What is the official website of E.Leclerc ?

The official website of E.Leclerc is http://www.e.leclerc.

What is E.Leclerc's cybersecurity risk score?

E.Leclerc has an AI-generated cybersecurity risk score of 791 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has E.Leclerc experienced?

According to Rankiteo, E.Leclerc currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has E.Leclerc been affected by any supply chain cyber incidents ?

According to Rankiteo, E.Leclerc has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does E.Leclerc have SOC 2 Type 1 certification ?

According to Rankiteo, E.Leclerc is not certified under SOC 2 Type 1.

Does E.Leclerc have SOC 2 Type 2 certification ?

According to Rankiteo, E.Leclerc does not hold a SOC 2 Type 2 certification.

Does E.Leclerc comply with GDPR ?

According to Rankiteo, E.Leclerc is not listed as GDPR compliant.

Does E.Leclerc have PCI DSS certification ?

According to Rankiteo, E.Leclerc does not currently maintain PCI DSS compliance.

Does E.Leclerc comply with HIPAA ?

According to Rankiteo, E.Leclerc is not compliant with HIPAA regulations.

Does E.Leclerc have ISO 27001 certification ?

According to Rankiteo,E.Leclerc is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does E.Leclerc operate in ?

E.Leclerc operates primarily in the Retail Groceries industry.

How many employees does E.Leclerc have ?

E.Leclerc employs approximately 40,700 people worldwide.

Does E.Leclerc own any subsidiaries ?

E.Leclerc presently has no subsidiaries across any sectors.

How many LinkedIn followers does E.Leclerc have ?

E.Leclerc's official LinkedIn profile has approximately 261,280 followers.

What is the NAICS classification code for E.Leclerc ?

E.Leclerc is classified under the NAICS code 44511, which corresponds to Supermarkets and Other Grocery (except Convenience) Stores.

Does E.Leclerc have a Crunchbase profile ?

No, E.Leclerc does not have a profile on Crunchbase.

Does E.Leclerc have a LinkedIn profile ?

Yes, E.Leclerc maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/e-leclerc.

How many cybersecurity incidents has E.Leclerc experienced ?

As of June 6, 2026, Rankiteo reports that E.Leclerc has not experienced any cybersecurity incidents.

How many peer or competitor companies does E.Leclerc have ?

E.Leclerc has an estimated 404 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

E.Leclerc

Boost Score +25 with badge (5 left)

791

/1000

Fair

816

/1000

Good

E.Leclerc Vendor Cyber Rating & Cyber Score

e.leclerc

Add Your Compliance Badge

Depuis plus de 70 ans, E.Leclerc poursuit un objectif : démocratiser la consommation, c'est l'expression de son utilité sociale. Cet engagement au service du plus grand nombre doit permettre à chacun d'accéder aux produits et services dont il a besoin ou envie, au quotidien. L'accessibilité, qu'elle soit une question de prix, de proximité ou d'information, est un combat permanent, sans cesse renouvelé par les attentes des consommateurs et les enjeux de société. Améliorer le pouvoir d'achat des consommateurs au quotidien ; Briser les monopoles pour ouvrir de nouveaux marchés, comme la parapharmacie ou les produits culturels ; Soutenir à la fois les producteurs français au travers des "Alliances Locales", et la préservation de

E.Leclerc A.I CyberSecurity Scoring

Scoring History

E.Leclerc

E.Leclerc CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

E.Leclerc Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for E.Leclerc

Incidents vs Retail Groceries Industry Avg (This Year)

No incidents recorded for E.Leclerc in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for E.Leclerc in 2026.

Incident Types E.Leclerc vs Retail Groceries Industry Avg (This Year)

No incidents recorded for E.Leclerc in 2026.

Incident History - E.Leclerc (X = Date, Y = Severity)

Loading…

SUBSIDIARY

E.Leclerc Subsidiaries

Parent Company

E.Leclerc

Retail Groceries

Website: http://www.e.leclerc

Company Size: 10,001+ employees

No subsidiary data available for this company.

Loading…

E.Leclerc Similar Companies

Winn-Dixie

winn-dixie.com

Founded in 1925, Winn-Dixie grocery stores, liquor stores and in-store pharmacies serve communities throughout five southeastern states - Alabama, Florida, Georgia, Louisiana and Mississippi. Winn-Dixie Stores, Inc. is a subsidiary of The Winn-Dixie Company, which is one of the largest supermarket chains based in the Southeast. About The Winn-Dixie Company The Winn-Dixie Company, based in Jacksonville, Florida, is a trusted neighborhood grocer with deep roots across Florida and southern Georgia. Building on more than a century of legacy, the company is shaping the future of neighborhood grocery through continued store investments, innovative formats and a seamless omnichannel experience that delivers exceptional value both in stores and online. Guided by its purpose to feed and enrich the communities it serves, The Winn-Dixie Company is known for exceptional service and locally authentic stores. The grocer is committed to offering fresh, high-quality products and meaningful value through its nationally recognized Winn-Dixie Rewards program. For more information and updates, visit WinnDixie.com and follow @WinnDixie on Facebook, Instagram, and LinkedIn.

