What is the official website of Boursorama ?

The official website of Boursorama is https://www.boursobank-group.com/fr/.

What is Boursorama's cybersecurity risk score?

Boursorama has an AI-generated cybersecurity risk score of 763 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Boursorama experienced?

According to Rankiteo, Boursorama currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Boursorama been affected by any supply chain cyber incidents ?

According to Rankiteo, Boursorama has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Boursorama have SOC 2 Type 1 certification ?

According to Rankiteo, Boursorama is not certified under SOC 2 Type 1.

Does Boursorama have SOC 2 Type 2 certification ?

According to Rankiteo, Boursorama does not hold a SOC 2 Type 2 certification.

Does Boursorama comply with GDPR ?

According to Rankiteo, Boursorama is not listed as GDPR compliant.

Does Boursorama have PCI DSS certification ?

According to Rankiteo, Boursorama does not currently maintain PCI DSS compliance.

Does Boursorama comply with HIPAA ?

According to Rankiteo, Boursorama is not compliant with HIPAA regulations.

Does Boursorama have ISO 27001 certification ?

According to Rankiteo,Boursorama is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Boursorama operate in ?

Boursorama operates primarily in the Financial Services industry.

How many employees does Boursorama have ?

Boursorama employs approximately 1,189 people worldwide.

Does Boursorama own any subsidiaries ?

Boursorama presently has no subsidiaries across any sectors.

How many LinkedIn followers does Boursorama have ?

Boursorama's official LinkedIn profile has approximately 109,905 followers.

What is the NAICS classification code for Boursorama ?

Boursorama is classified under the NAICS code 52, which corresponds to Finance and Insurance.

Does Boursorama have a Crunchbase profile ?

No, Boursorama does not have a profile on Crunchbase.

Does Boursorama have a LinkedIn profile ?

Yes, Boursorama maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/boursobank.

How many cybersecurity incidents has Boursorama experienced ?

As of June 6, 2026, Rankiteo reports that Boursorama has not experienced any cybersecurity incidents.

How many peer or competitor companies does Boursorama have ?

Boursorama has an estimated 31,987 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Boursorama

Boost Score +25 with badge (5 left)

763

/1000

Fair

788

/1000

Fair

Boursorama Vendor Cyber Rating & Cyber Score

boursobank-group.com

Add Your Compliance Badge

Lancée en 1998, BoursoBank est un acteur pionnier et leader sur ses activités principales : la banque et l'information économique et financière en ligne. Avec un développement centré autour des nouvelles attentes des clients, simplicité et efficacité, mais aussi sécurité et frais réduits, BoursoBank conforte chaque année sa position d’acteur bancaire majeur en France. - Des métiers complémentaires et attractifs en complète synergie - Une capacité à rester en avance de phase par rapport aux comportements des consommateurs, dans une logique de qualité de service et de satisfaction clients - Un employeur engagé au niveau social et responsable à l’échelle environnementale, certifié B Corp

Boursorama A.I CyberSecurity Scoring

Scoring History

Boursorama

Boursorama CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

Boursorama Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Boursorama

Incidents vs Financial Services Industry Avg (This Year)

No incidents recorded for Boursorama in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Boursorama in 2026.

Incident Types Boursorama vs Financial Services Industry Avg (This Year)

No incidents recorded for Boursorama in 2026.

Incident History - Boursorama (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Boursorama Subsidiaries

Parent Company

Boursorama

Financial Services

Website: https://www.boursobank-group.com/fr/

Company Size: 501-1,000 employees

No subsidiary data available for this company.

Loading…

Boursorama Similar Companies

Indiabulls Group

cb indiabulls.com

Founded in the year 2000, the Indiabulls Group is one of the country’s leading business houses with interest across sectors like financial services, real estate, pharmaceutical and LED. Headquartered in Gurgaon, all the group companies are listed on the Bombay Stock Exchange, and the National Stock Exchange. The group had combined revenues of over Rs. 22,114.9 Cr. and PAT of over Rs. 6,072.2 Cr. As on 31st March 2018. Complementing its efforts at the business end, the Group also places strong focus on its CSR Arm – The Indiabulls Foundation. Through the foundation the Group can support its aim for inclusive growth in the country and give back to the society with initiatives in areas such as Health, Education, Sanitation, Nutrition, Disaster Relief and Sustainable Livelihood.

Bloomberg

bloomberg.com

Bloomberg is a global leader in business and financial information, delivering trusted data, news, and insights that bring transparency and efficiency, and fairness to markets. We help connect influential communities across the global financial ecosystem via reliable technology solutions that enable our customers to make more informed decisions and foster better collaboration. We challenge the status quo through constant innovation. We collaborate broadly because we know that other perspectives matter. We put our customers first, as a guiding beacon. And we believe doing the right thing – by our people, our clients, and our communities – is the best thing for our business.

State Street

cb statestreet.com

At State Street, we deliver leading investment platforms, data, expertise, and solutions that accelerate performance and better decision making. With over 200 years of global financial leadership, we equip institutional investors through a comprehensive suite of capabilities: Investment Services: Integrated front-to-back solutions across custody, accounting, and operations. Investment Management: Index and active strategies from one of the world’s largest asset managers. Markets: Multi-asset trading, FX solutions, and data-driven research to enhance portfolio value. Who We Are • 50,000+ employees worldwide • Active in 100+ markets • #1 in ETF servicing What You’ll Find Here • Executive perspectives and thought leadership • Timely market commentary and macro insights • Our views on investment operations, ETFs, private markets, and digital finance • Stories reflecting our culture, values and commitment to diversity and inclusion

CIMB

cimb.com

CIMB Group is a leading ASEAN universal bank, one of the largest Asian investment banks and one of the world's largest Islamic banks. We are headquartered in Kuala Lumpur, Malaysia and offer consumer banking, commercial banking, wholesale banking, Islamic banking, and asset management products and services. As the fifth largest banking group in ASEAN, we have over 36,000 staff in 16 locations across ASEAN, Asia and beyond. CIMB Bank and CIMB Islamic Bank are members of PIDM.

