VOIS
Company Details
Linkedin ID:
vois
Employees number:
20,303
Number of followers:
459,249
NAICS:
5415
Industry Type:
Homepage:
vodafone.com
IP Addresses:
0
Company ID:
VOI_5470264
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
VOIS Vendor Cyber Rating & Cyber Score
vodafone.comVOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation. As the largest shared services organisation in the global telco industry, our portfolio of next-generation solutions and services are designed in partnership with customers across Vodafone Group, local markets, and partner markets to simplify and drive growth. We are pioneering a new Partnership model for the Telco industry, where the sharing of ideas, innovation, platforms and services will unlock opportunities for our people and value for our customers. With our strategic partner Accenture, we work alongside our Vodafone customers, other Telco and tech companies to drive transformation, meet the challenges of our industry and ensure we stay relevant and resilient. This partnership is a unique, industry-first model which brings together the best of in-house and 3rd party capability. We deliver value and results at scale by leveraging technology, data and our talented international team of 30K professionals in the following services: Technology, Business, B2B, Corporate Services, Customer Care. Our commercial model creates clear, benchmarked and competitively-priced services so that we can offer guaranteed outcomes for customers with flexibility and optionality. Bringing together our combined strengths with our strategic partner Accenture our strategy is to: Commercialise: Create cost transparency and foster trust and growth for our customers Re-platform: To simplify, streamline and scale our business Extend beyond our borders: deepening our relationships, growing our services and expanding our customer base across new customers & new geographies We work with customers across 28 countries from 10 VOIS locations: Albania, Egypt, Hungary, India, Romania, Spain, Turkey, UK, Germany, Ireland, and with a network of teams in Czech Republic, Italy, Greece, and Portugal.
VOIS A.I CyberSecurity Scoring
VOIS Risk Score (AI oriented)Between 750 and 799
VOIS
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
VOIS Global Score (TPRM)XXXX
VOIS
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
VOIS Company CyberSecurity News & History
Past Incidents
7
Attack Types
4
Vodafone
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Vodafone realised they suffered a data breach after that cybercriminals have broken into a sales partner and copied sensitive data. There has been a cyber issue at Vodafone's partner Vertriebswerk in which critical data leaked; this is not a phishing email; many Vodafone customers are currently receiving emails requesting them to set a new password. Name, birthday, email address, mobile phone number, address, bank information (IBAN/BIC), and customer password are all impacted, according to Vodafone in the email that is available online. Vodafone promptly reported the occurrence to the Federal Commissioner for Data Protection and Freedom of Information.
Vodafone
Ransomware
Rankiteo Explanation
Attack limited on finance or reputation
Description: Vodafone's online sales of "Callya" prepaid cards were impacted by the purported ransomware attack on the IT service company Materna. The Vodafone website stopped selling the SIM cards, just after Materna had given the business permission to launch a "professionally elaborated cyber attack. Both businesses emphasise that there hasn't been any determination of a consumer data leak. "Restrictions on online sales and online registration of Callya products" should be lifted soon, according to Vodafone. Until then, there would be other ways to make the reservation. Many clients' systems were also impacted by the Materna security breach. There were Materna-operated check-in machine outages at several German airports. Workers were "equipped with newly installed or completely newly configured systems," which had never been linked to the impacted infrastructure.
Vodafone
Breach
Rankiteo Explanation
Attack threatening the economy of a geographical region
Description: Vodafone Italia suffered a data breach incident after one of its commercial partners, FourB S.p.A., which operates as a reseller of telecommunications services in the country, suffered a cyberattack. The cyberattack took place in the first week of September and resulted in the compromise of sensitive subscriber details. The exposed information includes subscription details, identity documents with sensitive data, and contact details. Even KelvinSecurity offered to sell a collection of 295,000 files totalling 310 GB of data they allegedly stole from Vodafone Italia and advertised the cache on messaging platforms and at least one hacker forum.
