What is the official website of Castorama ?

The official website of Castorama is https://emploi.castorama.fr/.

What is Castorama's cybersecurity risk score?

Castorama has an AI-generated cybersecurity risk score of 786 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Castorama experienced?

According to Rankiteo, Castorama currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Castorama been affected by any supply chain cyber incidents ?

According to Rankiteo, Castorama has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Castorama have SOC 2 Type 1 certification ?

According to Rankiteo, Castorama is not certified under SOC 2 Type 1.

Does Castorama have SOC 2 Type 2 certification ?

According to Rankiteo, Castorama does not hold a SOC 2 Type 2 certification.

Does Castorama comply with GDPR ?

According to Rankiteo, Castorama is not listed as GDPR compliant.

Does Castorama have PCI DSS certification ?

According to Rankiteo, Castorama does not currently maintain PCI DSS compliance.

Does Castorama comply with HIPAA ?

According to Rankiteo, Castorama is not compliant with HIPAA regulations.

Does Castorama have ISO 27001 certification ?

According to Rankiteo,Castorama is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Castorama operate in ?

Castorama operates primarily in the Retail industry.

How many employees does Castorama have ?

Castorama employs approximately 8,294 people worldwide.

Does Castorama own any subsidiaries ?

Castorama presently has no subsidiaries across any sectors.

How many LinkedIn followers does Castorama have ?

Castorama's official LinkedIn profile has approximately 86,689 followers.

What is the NAICS classification code for Castorama ?

Castorama is classified under the NAICS code 43, which corresponds to Retail Trade.

Does Castorama have a Crunchbase profile ?

No, Castorama does not have a profile on Crunchbase.

Does Castorama have a LinkedIn profile ?

Yes, Castorama maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/castorama.

How many cybersecurity incidents has Castorama experienced ?

As of June 6, 2026, Rankiteo reports that Castorama has not experienced any cybersecurity incidents.

How many peer or competitor companies does Castorama have ?

Castorama has an estimated 15,825 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Castorama

Boost Score +25 with badge (5 left)

786

/1000

Fair

811

/1000

Good

Castorama Vendor Cyber Rating & Cyber Score

castorama.fr

Add Your Compliance Badge

Castorama is part of Kingfisher plc, an international home improvement company which operates nearly 1,200 stores in 10 countries in Europe. Its main brands are B&Q, Castorama, Brico Dépôt and Screwfix. Kingfisher also operates the Koçtaş joint venture in Turkey. For further information go to www.kingfisher.com Castorama is one of the France’s leading DIY and decoration retailer. #1 in Europe #3 in the world Today there are 102 Castorama shops in France, committed to offer its customers smart products which make their home improvement projects easier. Every day 12,800 home passionate people take care of the company growth and make a turnover of €3.5 billion. Our specialty? The home-made happiness To reach this ambition,

Castorama A.I CyberSecurity Scoring

Scoring History

Castorama

Castorama CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

Castorama Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Castorama

Incidents vs Retail Industry Avg (This Year)

No incidents recorded for Castorama in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Castorama in 2026.

Incident Types Castorama vs Retail Industry Avg (This Year)

No incidents recorded for Castorama in 2026.

Incident History - Castorama (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Castorama Subsidiaries

Castorama

Retail

Website: https://emploi.castorama.fr/

Company Size: 10,001+ employees

Kingfisher plcRetail

B&QRetail

TradePoint UKRetail

B&Q IrelandRetail

ScrewfixRetail

BRICO DÉPÔTRetail

Brico Depôt Iberia (Grupo Kingfisher)Retail

Brico Depot Romania (part of Kingfisher Group)Retail

Castorama Polska Sp. z o.o.Retail

Castorama RussiaRetail

Loading…

Castorama Similar Companies

Kingfisher plc

kingfisher.com

Kingfisher plc is an international home improvement company with over 2,000 stores, and operations in eight countries across Europe. We operate under retail banners including B&Q, Castorama, Brico Dépôt, Screwfix, TradePoint and Koçtaş, supported by a team of over 78,000 colleagues. We offer home improvement products and services to consumers and trade professionals who shop in our stores and via our e-commerce channels. Better Homes. Better Lives. For Everyone. At Kingfisher, we believe a better world starts with better homes and we strive to help make that happen. As a Group, we use our core strengths and commercial assets, and we power our retail banners to address the significant growth opportunities that exist within the home improvement market #PoweredByKingfisher