Tottus

tottus.com

Nuestro propósito: Simplificar y Disfrutar más la vida. Pertenecemos a Falabella, una de las mayores compañías de retail de América Latina. En 2002 ingresamos al mercado peruano bajo la marca Tottus y posteriormente al chileno en 2004. Somos un equipo que trabajamos para superar cada día la expectativas de nuestros clientes y colaboradores. Creemos en nuestros talentos internos y buscamos la excelencia en todos nuestros procesos, con el único propósito de poder simplificar y disfrutar más la vida. Además trabajamos para vincularnos cara a cara con la comunidad, porque somos parte del territorio en el que estamos insertos con nuestra operación y con cada acción construimos una historia y guiamos un destino de largo plazo con la sociedad.

Giant Eagle, Inc.

gianteagle.com

Giant Eagle strives to be a best place to work in the eyes of the nearly 36,000 individuals who work in our stores, pharmacies, warehouses and in our corporate offices. At Giant Eagle, you'll have the opportunity to develop a real career with countless opportunities for you to grow with us. The way we conduct business and treat one another – our Team Members, customers, community members and valued partners – defines what the Giant Eagle culture is all about. Our Purpose Beyond Profit is "We are one Giant Eagle Family. Together, we provide our communities with life's essentials, so our neighbors have the opportunity to thrive." We do this by staying true to our Core Values: Respect All: We go out of our way to treat our guests and one another with kindness and dignity. Think Team: We value different viewpoints and love working together as family. See It, Own It: We keep our heads up, see opportunity and take action. Work Smart: We find ways to simplify. Live Well: We help everyone live a healthy, balance life. Do Right: We are ethical, giving, and good stewards of the world around us. Founded in 1931, Giant Eagle is one of the 40 largest family-operated companies in the US and operates Giant Eagle, GetGo and Market District stores. As we continue to grow and expand, our commitment to our core values and the well-being of our Team Members, customers, and our communities is as strong as ever. We listen to what you have to say and do everything we can to provide a safe, caring, family-oriented environment. To learn more about the benefits we have to offer, please visit jobs.gianteagle.com.

Jumbo

jumbo.cl

Con un tamaño promedio de 8.250 m2, Hipermercados Jumbo ofrece un variado surtido de productos, que incluye alimentos, abarrotes y una amplia gama de artículos no comestibles, como vestuario, elementos para el hogar y electrodomésticos. Además de las marcas tradicionales, Jumbo ofrece productos de marca propia, las cuales han alcanzado un sólido y fuerte posicionamiento comercial, asociado principalmente a la variedad y excelente calidad. Considerando el volumen de ventas, Jumbo es uno de los principales participantes del negocio de supermercados en Chile. Posee un sólido y claro posicionamiento comercial en el segmento al que está dirigido, lo que le ha permitido mantener márgenes de venta positivos y superiores al promedio de la industria.

Loading…

NEWS

E.Leclerc CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 19, 2026 07:00 AM

Will AI Replace Cybersecurity? Here’s What We Know

Explore whether AI will replace cybersecurity professionals and learn why human expertise remains essential for security while AI enhances...

Read Article

January 08, 2026 08:00 AM

The U.K.’s Plan for Electronic Eavesdropping Poses Cybersecurity Risks

In September, the U.K. government ordered that Apple enable “access to encrypted cloud backups of U.K. citizens.” This order is more limited...

Read Article

October 22, 2025 07:00 AM

Microsoft Removing Support for Windows 10 Could Increase E-Waste, Cybersecurity Threats

Microsoft Removing Support for Windows 10 Could Increase E-Waste, Cybersecurity Threats · When Microsoft announced it was · Forcing users to...

Read Article

October 09, 2025 07:00 AM

Kasada Wins “e-Commerce Security Solution of the Year” in 2025 CyberSecurity Breakthrough Awards

Kasada has developed a radical approach to defeating automated cyber threats based on its unmatched understanding of the human minds behind them...

Read Article

October 06, 2025 07:00 AM

Active exploitation of vulnerability affecting Oracle E-Business Suite

What has happened? Oracle has published a security update to address an unauthenticated remote vulnerability (CVE-2025-61882) affecting Oracle E...

Read Article

August 19, 2025 07:00 AM

Paving the way for the future of cybersecurity

In West Virginia Executive, Chris Ramezan and Bill Walker highlight cybersecurity education at WVU and its benefit to the state.

Read Article

August 08, 2025 07:00 AM

US court system to boost cyber posture after hack of electronic case management tool

The breach may have revealed the identities of confidential informants involved in criminal cases in several federal district courts,...

Read Article

August 06, 2025 07:00 AM

FCC Urged to Fully Fund Remaining Cybersecurity Pilot Program Applicants

Withdrawn applications free up enough to fund all others in full, New York's E-rate coordinator argued.

Read Article

August 05, 2025 07:00 AM

Brazil’s new ‘E-Ciber’ National Cybersecurity Strategy established via decree

It strengthens regulatory and oversight measures, incentivizes adopting minimum security standards and insurance against cyber incidents, and...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…