Morgan Stanley

morganstanley.com

Morgan Stanley (NYSE: MS) is a leading global financial services firm providing a wide range of investment banking, securities, wealth management and investment management services. With offices in 42 countries, our firm's employees serve clients worldwide including corporations, governments, institutions and individuals. We are committed to maintaining the first-class service and high standard of excellence that have always defined the firm and everything we do is guided by our five core values: Do the right thing, put clients first, lead with exceptional ideas, commit to diversity and inclusion, and give back. All interactions on/with this account are subject to the Social Media Important Information https://www.morganstanley.com/disclosures/social-media-important-information which includes Morgan Stanley’s Privacy Pledge and relevant disclaimers/disclosures. By interacting with this account, you consent to the retention and monitoring of your interactions.

Tata Capital

cb tatacapital.com

Tata Capital Limited is a subsidiary of Tata Sons Limited. The Company is registered with the Reserve Bank of India as a Core Investment Company and offers through itself and its subsidiaries fund and fee-based financial services to its customers, under the Tata Capital brand. As a trusted and customer-centric, one-stop financial services provider, Tata Capital caters to the diverse needs of retail, corporate and institutional customers, across various areas of business namely the Commercial Finance, Infrastructure Finance, Cleantech Finance, Wealth Management, Consumer Loans and distribution and marketing of Tata Cards. Tata Capital has over 500+ branches spanning all critical markets in India.

Sicoob

sicoob.com.br

O Sicoob é o maior sistema financeiro cooperativo do país, com mais de 9 milhões de cooperados e mais de 4,6 mil pontos de atendimento distribuídos em todo o Brasil. Somos uma cooperativa financeira que oferece aos cooperados serviços de conta corrente, crédito, investimento, cartões, previdência, consórcio, seguros, cobrança bancária, adquirência de meios eletrônicos de pagamento, entre outros. Ou seja, temos um portfólio completo para atender o nosso público. Somos reconhecidos como a terceira melhor instituição financeira do Brasil segundo o ranking “Melhores Bancos do Mundo 2024”, realizado pela Forbes em parceria com a empresa de estudos de mercado Statista. Para oferecer esse atendimento, não abrimos mão do nosso propósito de conectar pessoas para promover justiça financeira e prosperidade. Acreditamos que, para promover uma nova economia, temos que ser uma instituição diferente, é por isso que aqui cada colaborador e cooperado tem voz ativa para crescermos juntos! Deseja falar com a gente? Confira nossos números para contato: Central de Atendimento: Capitais e regiões metropolitanas: 4000 1111* Demais localidades: 0800 642 0000 *Caso a localidade não possua o serviço 4000 ou 4007, informe o número da operadora mais o DDD 61: (0xx61 4000 1111). Para informações, dúvidas, reclamações e comunicação de ocorrência de fraude, ligue para o nosso SAC 24 horas: 0800 724 4420 Deseja falar com a Ouvidoria? Para reclamações, elogios e sugestões: 0800 725 0996 (de segunda a sexta, das 8h às 20h) Deficientes auditivos ou de fala: 0800 940 0458 (de segunda a sexta, das 8h às 20h)

TMF Group

tmf-group.com

We provide employee, financial and legal administration so that firms can invest and operate safely around the world. TMF Group is a single global team with over 11,000 colleagues in more than 125 offices across 87 jurisdictions, covering 92% of world GDP and 95% of FDI inflow. We bring common culture and ways of working, investing heavily in our people and platform to provide a high level of quality and security to our clients. We exist to give clients a global solution to what otherwise requires many local providers, each with their individual operational complexity and risk. Our clients include the majority of the Fortune Global 500, FTSE 100 and top 300 private equity firms. We see ourselves as a partner to them, keeping them on top of complex rules and regulations in the countries where they are active. We recognise that what we do is critical to our clients’ reputation and integrity. That is why we have made flawless service our single obsession. Great service starts with our people, so colleague and client engagement are the two measures we care most about, driving our management agenda and investment.

BMO

cb bmo.com

We’re a bank, but there’s more to it than that. When you join BMO, it opens a world of opportunities. This is a team that's committed to helping you succeed – personally and professionally. Because at BMO, when you grow, we grow. You know your worth and so do we. That’s why we offer the right mix of learning programs, on-the-job experiences, and opportunities to build personal and professional connections – so you can build a meaningful career and thrive as a part of a winning culture.   Sound like your kind of place? Then we should be co-workers.

Loading…

NEWS

Boursorama CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

December 16, 2020 08:00 AM

Societe Generale bets retail business on open banking and Boursorama

With investment in technology supporting its Crédit du Nord merger, the bank hopes that product partnerships and a lower cost-to-serve will...

Read Article

April 23, 2019 07:00 AM

Boursorama picks IBM for hybrid cloud strategy

Boursorama has inked a five-year deal with IBM that will see the French online bank accelerate its hybrid cloud strategy.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…