromised: subscription details, identity documents with sensitive data, contact details
Incident : Data Breach VOD205123422
Data Compromised: Personal details including name, address, and phone numbers
Incident : Cyberattack VOD153310222
Systems Affected: 4G and 5G mobile networks, fixed voice, television, SMS, voice/digital answering services
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personally Identifiable Information, Bank Account Information, Personally Identifiable Information, Bank Information, Personal Identifiable Information, Bank Account Information, subscription details, identity documents with sensitive data, contact details and Personal Identifiable Information.
Which entities were affected by each incident?
Incident : Ransomware Attack VOD41441223
Entity Type: Telecommunications Company
Industry: Telecommunications
Incident : Ransomware Attack VOD41441223
Entity Type: IT Service Company
Industry: Information Technology
Incident : Data Breach VOD129261023
Entity Type: Telecommunications Provider
Industry: Telecommunications
Customers Affected: 1827
Incident : Data Breach VOD93129723
Entity Type: Telecommunications Company
Industry: Telecommunications
Incident : Data Breach VOD231421123
Entity Type: Telecommunications Company
Industry: Telecommunications
Location: Germany
Customers Affected: 2 million
Incident : Data Breach VOD202921222
Entity Type: Telecommunications
Industry: Telecommunications
Location: Italy
Incident : Data Breach VOD205123422
Entity Type: Telecommunications Company
Industry: Telecommunications
Customers Affected: 18
Incident : Cyberattack VOD153310222
Entity Type: Telecommunications
Industry: Telecommunications
Location: Portugal
Response to the Incidents
What measures were taken in response to each incident?
Incident : Ransomware Attack VOD41441223
Remediation Measures: Newly installed or completely newly configured systems for workers
Communication Strategy: Vodafone's statement about lifting restrictions soon
Incident : Data Breach VOD129261023
Communication Strategy: Informing affected customers and providing guidance
Incident : Data Breach VOD93129723
Communication Strategy: Notified customers via email to reset their passwords
Incident : Data Breach VOD205123422
Remediation Measures: Technical glitch fixed
Incident : Cyberattack VOD153310222
Third Party Assistance: local and international cyber security teams
How does the company involve third-party assistance in incident response?
Third-Party Assistance: The company involves third-party assistance in incident response through local and international cyber security teams.
Data Breach Information
What type of data was compromised in each breach?
Incident : Data Breach VOD129261023
Type of Data Compromised: Personally Identifiable Information, Bank Account Information
Number of Records Exposed: 1827
Sensitivity of Data: High
Data Exfiltration: True
Personally Identifiable Information: True
Incident : Data Breach VOD93129723
Type of Data Compromised: Personally Identifiable Information, Bank Information
Sensitivity of Data: High
Data Exfiltration: True
Personally Identifiable Information: True
Incident : Data Breach VOD231421123
Type of Data Compromised: Personal Identifiable Information, Bank Account Information
Number of Records Exposed: 2 million
Sensitivity of Data: High
Personally Identifiable Information: names, addresses, birth dates
Incident : Data Breach VOD202921222
Type of Data Compromised: subscription details, identity documents with sensitive data, contact details
Number of Records Exposed: 295,000
Sensitivity of Data: High
Data Exfiltration: Yes
Personally Identifiable Information: Yes
Incident : Data Breach VOD205123422
Type of Data Compromised: Personal Identifiable Information
Number of Records Exposed: 18
Sensitivity of Data: Medium
Personally Identifiable Information: Name, Address, Phone Numbers
What measures does the company take to prevent data exfiltration?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Newly installed or completely newly configured systems for workers, Technical glitch fixed.
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident?
Incident : Data Breach VOD93129723
Regulatory Notifications: Reported to the Federal Commissioner for Data Protection and Freedom of Information
References
Where can I find more information about each incident?
Incident : Data Breach VOD93129723
Source: Online Email Notification
Where can stakeholders find additional resources on cybersecurity best practices?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Online Email Notification.
Investigation Status
What is the current status of the investigation for each incident?
Incident : Data Breach VOD129261023
Investigation Status: Ongoing
Incident : Cyberattack VOD153310222
Investigation Status: Ongoing
How does the company communicate the status of incident investigations to stakeholders?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through were Vodafone's statement about lifting restrictions soon, Informing affected customers and providing guidance and Notified customers via email to reset their passwords.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident?
Incident : Data Breach VOD129261023
Customer Advisories: Guidance provided to affected customers
Incident : Data Breach VOD93129723
Customer Advisories: Emails requesting password resets
What advisories does the company provide to stakeholders and customers following an incident?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Guidance provided to affected customers and Emails requesting password resets.
Initial Access Broker
How did the initial access broker gain entry for each incident?
Incident : Data Breach VOD129261023
Entry Point: Stolen Credentials
Incident : Data Breach VOD93129723
Entry Point: Sales Partner (Vertriebswerk)
Incident : Data Breach VOD202921222
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident?
Incident : Data Breach VOD205123422
Root Causes: Technical Glitch
Corrective Actions: Technical glitch fixed
What is the company's process for conducting post-incident analysis?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as local and international cyber security teams.
What corrective actions has the company taken based on post-incident analysis?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Technical glitch fixed.
Additional Questions
General Information
Who was the attacking group in the last incident?
Last Attacking Group: The attacking group in the last incident were an Unknown Hackers, Cybercriminals, Unknown, FourB S.p.A. and Even KelvinSecurity.
Impact of the Incidents
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, Mobile Phone Numbers, Last Four Digits of Bank Account Numbers, Name, Birthday, Email Address, Mobile Phone Number, Address, Bank Information (IBAN/BIC), Customer Password, names, addresses, birth dates, bank account information, subscription details, identity documents with sensitive data, contact details, Personal details including name, address and and phone numbers.
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident were Vodafone's online sales of 'Callya' prepaid cards, Materna-operated check-in machines at German airports and 4G and 5G mobile networks, fixed voice, television, SMS, voice/digital answering services.
Response to the Incidents
What third-party assistance was involved in the most recent incident?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was local and international cyber security teams.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Names, Mobile Phone Numbers, Last Four Digits of Bank Account Numbers, Name, Birthday, Email Address, Mobile Phone Number, Address, Bank Information (IBAN/BIC), Customer Password, names, addresses, birth dates, bank account information, subscription details, identity documents with sensitive data, contact details, Personal details including name, address and and phone numbers.
What was the number of records exposed in the most significant breach?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 2.3M.
References
What is the most recent source of information about an incident?
Most Recent Source: The most recent source of information about an incident is Online Email Notification.
Investigation Status
What is the current status of the most recent investigation?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
Stakeholder and Customer Advisories
What was the most recent customer advisory issued?
Most Recent Customer Advisory: The most recent customer advisory issued was were an Guidance provided to affected customers and Emails requesting password resets.
Initial Access Broker
What was the most recent entry point used by an initial access broker?
Most Recent Entry Point: The most recent entry point used by an initial access broker were an Sales Partner (Vertriebswerk) and Stolen Credentials.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