Vodafone
Cyber Attack
Rankiteo Explanation
Attack threatening the economy of a geographical region
Description: The customer data services of Vodafone Portugal went down recently in several areas as it was targeted in a malicious cyberattack. The 3G network was fixed in the entire county while services like 4G and 5G mobile networks, fixed voice, television, SMS, and voice/digital answering services are still offline. The company is investigating the largest cybersecurity incident with the help of local and international cyber security teams.
Vodafone
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Vodafone realised they suffered a data breach after one of its customers recieved the personal details of 18 other Vodafone customers. The details included name, address and phone numbers for 18 customer accounts along with her e-bill. The company investigated the incident and found out that the issue was a result of an isolated technical glitch which they fixed afterwards.
Vodafone
Breach
Rankiteo Explanation
Attack limited on finance or reputation
Description: Vodafone claims that hackers attempted to access consumers' accounts by using the emails and passwords they had taken from an unidentified source. At that moment, the business started a thorough investigation to get all the information needed to provide the best guidance possible to any impacted clients. The telecoms provider claims that 1,827 customer accounts were hacked by the crooks, who obtained the last four digits of the consumers' bank accounts, their names, and their mobile phone numbers. Although credit or debit card numbers or other information were not acquired, it is crucial to remember that information that is accessible by thieves may be utilized for fraudulent purposes.
Vodafone
Data Leak
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: An intruder hacked into a Vodafone Group Plc (VOD) server in Germany and gained access to 2 million customers’ personal details and banking information. A person stole data including names, addresses, birth dates, and bank account information. However, the hacker had no access to credit card information, passwords, PIN numbers or mobile-phone numbers.
VOIS Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for VOIS
Incidents vs IT Services and IT Consulting Industry Average (This Year)
No incidents recorded for VOIS in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for VOIS in 2026.
Incident Types VOIS vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for VOIS in 2026.
Incident History — VOIS (X = Date, Y = Severity)
VOIS cyber incidents detection timeline including parent company and subsidiaries
VOIS Company Subsidiaries
VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation. As the largest shared services organisation in the global telco industry, our portfolio of next-generation solutions and services are designed in partnership with customers across Vodafone Group, local markets, and partner markets to simplify and drive growth. We are pioneering a new Partnership model for the Telco industry, where the sharing of ideas, innovation, platforms and services will unlock opportunities for our people and value for our customers. With our strategic partner Accenture, we work alongside our Vodafone customers, other Telco and tech companies to drive transformation, meet the challenges of our industry and ensure we stay relevant and resilient. This partnership is a unique, industry-first model which brings together the best of in-house and 3rd party capability. We deliver value and results at scale by leveraging technology, data and our talented international team of 30K professionals in the following services: Technology, Business, B2B, Corporate Services, Customer Care. Our commercial model creates clear, benchmarked and competitively-priced services so that we can offer guaranteed outcomes for customers with flexibility and optionality. Bringing together our combined strengths with our strategic partner Accenture our strategy is to: Commercialise: Create cost transparency and foster trust and growth for our customers Re-platform: To simplify, streamline and scale our business Extend beyond our borders: deepening our relationships, growing our services and expanding our customer base across new customers & new geographies We work with customers across 28 countries from 10 VOIS locations: Albania, Egypt, Hungary, India, Romania, Spain, Turkey, UK, Germany, Ireland, and with a network of teams in Czech Republic, Italy, Greece, and Portugal.
Loading...
