Ericsson
Company Details
Linkedin ID:
ericsson
Website:
Employees number:
97,356
Number of followers:
2,217,176
NAICS:
517
Industry Type:
Homepage:
ericsson.com
IP Addresses:
66
Company ID:
ERI_8911153
Scan Status:
Completed
Ericsson Company CyberSecurity Posture
ericsson.com
The future of mobile isn’t on the horizon, it’s happening now. At Ericsson, we’re building the foundation for an open network ecosystem where industries, developers, and enterprises thrive. The convergence of 5G, AI, cloud, and network APIs isn’t just a technological shift; it’s a transformation that is redefining industries and enhancing everyday life. Open, programmable networks are enabling real-time innovation and unlocking new business models across the globe. Imagine a world where developers can dynamically access network capabilities on demand, where enterprises don’t just use connectivity but shape it. This isn’t a distant vision, it’s the ecosystem we’re creating today. Collaboration fuels everything we do. By working across industries, we’re designing a future where connectivity isn’t just seamless. It’s intelligent, programmable, and transformative. The shift is happening. Are you part of it?
Ericsson A.I CyberSecurity Scoring
Ericsson Risk Score (AI oriented)Between 800 and 849
Ericsson
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Ericsson Global Score (TPRM)XXXX
Ericsson
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Ericsson Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Ericsson
Vulnerability
Rankiteo Explanation
Attack threatening the organization's existence
Description: A new bug was recently discovered in Ericsson Network Manager product by the TIM Red Team Research. The bug focuses on the CWE Exposure of Resource to Wrong Sphere and results in incorrect access-control behavior. Variuos security issues can be encountered of it gets exploited.
Ericsson Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Ericsson
Incidents vs Telecommunications Industry Average (This Year)
No incidents recorded for Ericsson in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Ericsson in 2025.
Incident Types Ericsson vs Telecommunications Industry Avg (This Year)
No incidents recorded for Ericsson in 2025.
Incident History — Ericsson (X = Date, Y = Severity)
Ericsson cyber incidents detection timeline including parent company and subsidiaries
Ericsson Company Subsidiaries
The future of mobile isn’t on the horizon, it’s happening now. At Ericsson, we’re building the foundation for an open network ecosystem where industries, developers, and enterprises thrive. The convergence of 5G, AI, cloud, and network APIs isn’t just a technological shift; it’s a transformation that is redefining industries and enhancing everyday life. Open, programmable networks are enabling real-time innovation and unlocking new business models across the globe. Imagine a world where developers can dynamically access network capabilities on demand, where enterprises don’t just use connectivity but shape it. This isn’t a distant vision, it’s the ecosystem we’re creating today. Collaboration fuels everything we do. By working across industries, we’re designing a future where connectivity isn’t just seamless. It’s intelligent, programmable, and transformative. The shift is happening. Are you part of it?
Loading...
Ericsson Similar Companies
Lumen Technologies
Lumen connects the world. We digitally connect people, data and applications – quickly, securely and effortlessly. Everything we do at Lumen takes advantage of our network strength. From metro connectivity to long-haul data transport to our edge cloud, security, and managed service capabilities, we
Telekom Malaysia
TM is the national connectivity and digital infrastructure provider and Malaysia’s leading integrated telco; offering a comprehensive suite of communication services and solutions in fixed (telephony and broadband), mobility, content, WiFi, ICT, Cloud and smart services. TM is driven by stakeholder
Motorola Solutions
About Motorola Solutions | Solving for safer Safety and security are at the heart of everything we do at Motorola Solutions. We build and connect technologies to help protect people, property and places. Our solutions foster the collaboration that’s critical for safer communities, safer schools, sa
EE
EE, part of BT Group, is the largest and most advanced mobile communications company in the UK, delivering mobile and fixed communications services to consumers. We run the UK's biggest and fastest mobile network, having pioneered the UK's first superfast 4G mobile service in October 2012 and was
Airtel Africa
Airtel Africa is a leading provider of telecommunications and mobile money services, with a presence in 14 countries in Africa, primarily in East Africa and Central and West Africa. Airtel Africa offers an integrated suite of telecommunications solutions to its subscribers, including mobile voice a
We’re one of the world’s leading communications services companies. At BT Group, the solutions we sell are integral to modern life. Our purpose is as simple as it is ambitious: we connect for good. There are no limits to what people can do when they connect. And as technology changes our world, co
Telecom Egypt
Since its establishment in 1854, Telecom Egypt has played a pivotal role in driving growth within the local ICT market capitalizing on its vast infrastructure, which is one of the largest in the region. Its vast domestic and international infrastructure has helped it serve various customer groups in
stc
We are a forward-focused digital champion always been focused on innovation and evolution. Our purpose is to create and bring greater dimension and richness to people’s personal and professional lives. With stc, You will always be empowered to focus on delivering what’s next through collaborati
Bharti Enterprises
Bharti Enterprises is one of India’s leading business group with diversified interests in telecom, financial services, real estate, hospitality, agri and food. Bharti has been a pioneering force in the Indian telecom sector with many firsts and innovations to its credit. Bharti Airtel, the group's
.png)
Ericsson CyberSecurity News
November 06, 2025 08:00 AM
AI standards, IP, cybersecurity at risk as US government shutdown drags on
AI standards, cybersecurity frameworks and tech policy is paused at NIST. U.S. Copyright Office is closed but accepting filings for...