Ulta Beauty

cb ulta.com

At Ulta Beauty (NASDAQ: ULTA), the possibilities are beautiful. Ulta Beauty is the largest U.S. beauty retailer and the premier beauty destination for cosmetics, fragrance, skin care products, hair care products and salon services. In 1990, the Company reinvented the beauty retail experience by offering a new way to shop for beauty – bringing together all things beauty, all in one place. Today, Ulta Beauty has grown to become the top national retailer offering the complete beauty experience. Ulta Beauty brings possibilities to life through the power of beauty each and every day in our stores and online with more than 25,000 products from approximately 500 well-established and emerging beauty brands across all categories and price points, including Ulta Beauty’s own private label. Ulta Beauty also offers a full-service salon in every store featuring hair, skin, brow, and make-up services. Ulta Beauty is recognized for its commitment to personalized service, fun and inviting stores and our industry-leading Ultamate Rewards loyalty program. ALERT: We are aware of a scam whereby imposters are posing as employees from Ulta Beauty and vendors to Ulta Beauty. Beware of anyone requesting financial or personal information. At Ulta Beauty, we take pride in creating a best in class candidate experience. During the recruitment process, no recruiter or employee will request financial or personal information (Social Security Number, credit card, driver’s license or bank information, etc.) from you via text or email. If you are suspicious of a job posting or job-related email mentioning Ulta Beauty, let us know by contacting us at 630-410-4800 or email [email protected].

Speedway

speedway.com

Speedway operates across the U.S., predominately in the Midwest and East Coast. In May 2021, 7-Eleven acquired 3,800 Speedway Stores from Marathon Petroleum Corp., increasing 7-Eleven’s total number of stores to more than 13,000 in the U.S. and Canada and allowing 7-Eleven to bring convenience to more customers than ever before. Learn more about 7-Eleven and their family of brands here: https://corp.7-eleven.com/corp/about

Costa Coffee

costa.co.uk

At Costa Coffee, we’ve been crafting with heart and changing the coffee game since 1971. Now part of The Coca-Cola Company, we proudly operate in over 50 countries, and we’re still growing! And we’re much more than our beloved stores. Consumers all over the world can now enjoy Costa Coffee in our Ready-To-Drink range, our innovative self-serve machines, including Express, or our thriving At Home offering. And let’s not forget our global partnerships that help us trailblaze new markets and spaces every single day. Here at Costa, we’re all about reimagining coffee experiences to make a difference.*** Along with our growth ambitions, we really do care about the communities we serve. From local charity partners, to coffee farmers and our much-loved Costa Foundation, making a difference is part of who we are. At the heart of our culture are our values: discipline, passion, warmth, courage, and trust. We are Disciplined to Deliver, have a Passion for Progress, we Win with Warmth, have the Courage to Challenge, and are Trusted Team Players. For us, it’s about creating a supportive and inclusive environment where everyone can be themselves, take on new challenges and enjoy some amazing career experiences. Sound like your cup of coffee? Take a look at our latest opportunities below. https://costacareers.co.uk/

Carrefour

carrefour.fr

The Carrefour Group: one of the world’s leading retailers In 50 years, the Carrefour Group has become a world leader in the retail sector. The second largest retailer in the world and the largest in Europe, the Group now features four major grocery retail formats: hypermarkets, supermarkets, cash & carry and convenience stores. The Carrefour Group currently has over 9 900 company-owned and franchise stores. An international retailer A pioneer in countries such as Brazil in 1975 and China in 1995, the Group now operates on three major markets: Europe, Latin America and Asia. With a presence in more than 30 countries, it generates more than 55% of its sales outside France. A force in local economic development Everywhere it operates, the Carrefour Group demonstrates its commitment to local economic growth. Because retail involves people, it always gives priority to recruiting people who live locally, and to training its managers and staff on site. Very often, the Carrefour Group is the premier private employer in the countries in which it operates. This is obviously the case in France – where the group was founded – but it also holds true in countries such as Brazil, Argentina and Italy. At the same time, the Group gives priority to local supply chains. So 75% of all its food products come from local suppliers in the countries in which it operates.