VOIS Similar Companies
General Dynamics Information Technology
GDIT is a global technology and professional services company that delivers solutions, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solut
Infosys
Infosys is a global leader in next-generation digital services and consulting. We enable clients in more than 50 countries to navigate their digital transformation. With over three decades of experience in managing the systems and workings of global enterprises, we expertly steer our clients through
AlmavivA Experience
Líder em transformação digital nos mercados de Customer Experience e Debt Collection na América Latina. Combinamos tecnologia, inteligência e excelência operacional para entregar soluções completas que antecipam as necessidades dos nossos Clientes. São mais de 530 milhões de interações anuais, met
Dimension Data is a leading African born technology provider operating in the Middle East and Africa, offering a portfolio of services including systems integration, managed services infrastructure, cloud solutions, business applications, customer experience, and intelligent security solutions. We p
Tietoevry
In a rapidly changing world, technology is everything. It's in the fabric of society. In every part of every business. At the very heart of human evolution. It’s a great power that comes with great responsibility. At Tietoevry, we believe it’s time to shift perspective. It’s not about what technolo
Amazon Web Services (AWS)
Launched in 2006, Amazon Web Services (AWS) began exposing key infrastructure services to businesses in the form of web services -- now widely known as cloud computing. The ultimate benefit of cloud computing, and AWS, is the ability to leverage a new business model and turn capital infrastructure e
Birlasoft
Navigating Change. Powering Progress. | Reimagining the Future with Birlasoft Birlasoft, a powerhouse where domain expertise, enterprise solutions, and digital technologies converge to redefine business processes. We take pride in our consultative and design thinking approach, driving societal pro
Atos Group is a global leader in digital transformation with c. 67,000 employees and annual revenue of c. €10 billion, operating in 61 countries under two brands — Atos for services and Eviden for products. European number one in cybersecurity, cloud and high performance computing, Atos Group is com
TELUS Digital
TELUS Digital crafts unique and enduring experiences for customers and employees, and creates future-focused digital transformations that stand the test of time. We are the brand behind the brands. Our global team members are both passionate ambassadors of our clients’ products and services, and vis
.png)
VOIS CyberSecurity News
March 13, 2026 12:32 AM
Telecom news: MWC 2026, GSMA, Eoptolink Technology, Comcast
Today's telecom news includes announcements on MWC 2026, GSMA, Eoptolink Technology, Comcast, among others.
March 09, 2026 07:00 AM
Voice Biometrics Market Size, Share & Trends | Report [2034]
The global voice biometrics market size is valued at USD 3.61 billion in 2026 and is projected to reach USD 22.76 billion by 2034,...
March 02, 2026 12:44 PM
vMOX Merges with Advantage Communications Group
Enterprise mobility management provider, vMOX, LLC has officially merged with established global connectivity managed service provider (MSP)...
January 29, 2026 08:00 AM
Team Cymru’s Voice of the Cybersecurity Strategist Report: AI-Enabled Threats Rise to Top Concern as Only 38% of Security Leaders Report Real-Time External Visibility
Ask an Advisor: I'm 58 With $700k...
December 31, 2025 08:00 AM
Cybersecurity agency proposed to protect citizens’ data, critical government systems
According to ICT PS John Tanui, the agency will strengthen coordination in responding to cyber threats and complement existing structures...
November 25, 2025 08:00 AM
Telkom Business focused on being a one-stop shop for local enterprises
After continued success, Telkom Business has quickly become known as a trusted ICT integration leader in South Africa.
November 12, 2025 08:00 AM
VOIS Romania, one of the largest IT&C employers, opens a new office in Iași
VOIS Romania, one of the largest IT&C employers locally, has announced the opening of a new office in Iasi.
November 06, 2025 08:00 AM
KubeNet acquires Fibre1 Client base, Accelerating Growth Across Scotland and the UK
06 Nov 2025. Kube Networks Limited (“KubeNet”), a leading Glasgow-based ISP and award-winning provider of managed IT & infrastructure services, cloud,...
September 12, 2025 07:00 AM
Taiwan Mobile invests NT$930 million to capture AI opportunities, forecasts triple-digit growth in cloud and AI business
Generative AI has moved beyond the "model arms race" into practical deployment, and Taiwan Mobile (TWM) is moving quickly to capitalize on...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
VOIS CyberSecurity History Information
Official Website of VOIS
The official website of VOIS is https://www.vodafone.com/what-we-do/services/vois.
VOIS’s AI-Generated Cybersecurity Score
According to Rankiteo, VOIS’s AI-generated cybersecurity score is 787, reflecting their Fair security posture.
How many security badges does VOIS’ have ?
