CBC/Radio-Canada
Company Details
Linkedin ID:
cbcradiocanada
Website:
Employees number:
13,572
Number of followers:
120,098
NAICS:
515
Industry Type:
Homepage:
radio-canada.ca
IP Addresses:
0
Company ID:
CBC_2316615
Scan Status:
In-progress
CBC/Radio-Canada Company CyberSecurity Posture
radio-canada.ca
CBC/Radio-Canada is Canada's national public broadcaster and a strong advocate of Canadian culture. We offer a unique space and a fresh Canadian perspective with unmatched cultural, musical and documentary programming. We do it in French, English and eight Aboriginal languages. Our activities promote creative work and contribute to the local economy. In television only, our investments in independent Canadian productions fund more than 10,000 jobs across the country. For a complete list of our current job opportunities, visit cbc.radio-canada.ca/jobs
CBC/Radio-Canada A.I CyberSecurity Scoring
CBC/Radio-Canada Risk Score (AI oriented)Between 750 and 799
CBC/Radio-Canada
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CBC/Radio-Canada Global Score (TPRM)XXXX
CBC/Radio-Canada
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CBC/Radio-Canada Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
CBC
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: The CBC's more than 20,000 of its past, present, and contract employees personal and financial information were at risk after a break-in and the theft of computer equipment. An intruder broke into a secure area of CBC/Radio-Canada & stole a piece of computer equipment. The stolen equipment contains electronic files, including some financial information. A letter has been sent to the home addresses of all employees detailing the information that has been put at risk including names, bank accounts, and amounts deposited into bank accounts by CBC. CBC has budgeted $300,000 to cover the cost of notifying those affected by the breach and providing employees with a year's worth of credit monitoring and insurance against identity theft.
CBC/Radio-Canada Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CBC/Radio-Canada
Incidents vs Broadcast Media Production and Distribution Industry Average (This Year)
No incidents recorded for CBC/Radio-Canada in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for CBC/Radio-Canada in 2025.
Incident Types CBC/Radio-Canada vs Broadcast Media Production and Distribution Industry Avg (This Year)
No incidents recorded for CBC/Radio-Canada in 2025.
Incident History — CBC/Radio-Canada (X = Date, Y = Severity)
CBC/Radio-Canada cyber incidents detection timeline including parent company and subsidiaries
CBC/Radio-Canada Company Subsidiaries
CBC/Radio-Canada is Canada's national public broadcaster and a strong advocate of Canadian culture. We offer a unique space and a fresh Canadian perspective with unmatched cultural, musical and documentary programming. We do it in French, English and eight Aboriginal languages. Our activities promote creative work and contribute to the local economy. In television only, our investments in independent Canadian productions fund more than 10,000 jobs across the country. For a complete list of our current job opportunities, visit cbc.radio-canada.ca/jobs
Loading...
