What is the official website of Carousell Group ?

The official website of Carousell Group is http://careers.carousell.com/.

What is Carousell Group's cybersecurity risk score?

Carousell Group has an AI-generated cybersecurity risk score of 698 out of 1000, indicating a Weak security posture according to Rankiteo's assessment.

How many security incidents has Carousell Group experienced?

According to Rankiteo, Carousell Group currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Carousell Group been affected by any supply chain cyber incidents ?

According to Rankiteo, Carousell Group has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Carousell Group have SOC 2 Type 1 certification ?

According to Rankiteo, Carousell Group is not certified under SOC 2 Type 1.

Does Carousell Group have SOC 2 Type 2 certification ?

According to Rankiteo, Carousell Group does not hold a SOC 2 Type 2 certification.

Does Carousell Group comply with GDPR ?

According to Rankiteo, Carousell Group is not listed as GDPR compliant.

Does Carousell Group have PCI DSS certification ?

According to Rankiteo, Carousell Group does not currently maintain PCI DSS compliance.

Does Carousell Group comply with HIPAA ?

According to Rankiteo, Carousell Group is not compliant with HIPAA regulations.

Does Carousell Group have ISO 27001 certification ?

According to Rankiteo,Carousell Group is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Carousell Group operate in ?

Carousell Group operates primarily in the Software Development industry.

How many employees does Carousell Group have ?

Carousell Group employs approximately 1,218 people worldwide.

Does Carousell Group own any subsidiaries ?

Carousell Group presently has no subsidiaries across any sectors.

How many LinkedIn followers does Carousell Group have ?

Carousell Group's official LinkedIn profile has approximately 134,426 followers.

What is the NAICS classification code for Carousell Group ?

Carousell Group is classified under the NAICS code 5112, which corresponds to Software Publishers.

Does Carousell Group have a Crunchbase profile ?

No, Carousell Group does not have a profile on Crunchbase.

Does Carousell Group have a LinkedIn profile ?

Yes, Carousell Group maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/carousellgroup.

How many cybersecurity incidents has Carousell Group experienced ?

As of June 27, 2026, Rankiteo reports that Carousell Group has experienced 2 cybersecurity incidents.

How many peer or competitor companies does Carousell Group have ?

Carousell Group has an estimated 30,212 peer or competitor companies worldwide.

What types of cybersecurity incidents has Carousell Group faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Breach and Data Leak.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Carousell Group

Boost Score +25 with badge (5 left)

698

/1000

Weak

723

/1000

Moderate

Carousell Group Vendor Cyber Rating & Cyber Score

carousell.com

Add Your Compliance Badge

Carousell Group is the leading multi-category platform for secondhand in Greater Southeast Asia on a mission to make secondhand the first choice. Founded in Singapore by Siu Rui, Marcus and Lucas back in August 2012, the Group operates across seven key markets under the brands including Carousell, Carousell Media Group, Cho Tot, Laku6, LuxLexicon, Mudah.my, OneShift, REFASH and Revo Financial. Together, we serve tens of millions of monthly active users, defining the recommerce experience regionally. Our growth is backed by global investors, including Telenor Group, Rakuten Ventures, Naver, STIC Investments, 500 Global, and Peak XV Partners (formerly known as Sequoia Capital India). We are a diverse team across Southeast Asia, India,

Carousell Group A.I CyberSecurity Scoring

Scoring History

Carousell Group

Carousell Group CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Carousell Group

Breach

100

10/2022

CAR1831122

Carousell Group

Data Leak

6/2022

CAR21412323

Loading…

A.I.

Carousell Group Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Carousell Group

Incidents vs Software Development Industry Avg (This Year)

No incidents recorded for Carousell Group in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Carousell Group in 2026.

Incident Types Carousell Group vs Software Development Industry Avg (This Year)

No incidents recorded for Carousell Group in 2026.