According to Rankiteo, VOIS currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has VOIS been affected by any supply chain cyber incidents ?
According to Rankiteo, VOIS has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does VOIS have SOC 2 Type 1 certification ?
According to Rankiteo, VOIS is not certified under SOC 2 Type 1.
Does VOIS have SOC 2 Type 2 certification ?
According to Rankiteo, VOIS does not hold a SOC 2 Type 2 certification.
Does VOIS comply with GDPR ?
According to Rankiteo, VOIS is not listed as GDPR compliant.
Does VOIS have PCI DSS certification ?
According to Rankiteo, VOIS does not currently maintain PCI DSS compliance.
Does VOIS comply with HIPAA ?
According to Rankiteo, VOIS is not compliant with HIPAA regulations.
Does VOIS have ISO 27001 certification ?
According to Rankiteo,VOIS is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of VOIS
VOIS operates primarily in the IT Services and IT Consulting industry.
Number of Employees at VOIS
VOIS employs approximately 20,303 people worldwide.
Subsidiaries Owned by VOIS
VOIS presently has no subsidiaries across any sectors.
VOIS’s LinkedIn Followers
VOIS’s official LinkedIn profile has approximately 459,249 followers.
NAICS Classification of VOIS
VOIS is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.
VOIS’s Presence on Crunchbase
No, VOIS does not have a profile on Crunchbase.
VOIS’s Presence on LinkedIn
Yes, VOIS maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/vois.
Cybersecurity Incidents Involving VOIS
As of March 28, 2026, Rankiteo reports that VOIS has experienced 7 cybersecurity incidents.
Number of Peer and Competitor Companies
VOIS has an estimated 39,819 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at VOIS ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware, Data Leak, Cyber Attack and Breach.
How does VOIS detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with local and international cyber security teams, and remediation measures with technical glitch fixed, and communication strategy with notified customers via email to reset their passwords, and communication strategy with informing affected customers and providing guidance, and remediation measures with newly installed or completely newly configured systems for workers, and communication strategy with vodafone's statement about lifting restrictions soon..
Incident Details
Can you provide details on each incident ?
Title: Vodafone Portugal Cyberattack
Description: The customer data services of Vodafone Portugal went down recently in several areas as it was targeted in a malicious cyberattack. The 3G network was fixed in the entire county while services like 4G and 5G mobile networks, fixed voice, television, SMS, and voice/digital answering services are still offline. The company is investigating the largest cybersecurity incident with the help of local and international cyber security teams.
Type: Cyberattack
Title: Vodafone Data Breach
Description: Vodafone suffered a data breach when a customer received the personal details of 18 other Vodafone customers due to a technical glitch.
Type: Data Breach
Vulnerability Exploited: Technical Glitch
Title: Vodafone Italia Data Breach Incident
Description: Vodafone Italia suffered a data breach incident after one of its commercial partners, FourB S.p.A., which operates as a reseller of telecommunications services in the country, suffered a cyberattack.
Type: Data Breach
Threat Actor: FourB S.p.A.Even KelvinSecurity
Title: Vodafone Data Breach
Description: An intruder hacked into a Vodafone Group Plc (VOD) server in Germany and gained access to 2 million customers’ personal details and banking information.
Type: Data Breach
Attack Vector: Server Hack
Threat Actor: Unknown
Title: Vodafone Data Breach via Vertriebswerk
Description: Vodafone experienced a data breach after cybercriminals infiltrated a sales partner, Vertriebswerk, and copied sensitive data. The breach involved the leakage of critical customer information, prompting Vodafone to notify affected customers and request password resets.
Type: Data Breach
Attack Vector: Data Breach
Threat Actor: Cybercriminals
Motivation: Unauthorized Access to Sensitive Data
Title: Vodafone Data Breach
Description: Hackers attempted to access consumers' accounts by using the emails and passwords they had taken from an unidentified source. The telecoms provider claims that 1,827 customer accounts were hacked by the crooks, who obtained the last four digits of the consumers' bank accounts, their names, and their mobile phone numbers. Although credit or debit card numbers or other information were not acquired, it is crucial to remember that information that is accessible by thieves may be utilized for fraudulent purposes.
