WestRock Company Company Cyber Security Posture
smurfitwestrock.comSmurfit Westrock is the global leader of paper-based packaging solutions. With more than 100,000 employees, 500 converting operations, and 63 mills across 40 countries, we provide our customers with an expansive range of distinctive, innovative products. Learn more about how weโre creating the future of packaging together. www.smurfitwestrock.com
WestRock Company Company Details
westrockcompany
14968 employees
296096.0
326
Packaging and Containers Manufacturing
smurfitwestrock.com
Scan still pending
WES_2292669
In-progress
WestRock Company Risk Score (AI oriented)Between 900 and 1000
This score is AI-generated and less favored by cyber insurers, who prefer the TPRM score.
WestRock Company Global Score.png)
WestRock Company Company Scoring based on AI Models
| Model Name | Date | Description | Current Score Difference | Score |
|---|---|---|---|---|
| AVERAGE-Industry | 03-12-2025 | This score represents the average cybersecurity rating of companies already scanned within the same industry. It provides a benchmark to compare an individual company's security posture against its industry peers. | N/A | Between 900 and 1000 |
WestRock Company Company Cyber Security News & History
| Entity | Type | Severity | Impact | Seen | Url ID | Details | View |
|---|---|---|---|---|---|---|---|
| Combi Security | Breach | 100 | 5 | 1/2013 | WES424042824 | Link | |
Rankiteo Explanation : Attack threatening the organizationโs existenceDescription: Combi Security, an Israeli-Russian front company, was central to operations organised by the cybercriminal group known as Fin7. Using the Carbanak malware, Fin7 successfully orchestrated a series of sophisticated attacks targeting over thirty countries' banking institutions, accumulating thefts surpassing โฌ1 billion over a span of three years. The malware facilitated unauthorized remote access to financial systems, enabling manipulation of ATM machines for cash withdrawal ('jackpotting') and compromising point-of-sale data. These orchestrated thefts culminated in massive financial losses for the affected institutions and compromised the details of 15 million payment cards, particularly impacting over 120 U.S. companies, including notable names like Chipotle and Arbyโs. Despite the arrests of several key figures, including the supposed ringleader in Spain and three Ukrainian nationals by the U.S. Department of Justice, the full extent of the damage and the potential continuation of their criminal activities under different techniques remain concerns for global financial security. | |||||||
| WestRock Company | Ransomware | 80 | 2 | 01/2021 | WES21121222 | Link | |
Rankiteo Explanation : Attack limited on finance or reputationDescription: WestRock Company was attacked by ransomware in January 2021 which disrupted many of its systems. The company immediately initiated efforts to contain the attack and restore the systems. But the attack impacted the Companyโs business and adversely resulted in WestRockโs financial results. | |||||||
WestRock Company Company Subsidiaries
Smurfit Westrock is the global leader of paper-based packaging solutions. With more than 100,000 employees, 500 converting operations, and 63 mills across 40 countries, we provide our customers with an expansive range of distinctive, innovative products. Learn more about how weโre creating the future of packaging together. www.smurfitwestrock.com
Access Data Using Our API
Get company history
Rapid.png)
WestRock Company Cyber Security News
Smurfit Westrock plc SEC 10-K Report
Smurfit Westrock plc, a leading global manufacturer of paper-based packaging products, has released its annual 10-K report, detailing the company's financialย ...
Smurfit Westrock Reports First Quarter 2025 Results
DUBLIN--(BUSINESS WIRE)--. Smurfit Westrock plc (NYSE: SW, LSE: SWR) today announced the financial results for the first quarter ended Marchย ...
Ransomware Costs Manufacturing Sector $17bn in Downtime
Ransomware attacks have exacted a staggering toll on the manufacturing industry, as evidenced by the downtime losses reported since 2018. Thisย ...
Top 10 Tech Internships Offered in Richmond
Richmond's tech scene is booming, offering top-notch internships that provide industry-relevant experience and networking opportunities.
Ransomware assault hits WestRockโs production
The ransomware incident, which the company announced on Jan. 25, led to shipments from some of its facilities lagging in production levels.
Smurfit Westrock Reports Fourth Quarter and Full Year 2024 Results
Smurfit Westrock plc (NYSE: SW, LSE: SWR) today announced the financial results for the fourth quarter and full year ended December 31,ย ...
BBHCP Private Equity Portfolio Companies
Our portfolio companies reflect our commitment to a disciplined investment approach and our flexibility in partnering with excellent businesses.
WestRock Ransomware Attack Hinders Packaging Production
The ransomware attack, affecting OT systems, resulted in some of WestRock's facilities lagging in production levels.
WestRock CIDO Amir Kazmi on building resiliency
Amir Kazmi is a savvy business leader whose leadership playbook has been shaped by the fact that he's spent one third of his career in P&L rolesย ...