Incident History - Carousell Group (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Carousell Group Subsidiaries

Carousell Group

Software Development

Website: http://careers.carousell.com/

Company Size: 501-1,000 employees

Mudah.mySoftware Development

Chợ TốtTechnology, Information and Internet

Việc Làm TốtHuman Resources Services

Laku6.comInternet Publishing

Carousell Media GroupTechnology, Information and Internet

Loading…

Carousell Group Similar Companies

Daraz

cb daraz.com

Founded in 2015, Daraz is the leading e-commerce platform in South Asia with operations in Pakistan, Bangladesh, Sri Lanka, Nepal, and Myanmar. It provides sellers and consumers with cutting-edge marketplace technology, targeting a rapidly growing region of over 500 million people. By building an integrated infrastructure covering e-commerce, logistics, payment and financial services, the company aims to deliver an immersive, personalized shopping experience and uplift South Asian communities through the power of commerce. Daraz has consistently invested in building an e-commerce ecosystem in South Asia through advancements in technology, logistics and digital payments. As digital penetration and consumer awareness have surged, the region is now ready for a transformative leap. Leveraging new-age advancements such as AI, Daraz is poised to further enhance the platform’s efficiency to enable a seamless experience for its consumers and sellers. Visit https://www.daraz.com/ to learn more.

Nielsen

cb nlsn.co

Nielsen shapes the world’s media and content as a global leader in audience insights, data and analytics. Through our understanding of people and their behaviors across all channels and platforms, we empower our clients with independent and actionable intelligence so they can connect and engage with their audiences—now and into the future. Nielsen operates around the world in more than 55 countries. Learn more at http://nlsn.co/6006JMfty and connect with us on social media (LinkedIn, Twitter, Facebook and Instagram).

Baidu, Inc.

cb baidu.com

Baidu is a leading AI company with strong Internet foundation, driven by our mission to “make the complicated world simpler through technology”. Founded in 2000 as a search engine platform, we were an early adopter of artificial intelligence in 2010. Since then, we have established a full AI stack, from deep learning frameworks to models and applications, with industry-leading self-developed technology at every level. Over the past two decades, we have built a diversified portfolio of products and services, spanning an ecosystem of hundreds of millions of users, millions of developers, and hundreds of thousands of enterprises. We have now integrated our leading AI capabilities into our offerings, driving innovative use cases. Join us to shape the future of AI and technology. For media inquiries, contact us at [email protected]. For career opportunities, visit https://talent.baidu.com/static/index.html

Databricks

databricks.com

Databricks is the Data and AI company. More than 20,000 organizations worldwide — including adidas, AT&T, Bayer, Block, Mastercard, Rivian, Unilever, and over 60% of the Fortune 500 — rely on Databricks to build and scale data and AI apps, analytics and agents. Headquartered in San Francisco with 30+ offices around the globe, Databricks offers a unified Data Intelligence Platform that includes Agent Bricks, Lakeflow, Lakehouse, Lakebase and Unity Catalog. --- Databricks applicants Please apply through our official Careers page at databricks.com/company/careers. All official communication from Databricks will come from email addresses ending with @databricks.com or @goodtime.io (our meeting tool).

Juniper Networks

juniper.net

Juniper Networks is leading the revolution in networking, making it one of the most exciting technology companies in Silicon Valley today. Since being founded by Pradeep Sindhu, Dennis Ferguson, and Bjorn Liencres nearly 20 years ago, Juniper’s sole mission has been to create innovative products and solutions that meet the growing demands of the connected world. Juniper Networks is headquartered in Sunnyvale, California, with over 9,000 employees in 50 countries and nearly $5 billion in revenue. Our customers include the top 100 global service providers and 30,000 enterprises, including the Global Fortune 100 as well as hundreds of federal, state and local government agencies and higher educational organizations. At Juniper Networks, we believe the network is the single greatest vehicle for knowledge, understanding, and human advancement that the world has ever known. Now more than ever, the world needs network innovation to connect ideas and unleash our full potential. Juniper is taking a new approach to the network — one that is intelligent, agile, secure and open to any vendor and any network environment. To learn more about Juniper, our products, and our vision for the decade ahead, visit our site at https://www.juniper.net. Acquired by Hewlett Packard Enterprise in 2025.