Type: Data Breach
Attack Vector: Stolen Credentials
Threat Actor: Unknown Hackers
Motivation: Data Theft
Title: Ransomware Attack on Materna Affects Vodafone and German Airports
Description: Vodafone's online sales of 'Callya' prepaid cards were impacted by the purported ransomware attack on the IT service company Materna. The Vodafone website stopped selling the SIM cards, just after Materna had given the business permission to launch a 'professionally elaborated cyber attack.' Both businesses emphasise that there hasn't been any determination of a consumer data leak. 'Restrictions on online sales and online registration of Callya products' should be lifted soon, according to Vodafone. Until then, there would be other ways to make the reservation. Many clients' systems were also impacted by the Materna security breach. There were Materna-operated check-in machine outages at several German airports. Workers were 'equipped with newly installed or completely newly configured systems,' which had never been linked to the impacted infrastructure.
Type: Ransomware Attack
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Sales Partner (Vertriebswerk) and Stolen Credentials.
Impact of the Incidents
What was the impact of each incident ?
Incident : Cyberattack VOD153310222
Systems Affected: 4G and 5G mobile networksfixed voicetelevisionSMSvoice/digital answering services
Incident : Data Breach VOD205123422
Data Compromised: Personal details including name, address, and phone numbers
Incident : Data Breach VOD202921222
Data Compromised: Subscription details, Identity documents with sensitive data, Contact details
Incident : Data Breach VOD231421123
Data Compromised: Names, Addresses, Birth dates, Bank account information
Incident : Data Breach VOD93129723
Data Compromised: Name, Birthday, Email address, Mobile phone number, Address, Bank information (iban/bic), Customer password
Incident : Data Breach VOD129261023
Data Compromised: Names, Mobile phone numbers, Last four digits of bank account numbers
Identity Theft Risk: High
Payment Information Risk: Low
Incident : Ransomware Attack VOD41441223
Systems Affected: Vodafone's online sales of 'Callya' prepaid cardsMaterna-operated check-in machines at German airports
Operational Impact: Suspension of online sales and registration of Callya productsCheck-in machine outages at German airports
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Identifiable Information, Subscription Details, Identity Documents With Sensitive Data, Contact Details, , Personal Identifiable Information, Bank Account Information, , Personally Identifiable Information, Bank Information, , Personally Identifiable Information, Bank Account Information and .
Which entities were affected by each incident ?
Incident : Cyberattack VOD153310222
Entity Name: Vodafone Portugal
Entity Type: Telecommunications
Industry: Telecommunications
Location: Portugal
Incident : Data Breach VOD205123422
Entity Name: Vodafone
Entity Type: Telecommunications Company
Industry: Telecommunications
Customers Affected: 18
Incident : Data Breach VOD202921222
Entity Name: Vodafone Italia
Entity Type: Telecommunications
Industry: Telecommunications
Location: Italy
Incident : Data Breach VOD202921222
Entity Name: FourB S.p.A.
Entity Type: Reseller
Industry: Telecommunications
Location: Italy
Incident : Data Breach VOD231421123
Entity Name: Vodafone Group Plc
Entity Type: Telecommunications Company
Industry: Telecommunications
Location: Germany
Customers Affected: 2 million
Incident : Data Breach VOD93129723
Entity Name: Vodafone
Entity Type: Telecommunications Company
Industry: Telecommunications
Incident : Data Breach VOD129261023
Entity Name: Vodafone
Entity Type: Telecommunications Provider
Industry: Telecommunications
Customers Affected: 1827
Incident : Ransomware Attack VOD41441223
Entity Name: Vodafone
Entity Type: Telecommunications Company
Industry: Telecommunications
Incident : Ransomware Attack VOD41441223
Entity Name: Materna
Entity Type: IT Service Company
Industry: Information Technology
Incident : Ransomware Attack VOD41441223
Entity Name: German Airports
Entity Type: Airport
Industry: Aviation
Location: Germany
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Cyberattack VOD153310222
Third Party Assistance: Local And International Cyber Security Teams.