November 05, 2025 05:36 AM
Batelco taps Ericsson to expand 5G coverage in Bahrain
Ericsson announced on Tuesday that it has renewed its partnership with Bahrainian telco Batelco by Beyon, which will deploy Ericsson's...
November 03, 2025 07:43 PM
Private network security maven OneLayer scores utilities deal with Nokia
Private network security startup OneLayer signs a utility partnership with Nokia; The startup has already told Fierce that utilities are one...
October 20, 2025 07:00 AM
Ericsson on AI, satellite, and 5G powering mission-critical networks
Ericsson is deepening its focus on mission-critical connectivity as sectors such as public safety, defence, utilities and transport demand...
October 20, 2025 07:00 AM
The future of railways is connected with AI and 5G technologies
At the recently concluded India Mobile Congress in India, Ericsson showcased the future of rail operations with a demo that brings robotics,...
October 15, 2025 06:39 AM
Pioneering 6G and Cybersecurity in Italy
The search for the development of 6G technologies and cybersecurity starts from Pagani. It is here that Ericsson has decided to invest in research and...
October 13, 2025 07:00 AM
BT develops ‘network immune system’
BT researchers working with Ericsson propose a response to cyber threats that mimics biological immunityThe AI-based offering could be...
October 06, 2025 07:00 AM
Airbus and Ericsson accelerate industrial digitalization with private 5G deployment at Hamburg and Toulouse plants
Airbus and Ericsson (NASDAQ: ERIC) have successfully deployed a private 5G solution at the Airbus production site in Hamburg, with another...
September 19, 2025 07:00 AM
Ericsson-backed Aduna eyes Taiwan in global API expansion
In a bid to accelerate innovation in 5G and cloud-native mobile networking, Swedish telecom giant Ericsson has launched a new global joint...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Ericsson CyberSecurity History Information
Official Website of Ericsson
The official website of Ericsson is http://www.ericsson.com.
Ericsson’s AI-Generated Cybersecurity Score
According to Rankiteo, Ericsson’s AI-generated cybersecurity score is 805, reflecting their Good security posture.
How many security badges does Ericsson’ have ?
According to Rankiteo, Ericsson currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Ericsson have SOC 2 Type 1 certification ?
According to Rankiteo, Ericsson is not certified under SOC 2 Type 1.
Does Ericsson have SOC 2 Type 2 certification ?
According to Rankiteo, Ericsson does not hold a SOC 2 Type 2 certification.
Does Ericsson comply with GDPR ?
According to Rankiteo, Ericsson is not listed as GDPR compliant.
Does Ericsson have PCI DSS certification ?
According to Rankiteo, Ericsson does not currently maintain PCI DSS compliance.
Does Ericsson comply with HIPAA ?
According to Rankiteo, Ericsson is not compliant with HIPAA regulations.
Does Ericsson have ISO 27001 certification ?
According to Rankiteo,Ericsson is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Ericsson
Ericsson operates primarily in the Telecommunications industry.
Number of Employees at Ericsson
Ericsson employs approximately 97,356 people worldwide.
Subsidiaries Owned by Ericsson
Ericsson presently has no subsidiaries across any sectors.
Ericsson’s LinkedIn Followers
Ericsson’s official LinkedIn profile has approximately 2,217,176 followers.
NAICS Classification of Ericsson
Ericsson is classified under the NAICS code 517, which corresponds to Telecommunications.
Ericsson’s Presence on Crunchbase
No, Ericsson does not have a profile on Crunchbase.
Ericsson’s Presence on LinkedIn
Yes, Ericsson maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/ericsson.
Cybersecurity Incidents Involving Ericsson
As of November 27, 2025, Rankiteo reports that Ericsson has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Ericsson has an estimated 9,535 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Ericsson ?
Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability.
Incident Details
Can you provide details on each incident ?
Title: Ericsson Network Manager Product Bug
Description: A new bug was recently discovered in Ericsson Network Manager product by the TIM Red Team Research. The bug focuses on the CWE Exposure of Resource to Wrong Sphere and results in incorrect access-control behavior. Various security issues can be encountered if it gets exploited.
Type: Vulnerability
Attack Vector: Exposure of Resource to Wrong Sphere
Vulnerability Exploited: CWE Exposure of Resource to Wrong Sphere
Threat Actor: TIM Red Team Research
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Vulnerability.
Impact of the Incidents
Which entities were affected by each incident ?
Incident : Vulnerability ERI1721322
Entity Name: Ericsson
Entity Type: Corporation
Industry: Telecommunications
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an TIM Red Team Research.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=ericsson' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