Shopee

shopee.com

Shopee is the leading e-commerce platform in Southeast Asia and Taiwan. It is a platform tailored for the region, providing customers with an easy, secure and fast online shopping experience through strong payment and logistical support. Shopee aims to continually enhance its platform and become the region’s e-commerce destination of choice via ongoing product optimisation and localised user-centered strategies. Shopee, a Sea company, was first launched in Singapore in 2015, and has since expanded its reach to Malaysia, Thailand, Taiwan, Indonesia, Vietnam and the Philippines. Sea is a leader in digital entertainment, e-commerce and digital financial services across Greater Southeast Asia. Sea's mission is to better the lives of consumers and small businesses with technology, and is listed on the NYSE under the symbol SE. The Shopee team is rapidly expanding across the region and we are constantly on the lookout for talents who have the passion and drive to become part of a fast-moving and dynamic team. Do check out our career website http://careers.shopee.com for our available positions!

Agoda

careersatagoda.com

At Agoda, we bridge the world through travel. We aim to make it easy and rewarding for more travelers to explore and experience the amazing world we live in. We do so by enabling more people to see the world for less – with our best-value deals across our 6,000,000+ hotels and holiday properties, 130,000+ flight routes, 360,000+ activities, and more. Agoda was founded in 2005 in Thailand by two lifelong friends with a shared passion for travel. Today, Agoda is part of Booking Holdings [BKNG], and we have more than 7,000 employees from 90 nationalities in offices across Asia Pacific, the Middle East, Europe, and the Americas. In every department – from engineering to customer support – you’ll find that data and technology are at the heart of our culture. There’s never a boring day at Agoda as we aim to make travel hassle-free for everyone. If you’re ready to begin your best journey with us and help us build travel for the world, join us. For properties seeking partnership with Agoda, visit https://connect.agoda.com

Workday

workday.com

Workday is a leading provider of enterprise cloud applications for finance and human resources, helping customers adapt and thrive in a changing world. Workday applications for financial management, human resources, planning, spend management, and analytics are built with artificial intelligence and machine learning at the core to help organizations around the world embrace the future of work. Workday is used by more than 10,000 organizations around the world and across industries – from medium-sized businesses to more than 50% of the Fortune 500.

Canva

canva.com

We're a global online visual communications platform on a mission to empower the world to design. Featuring a simple drag-and-drop user interface and a vast range of templates ranging from presentations, documents, websites, social media graphics, posters, apparel to videos, plus a huge library of fonts, stock photography, illustrations, video footage, and audio clips, anyone can take an idea and create something beautiful on Canva on any device, from anywhere in the world. Since our launch in 2013, we’ve had the crazy big goal of making design accessible to everyone. We were founded on the belief that people shouldn't need to understand complex software to unlock their creativity. We’re leveling the playing field and democratizing access to design and visual communication by empowering 100% of the world to communicate in a way that was once limited to the 1%. We've always had a deeper mission surrounding Canva — which we talk about as our 'simple' two-step plan: to build one of the world’s most valuable companies, and to do the most good we possibly can. We're committed to our core value of Being a Force for Good, so as the value of our company grows, so too does our ability to have a positive impact on the world.

Loading…

NEWS

Carousell Group CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

September 18, 2025 07:00 AM

Carousell to open second-hand luxury bag store at The Centrepoint

SINGAPORE – Home-grown online marketplace Carousell Group will open a new retail store selling second-hand luxury handbags in Orchard Road...