Incident : Data Breach VOD205123422
Remediation Measures: Technical glitch fixed
Incident : Data Breach VOD93129723
Communication Strategy: Notified customers via email to reset their passwords
Incident : Data Breach VOD129261023
Communication Strategy: Informing affected customers and providing guidance
Incident : Ransomware Attack VOD41441223
Remediation Measures: Newly installed or completely newly configured systems for workers
Communication Strategy: Vodafone's statement about lifting restrictions soon
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through local and international cyber security teams, .
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach VOD205123422
Type of Data Compromised: Personal Identifiable Information
Number of Records Exposed: 18
Sensitivity of Data: Medium
Personally Identifiable Information: Name, Address, Phone Numbers
Incident : Data Breach VOD202921222
Type of Data Compromised: Subscription details, Identity documents with sensitive data, Contact details
Number of Records Exposed: 295,000
Sensitivity of Data: High
Data Exfiltration: Yes
Personally Identifiable Information: Yes
Incident : Data Breach VOD231421123
Type of Data Compromised: Personal identifiable information, Bank account information
Number of Records Exposed: 2 million
Sensitivity of Data: High
Personally Identifiable Information: namesaddressesbirth dates
Incident : Data Breach VOD93129723
Type of Data Compromised: Personally identifiable information, Bank information
Sensitivity of Data: High
Incident : Data Breach VOD129261023
Type of Data Compromised: Personally identifiable information, Bank account information
Number of Records Exposed: 1827
Sensitivity of Data: High
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Technical glitch fixed, Newly installed or completely newly configured systems for workers, .
Regulatory Compliance
Were there any regulatory violations and fines imposed for each incident ?
Incident : Data Breach VOD93129723
Regulatory Notifications: Reported to the Federal Commissioner for Data Protection and Freedom of Information
References
Where can I find more information about each incident ?
Incident : Data Breach VOD93129723
Source: Online Email Notification
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Online Email Notification.
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Cyberattack VOD153310222
Investigation Status: Ongoing
Incident : Data Breach VOD129261023
Investigation Status: Ongoing
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Notified customers via email to reset their passwords, Informing affected customers and providing guidance and Vodafone'S Statement About Lifting Restrictions Soon.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : Data Breach VOD93129723
Customer Advisories: Emails requesting password resets
Incident : Data Breach VOD129261023
Customer Advisories: Guidance provided to affected customers
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were Emails requesting password resets and Guidance provided to affected customers.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach VOD93129723
Entry Point: Sales Partner (Vertriebswerk)
Incident : Data Breach VOD129261023
Entry Point: Stolen Credentials
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach VOD205123422
Root Causes: Technical Glitch
Corrective Actions: Technical glitch fixed
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Local And International Cyber Security Teams, .
What corrective actions has the company taken based on post-incident analysis ?
Corrective Actions Taken: The company has taken the following corrective actions based on post-incident analysis: Technical glitch fixed.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident were an FourB S.p.A.Even KelvinSecurity, Unknown, Cybercriminals and Unknown Hackers.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Personal details including name, address, and phone numbers, subscription details, identity documents with sensitive data, contact details, , names, addresses, birth dates, bank account information, , Name, Birthday, Email Address, Mobile Phone Number, Address, Bank Information (IBAN/BIC), Customer Password, , Names, Mobile Phone Numbers, Last Four Digits of Bank Account Numbers and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was 4G and 5G mobile networksfixed voicetelevisionSMSvoice/digital answering services and Vodafone's online sales of 'Callya' prepaid cardsMaterna-operated check-in machines at German airports.