CBC/Radio-Canada Similar Companies
ITI Group
ITI Group was originally founded in 1984 by Jan Wejchert and Mariusz Walter. Bruno Valsangiacomo joined in 1991 as the third Founding Shareholder. They were known as the 3 Musqueteers creating from scratch leading businesses in Poland. ITI Group was a pioneer in building state of the art businesses
With over a quarter of a billion monthly listeners in the U.S. and over 129 million social followers, iHeartMedia has the largest national reach of any radio or television outlet in America. As the leader in multiplatform connections, it also serves over 150 local markets through 858 owned radio sta
MultiChoice Group
MultiChoice Group is a leading entertainment company and we’re home to some of the most recognised brands on the continent. Our entertainment platforms – DStv, GOtv, Showmax and DStv Now – are a hub for more than 19 million people across 50 countries. Through Irdeto, we‘re a world leader in content
ESPN
ESPN is the leading multiplatform sports entertainment brand that features seven U.S. television networks, the leading sports app, direct-to-consumer ESPN+, leading social and digital platforms, ESPN.com, ESPN Audio, endeavors on every continent around the world, and more. ESPN is 80 percent owned b
Fox Corporation
Under the FOX banner, we produce and distribute content through some of the world’s leading and most valued brands, including: FOX News Media, FOX Sports, FOX Entertainment, FOX Television Stations and Tubi Media Group. We empower a diverse range of creators to imagine and develop culturally signifi
Sky
Sky connects and entertains millions of people across Europe. At the heart of everything we do, is a belief that people deserve better. For decades, we’ve shaken up every category we entered to give people what they love, to make life a little easier and to provide great value. That’s how we bring m
Alalam News Network
قناة العالم هي قناة تلفزيونية إخبارية مقرها طهران، ايران، رفعت منذ انطلاقتها في شباط/فبراير عام 2003 شعار "الحقيقة كما تراها". وتسعى قناة العالم لتوفير فرصة للتفاعل والتواصل بين شعوب المنطقة والشعوب المسلمة في جميع بقاع الأرض من خلال طرحها لمشاكلهم الحقيقية، خاصة في ظل الهجمة الشرسة لوسائل الإعلام
.png)
CBC/Radio-Canada CyberSecurity News
November 14, 2025 06:54 PM
Are you being overbilled by Nova Scotia Power? Some say usage estimates have been off since data breach
More than six months after a cybersecurity attack against Nova Scotia Power led to the breach of personal information from hundreds of...
November 14, 2025 09:00 AM
Santé Québec IT project derailed by series of mistakes, government audit finds
Quebec's Health Ministry made several mistakes and "failed to meet its obligations," which led to the derailment of Santé Québec's digital...
November 02, 2025 07:00 AM
Want to protect yourself from today’s cybersecurity and AI threats? Here are a few tips
The Montreal Connect conference was filled with people on the front lines of today's digital landscape, including self-described ethical...
October 30, 2025 07:00 AM
Hacktivists targeting water, energy and food systems, Canadian security centre warns
The Canadian Centre for Cyber Security warns that hacktivists have been tampering with online systems that control water, energy and...
October 21, 2025 07:00 AM
Ottawa plagued by 'significant gaps' responding to cyberattacks: AG
There are “significant gaps” in the way the federal government responds to the increasing number of dangerous cyberattacks,...
October 08, 2025 07:00 AM
Quebec asks schools, daycares to stop using app putting children's personal information at risk
Two weeks after being warned of security issues linked to an app that puts the personal information of Quebec children and parents at risk...
October 02, 2025 07:00 AM
SAIT launches 'immersive' cybersecurity facility at downtown campus
To kick off Cyber Security Awareness Month, SAIT has launched a new facility at its downtown campus that offers hands-on learning about...
September 26, 2025 07:00 AM
Federal cyber agency warns of ’serious and urgent’ attack on tech used by remote workers
Government cyber agencies around the world are rushing to clamp down on what appears to be an advanced and sophisticated espionage campaign...
September 22, 2025 07:00 AM
Stellantis reports data breach affecting North American customers
Stellantis detected unauthorized access to a third-party service provider's platform that supports its North American customer service...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CBC/Radio-Canada CyberSecurity History Information
Official Website of CBC/Radio-Canada
The official website of CBC/Radio-Canada is https://cbc.radio-canada.ca.
CBC/Radio-Canada’s AI-Generated Cybersecurity Score
According to Rankiteo, CBC/Radio-Canada’s AI-generated cybersecurity score is 780, reflecting their Fair security posture.
How many security badges does CBC/Radio-Canada’ have ?
According to Rankiteo, CBC/Radio-Canada currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does CBC/Radio-Canada have SOC 2 Type 1 certification ?
According to Rankiteo, CBC/Radio-Canada is not certified under SOC 2 Type 1.
Does CBC/Radio-Canada have SOC 2 Type 2 certification ?
According to Rankiteo, CBC/Radio-Canada does not hold a SOC 2 Type 2 certification.
Does CBC/Radio-Canada comply with GDPR ?
According to Rankiteo, CBC/Radio-Canada is not listed as GDPR compliant.