Read Article

January 13, 2025 08:00 AM

PropertyGuru names Lewis Ng as new CEO as Hari Krishnan steps down

Mr Ng spent nearly six years with the company from 2014 to 2019, serving as managing director of Singapore. Read more at straitstimes.com.

Read Article

December 17, 2024 08:00 AM

Hong Kong police warn online selling platform Carousell being used for scams

Hong Kong police have warned residents about scammers posing as customers on the popular online retail platform Carousell, with 644 cases involving HK$36...

Read Article

December 14, 2023 08:00 AM

Carousell Group Releases First-of-its-kind Circular Economy Impact Report Showing Positive Climate Impact from Secondhand Transactions in Greater Southeast Asia

The Group's user community avoided 116577 tonnes of carbon emissions in four goods categories in 2022, the equivalent to 5.3 million trees...

Read Article

September 22, 2023 07:00 AM

Carousell well-capitalised, with ‘healthy’ narrowing of losses: CEO

Online classifieds operator Carousell remains well-funded by its investors, and an initial public offering (IPO) is not the only option to raise capital.

Read Article

April 19, 2023 07:00 AM

Property firm OrangeTee & Tie fined $37k for data breach affecting over 250,000 customers, staff

Data including names, bank account numbers and NRIC numbers were extracted from outdated servers. Read more at straitstimes.com.

Read Article

February 21, 2023 08:00 AM

500 Global Expands Southeast Asia Leadership Team

500 Global today announced the appointment of Saemin Ahn, Shahril Ibrahim, and Martin Cu as Partners in Southeast Asia.

Read Article

December 31, 2022 08:00 AM

Major data breaches in Malaysia in the past 24 months

Malaysians have been hit with yet another data breach. This time involving a banking institution, multimedia and broadcast agency and a government electoral...

Read Article

April 13, 2021 07:00 AM

Carousell jumps on the automotive e-commerce bandwagon while navigating path to profitability

Unfazed by the competition, Bhasin said the company's auto sector is the most-visited auto classifieds platform in the region.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-56414

SUMMARY

A vulnerability exists in H.View IP cameras certificate-related upload interfaces allow authenticated users to store arbitrary file content to fixed, persistent filesystem locations without validating file type, structure, or size. This design omission enables the placement of unexpected or malformed data in locations intended for trusted certificate material, which could affect system integrity or behavior even after reboot.

Published

Date2026-06-26

Updated

Date2026-06-26

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 8.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

1.2

REFERENCES

CVE-2026-55975

SUMMARY

A vulnerability exists in H.View IP cameras that could allow an authenticated user to supply unsanitized XML fields to the device's certificate generation interface, which are incorporated into a backend certificate creation command without proper input validation. This may allow for command execution with elevated privileges during certificate generation.

Published

Date2026-06-26

Updated

Date2026-06-26

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 8.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

1.2

REFERENCES

CVE-2026-33560

SUMMARY

The DMP-5000 file service exposes authenticated arbitrary file upload functionality. There are exposed endpoints which allows authenticated users to upload files of any type without validation. No file extension filtering or content inspection is enforced which allows executable binaries and scripts to be accepted and written directly to the server.

Published

Date2026-06-26

Updated

Date2026-06-26

RISK INFORMATION (Score: 7.1)

cvss3

Base Score: 7.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

cvss4

Base Score: 8.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:N/SC:L/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

4.2

Exploitability

2.8

REFERENCES

CVE-2026-31928

SUMMARY

The DMP-5000 devices are shipped with a default administrative web account with weak authentication controls, which are not required to be changed during initial configuration or operation. Using these accounts provides full system access.

Published

Date2026-06-26

Updated

Date2026-06-26

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.2

Exploitability

2.8

REFERENCES

CVE-2026-28701

SUMMARY

Various versions of Daktronics Controller Firmware could allow authenticated and unauthenticated remote users to escape the intended directory and enumerate arbitrary file system paths.

Published

Date2026-06-26

Updated

Date2026-06-26

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…