BİM Birleşik Mağazalar A.Ş

bim.com.tr

Türkiye’de perakende sektörünün lideri olan BİM Birleşik Mağazalar A.Ş., temel gıda ve tüketim malzemelerinin uygun fiyat ve yüksek kaliteyle tüketiciye ulaştırılması hedefiyle faaliyetlerine 1995 yılında 21 mağazayla başlamıştır. Yüksek indirim (hard-discount) modelinin Türkiye’deki ilk temsilcisi olan BİM, portföyünde yaklaşık 900 ürün bulundururken aynı zamanda çok sayıda özel markalı ürünü de müşterilerine sunmaktadır. BİM, sadece ciro büyüklüğü açısından değil, aynı zamanda 2024 yıl sonu itibarıyla 87.343’ü Türkiye’de olmak üzere toplam 95.630 kişiye istihdam sağlayarak öne çıkmaktadır. Aralık 2024 itibarıyla Türkiye’de 12.089 BİM, 287 FİLE, Fas’ta 789 ve Mısır’da 418 BİM olmak üzere toplam 13.583 mağazası ile başta müşteri ve tedarikçileri olmak üzere tüm paydaşlarıyla kurduğu güvene dayalı ilişkiler ve çalışanlarının kusursuz hizmet anlayışıyla faaliyetlerine devam etmektedir. BİM Birleşik Mağazalar A.Ş. the leader of the retail industry in Türkiye, started its operations in 1995 with 21 stores, with the aim of delivering basic food and consumer goods to consumers at affordable prices and high quality. BİM, the first representative of the hard-discount model in Türkiye has approximately 900 products in its portfolio and offers many private label products to its customers. BİM stands out not only in terms of turnover size, but also by providing employment to a total of 95.630 people, 87.343 of which are in Türkiye, by the end of 2024. As of December 2024, it continues its activities with 13,583 stores, including 12,089 BİM, 287 FİLE stores in Türkiye 789 BİM stores in Morocco and 418 BİM stores in Egypt, with the trust-based relationships it has established with all its stakeholders, especially its customers and suppliers, and the perfect service understanding of its employees.

Shoppers Drug Mart

shoppersdrugmart.ca

Built on a foundation of professional expertise and personal service, Shoppers Drug Mart has been meeting Canadians' health care needs for 50 years. What was once a small pharmacy in Toronto has grown into an organization of over 1,200 stores from coast to coast, becoming an indelible part of the lives of Canadians, young and old. Yet despite our growth, we have never forgotten our origins. We have always remained true to our belief that the personal satisfaction of each and every customer is at the root of our success - and it can only be ensured by the commitment of people who realize that success is built one customer at a time.

Morrisons

morrisons.jobs

Our team of friendly faces works as one to provide shopping trips and a career experience you won’t find anywhere else. Together we work the Morrisons way. Constantly looking to do things even better, we work in partnership with our communities, colleagues, suppliers and British farmers to provide our customers with the freshest food at great value for money. Our people ‘Make Morrisons’. Our team spirit really is hard to beat. At the top of our game in all kinds of roles, we work as one team in our stores, distribution centres, manufacturing sites and Head office. In return for looking after our customers, we look after our people with great perks, lots of career opportunities and the training and support everyone needs to be the best they can be.

PUMA Group

puma.com

PUMA is one of the world’s leading sports brands, designing, developing, selling and marketing footwear, apparel and accessories. For more than 75 years, PUMA has relentlessly pushed sport and culture forward by creating fast products for the world’s fastest athletes. PUMA offers performance and sport-inspired lifestyle products in categories such as Football, Running and Training, Basketball, Golf, and Motorsports. It collaborates with renowned designers and brands to bring sport influences into street culture and fashion. The PUMA Group owns the brands PUMA, Cobra Golf and stichd. The company operates in more than 120 countries, employs around 22,000 people worldwide, and is headquartered in Herzogenaurach/Germany.

Loading…

NEWS

Castorama CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

April 17, 2023 07:00 AM

UTD wins first place in sword fighting tournament

UTD swordsmen clashed blades and brought home first and third-place accolades on April 2 in the second-ever Texas College HEMA Alliance...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…