Does CBC/Radio-Canada have PCI DSS certification ?
According to Rankiteo, CBC/Radio-Canada does not currently maintain PCI DSS compliance.
Does CBC/Radio-Canada comply with HIPAA ?
According to Rankiteo, CBC/Radio-Canada is not compliant with HIPAA regulations.
Does CBC/Radio-Canada have ISO 27001 certification ?
According to Rankiteo,CBC/Radio-Canada is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of CBC/Radio-Canada
CBC/Radio-Canada operates primarily in the Broadcast Media Production and Distribution industry.
Number of Employees at CBC/Radio-Canada
CBC/Radio-Canada employs approximately 13,572 people worldwide.
Subsidiaries Owned by CBC/Radio-Canada
CBC/Radio-Canada presently has no subsidiaries across any sectors.
CBC/Radio-Canada’s LinkedIn Followers
CBC/Radio-Canada’s official LinkedIn profile has approximately 120,098 followers.
NAICS Classification of CBC/Radio-Canada
CBC/Radio-Canada is classified under the NAICS code 515, which corresponds to Broadcasting (except Internet).
CBC/Radio-Canada’s Presence on Crunchbase
No, CBC/Radio-Canada does not have a profile on Crunchbase.
CBC/Radio-Canada’s Presence on LinkedIn
Yes, CBC/Radio-Canada maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cbcradiocanada.
Cybersecurity Incidents Involving CBC/Radio-Canada
As of November 28, 2025, Rankiteo reports that CBC/Radio-Canada has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
CBC/Radio-Canada has an estimated 3,945 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at CBC/Radio-Canada ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
What was the total financial impact of these incidents on CBC/Radio-Canada ?
Total Financial Loss: The total financial loss from these incidents is estimated to be $300 thousand.
How does CBC/Radio-Canada detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an remediation measures with credit monitoring, remediation measures with identity theft insurance, and communication strategy with letter to employees..
Incident Details
Can you provide details on each incident ?
Title: CBC Data Breach via Equipment Theft
Description: An intruder broke into a secure area of CBC/Radio-Canada and stole a piece of computer equipment containing personal and financial information of more than 20,000 past, present, and contract employees.
Type: Data Breach
Attack Vector: Physical Theft
Vulnerability Exploited: Physical Security
Threat Actor: Intruder
Motivation: Theft of Data
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Physical Access.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach CBC12317722
Financial Loss: $300,000
Data Compromised: Personal information, Financial information
Identity Theft Risk: High
Payment Information Risk: High
What is the average financial loss per incident ?
Average Financial Loss: The average financial loss per incident is $300.00 thousand.
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Personal Information, Financial Information and .
Which entities were affected by each incident ?
Incident : Data Breach CBC12317722
Entity Name: CBC/Radio-Canada
Entity Type: Media Organization
Industry: Media and Broadcasting
Location: Canada
Size: Large
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach CBC12317722
Remediation Measures: Credit MonitoringIdentity Theft Insurance
Communication Strategy: Letter to Employees
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach CBC12317722
Type of Data Compromised: Personal information, Financial information
Number of Records Exposed: 20,000
Sensitivity of Data: High
File Types Exposed: Electronic Files
Personally Identifiable Information: NamesBank AccountsAmounts Deposited
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Credit Monitoring, Identity Theft Insurance, .
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Letter To Employees.
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Data Breach CBC12317722
Entry Point: Physical Access
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Data Breach CBC12317722
Root Causes: Inadequate Physical Security
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Intruder.
Impact of the Incidents
What was the highest financial loss from an incident ?
Highest Financial Loss: The highest financial loss from an incident was $300,000.
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Personal Information, Financial Information and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Personal Information and Financial Information.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 20.0K.
Initial Access Broker
What was the most recent entry point used by an initial access broker ?
Most Recent Entry Point: The most recent entry point used by an initial access broker was an Physical Access.
.png)
Latest Global CVEs (Not Company-Specific)
Description
ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description
Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.
Description
Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=cbcradiocanada' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