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was local and international cyber security teams, .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were identity documents with sensitive data, subscription details, Address, Personal details including name, address, and phone numbers, Birthday, Mobile Phone Number, Email Address, addresses, contact details, birth dates, Name, bank account information, Customer Password, Bank Information (IBAN/BIC), Names, Last Four Digits of Bank Account Numbers, names and Mobile Phone Numbers.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 2.3M.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Online Email Notification.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
Stakeholder and Customer Advisories
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued were an Emails requesting password resets and Guidance provided to affected customers.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker were an Stolen Credentials and Sales Partner (Vertriebswerk).
.png)
Latest Global CVEs (Not Company-Specific)
Description
A flaw has been found in wandb OpenUI up to 1.0. This affects the function create_share/get_share of the file backend/openui/server.py of the component HTMLAnnotator Component. Executing a manipulation of the argument ID can lead to HTML injection. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was detected in QDOCS Smart School Management System up to 7.2. The impacted element is an unknown function of the file /admin/enquiry of the component Admission Enquiry Module. Performing a manipulation of the argument Note results in cross site scripting. The attack is possible to be carried out remotely.
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:N/I:P/A:N
cvss3
Base: 3.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
The Ultimate Member plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.11.2. This is due to the '{usermeta:password_reset_link}' template tag being processed within post content via the '[um_loggedin]' shortcode, which generates a valid password reset token for the currently logged-in user viewing the page. This makes it possible for authenticated attackers, with Contributor-level access and above, to craft a malicious pending post that, when previewed by an Administrator, generates a password reset token for the Administrator and exfiltrates it to an attacker-controlled server, leading to full account takeover.
Risk Information
cvss3
Base: 8.0
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
References
- https://github.com/ultimatemember/ultimatemember/pull/1799
- https://plugins.trac.wordpress.org/browser/ultimate-member/tags/2.11.2/includes/um-short-functions.php#L205
- https://plugins.trac.wordpress.org/changeset/3492178/ultimate-member/trunk/includes/um-short-functions.php
- https://www.wordfence.com/threat-intel/vulnerabilities/id/baafd001-144d-4ee4-b7e6-28c0931e6e10?source=cve
Description
LibJWT is a C JSON Web Token Library. Starting in version 3.0.0 and prior to version 3.3.0, the JWK parsing for RSA-PSS did not protect against a NULL value when expecting to parse JSON string values. A specially crafted JWK file could exploit this behavior by using integers in places where the code expected a string. This was fixed in v3.3.0. A workaround is available. Users importing keys through a JWK file should not do so from untrusted sources. Use the `jwk2key` tool to check for validity of a JWK file. Likewise, if possible, do not use JWK files with RSA-PSS keys.
Risk Information
cvss4
Base: 5.8
Severity: HIGH
CVSS:4.0/AV:A/AC:H/AT:P/PR:N/UI:A/VC:L/VI:L/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Locutus brings stdlibs of other programming languages to JavaScript for educational purposes. Starting in version 2.0.39 and prior to version 3.0.25, a prototype pollution vulnerability exists in the `parse_str` function of the npm package locutus. An attacker can pollute `Object.prototype` by overriding `RegExp.prototype.test` and then passing a crafted query string to `parse_str`, bypassing the prototype pollution guard. This vulnerability stems from an incomplete fix for CVE-2026-25521. The CVE-2026-25521 patch replaced the `String.prototype.includes()`-based guard with a `RegExp.prototype.test()`-based guard. However, `RegExp.prototype.test` is itself a writable prototype method that can be overridden, making the new guard bypassable in the same way as the original — trading one hijackable built-in for another. Version 3.0.25 contains an updated fix.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/locutusjs/locutus/commit/345a6211e1e6f939f96a7090bfeff642c9fcf9e4
- https://github.com/locutusjs/locutus/pull/597
- https://github.com/locutusjs/locutus/releases/tag/v3.0.25
- https://github.com/locutusjs/locutus/security/advisories/GHSA-vc8f-x9pp-wf5p
- https://github.com/locutusjs/locutus/security/advisories/GHSA-vc8f-x9pp-wf5p
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=vois' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