WestRock Company Similar Companies
AR Packaging - Acquired by Graphic Packaging International
Graphic Packaging International, LLC, the primary operating subsidiary of Graphic Packaging Holding Company (NYSE: GPK), headquartered in Atlanta, Georgia, is committed to providing consumer packaging that makes a world of difference. The Company is a leading provider of sustainable paper-based pack
Sealed Air Corporation
Sealed Air is in business to protect, to solve critical packaging challenges, and to make our world better than we find it. Our automated packaging solutions promote a safer, more resilient, and less wasteful global food, fluids and liquids supply chain, enable e-commerce, and protect goods in trans
Aptar
Every day, Aptar creates โa-ha momentsโ for its customers and their consumers and patients by continually bringing innovations to market that convert non-dispensing packaging into breakthrough product-dispensing systems, including those that give people more effective ways to put on their favorite f
Graphic Packaging International, LLC
Graphic Packaging Holding Company (NYSE: GPK), headquartered in Atlanta, Georgia, designs and produces consumer packaging, made primarily from renewable or recycled materials. An industry leader in innovation, the Company is committed to reducing the environmental footprint of consumer packaging. Gr
Tetra Laval International
Operating activities within Tetra Laval are organised into three autonomous industry groups: Tetra Pak, DeLaval and Sidel. The Tetra Laval Group is the leading group for food processing and packaging equipment in the world. With cutting-edge knowledge in every aspect of liquid foods, the three indus
Amcor
A global leader in developing and producing responsible packaging for food, beverage, pharma, medical, home- and personal-care, and other products. Amcor works with leading companies around the world to protect their products and the people who rely on them, differentiate brands, and improve supp
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
WestRock Company CyberSecurity History Information
How many cyber incidents has WestRock Company faced?
Total Incidents: According to Rankiteo, WestRock Company has faced 2 incidents in the past.
What types of cybersecurity incidents have occurred at WestRock Company?
Incident Types: The types of cybersecurity incidents that have occurred incidents Ransomware and Breach.
What was the total financial impact of these incidents on WestRock Company?
Total Financial Loss: The total financial loss from these incidents is estimated to be $1 billion.
How does WestRock Company detect and respond to cybersecurity incidents?
Detection and Response: The company detects and responds to cybersecurity incidents through law enforcement notified with U.S. Department of Justice and containment measures with Efforts to contain the attack and recovery measures with Efforts to restore the systems.
Incident Details
Can you provide details on each incident?
Incident : Cyber Attack
Title: Fin7 Cyber Attacks using Carbanak Malware
Description: Combi Security, an Israeli-Russian front company, was central to operations organised by the cybercriminal group known as Fin7. Using the Carbanak malware, Fin7 successfully orchestrated a series of sophisticated attacks targeting over thirty countries' banking institutions, accumulating thefts surpassing โฌ1 billion over a span of three years. The malware facilitated unauthorized remote access to financial systems, enabling manipulation of ATM machines for cash withdrawal ('jackpotting') and compromising point-of-sale data. These orchestrated thefts culminated in massive financial losses for the affected institutions and compromised the details of 15 million payment cards, particularly impacting over 120 U.S. companies, including notable names like Chipotle and Arbyโs. Despite the arrests of several key figures, including the supposed ringleader in Spain and three Ukrainian nationals by the U.S. Department of Justice, the full extent of the damage and the potential continuation of their criminal activities under different techniques remain concerns for global financial security.
Type: Cyber Attack
Attack Vector: Malware
Vulnerability Exploited: Unauthorized remote access, ATM jackpotting, Point-of-sale data compromise
Threat Actor: Fin7
Motivation: Financial Gain
Incident : Ransomware Attack
Title: WestRock Company Ransomware Attack
Description: WestRock Company was attacked by ransomware in January 2021 which disrupted many of its systems. The company immediately initiated efforts to contain the attack and restore the systems. But the attack impacted the Companyโs business and adversely resulted in WestRockโs financial results.
Date Detected: January 2021
Type: Ransomware Attack
What are the most common types of attacks the company has faced?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident?
Incident : Cyber Attack WES424042824
Financial Loss: Over โฌ1 billion
Data Compromised: 15 million payment cards
Systems Affected: ATM machines, Point-of-sale systems
What is the average financial loss per incident?
Average Financial Loss: The average financial loss per incident is $500.00 million.
What types of data are most commonly compromised in incidents?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Payment card details.
Which entities were affected by each incident?
Incident : Cyber Attack WES424042824
Entity Type: Financial
Industry: Banking
Location: Over thirty countries
Customers Affected: 120 U.S. companies, including Chipotle and Arbyโs
Response to the Incidents
What measures were taken in response to each incident?
Incident : Cyber Attack WES424042824
Law Enforcement Notified: U.S. Department of Justice
Incident : Ransomware Attack WES21121222
Containment Measures: Efforts to contain the attack
Recovery Measures: Efforts to restore the systems
Data Breach Information
What type of data was compromised in each breach?
Incident : Cyber Attack WES424042824
Type of Data Compromised: Payment card details
Number of Records Exposed: 15 million
Sensitivity of Data: High
How does the company handle incidents involving personally identifiable information (PII)?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through was Efforts to contain the attack.
Ransomware Information
How does the company recover data encrypted by ransomware?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through Efforts to restore the systems.
Additional Questions
General Information
Who was the attacking group in the last incident?
Last Attacking Group: The attacking group in the last incident was an Fin7.
Incident Details
What was the most recent incident detected?
Most Recent Incident Detected: The most recent incident detected was on January 2021.
Impact of the Incidents
What was the highest financial loss from an incident?
Highest Financial Loss: The highest financial loss from an incident was Over โฌ1 billion.
What was the most significant data compromised in an incident?
Most Significant Data Compromised: The most significant data compromised in an incident was 15 million payment cards.
What was the most significant system affected in an incident?
Most Significant System Affected: The most significant system affected in an incident were ATM machines, Point-of-sale systems and Many.
Response to the Incidents
What containment measures were taken in the most recent incident?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was Efforts to contain the attack.
Data Breach Information
What was the most sensitive data compromised in a breach?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was 15 million payment cards.
What was the number of records exposed in the most significant breach?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 15.0M.
What Do We Measure?
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
