What is the official website of GBC ?

The official website of GBC is http://www.GBC.com/.

What is GBC's cybersecurity risk score?

GBC has an AI-generated cybersecurity risk score of 760 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has GBC experienced?

According to Rankiteo, GBC currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has GBC been affected by any supply chain cyber incidents ?

According to Rankiteo, GBC has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does GBC have SOC 2 Type 1 certification ?

According to Rankiteo, GBC is not certified under SOC 2 Type 1.

Does GBC have SOC 2 Type 2 certification ?

According to Rankiteo, GBC does not hold a SOC 2 Type 2 certification.

Does GBC comply with GDPR ?

According to Rankiteo, GBC is not listed as GDPR compliant.

Does GBC have PCI DSS certification ?

According to Rankiteo, GBC does not currently maintain PCI DSS compliance.

Does GBC comply with HIPAA ?

According to Rankiteo, GBC is not compliant with HIPAA regulations.

Does GBC have ISO 27001 certification ?

According to Rankiteo,GBC is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does GBC operate in ?

GBC operates primarily in the Retail Office Equipment industry.

How many employees does GBC have ?

GBC employs approximately 1,296 people worldwide.

Does GBC own any subsidiaries ?

GBC presently has no subsidiaries across any sectors.

How many LinkedIn followers does GBC have ?

GBC's official LinkedIn profile has approximately 3,349 followers.

What is the NAICS classification code for GBC ?

GBC is classified under the NAICS code 45321, which corresponds to Office Supplies and Stationery Stores.

Does GBC have a Crunchbase profile ?

No, GBC does not have a profile on Crunchbase.

Does GBC have a LinkedIn profile ?

Yes, GBC maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/gbc.

How many cybersecurity incidents has GBC experienced ?

As of June 21, 2026, Rankiteo reports that GBC has not experienced any cybersecurity incidents.

How many peer or competitor companies does GBC have ?

GBC has an estimated 2,187 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

GBC

Boost Score +25 with badge (5 left)

760

/1000

Fair

785

/1000

Fair

GBC Vendor Cyber Rating & Cyber Score

gbc.com

Add Your Compliance Badge

At GBC®, we make smart tools for businesses, schools and homes that get the job done well, every time. Founded in 1947, and headquartered in Chicago, IL, we are the market leaders in shredding, binding and lamination focused on helping professionals accomplish more while working from home or the office. GBC® helps businesses, professionals, schools, and consumers present, protect, and preserve their documents. But well-designed equipment is only half our story. Our skilled employees in more than half a dozen countries are experts in their field, assisting clients around the globe move forward and succeed with excellent customer service. GBC® is a proud member of the ACCO Brands family - a U.S. based Fortune 500, NASDAQ listed

GBC A.I CyberSecurity Scoring

Scoring History

GBC

GBC CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

GBC Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for GBC

Incidents vs Retail Office Equipment Industry Avg (This Year)

No incidents recorded for GBC in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for GBC in 2026.

Incident Types GBC vs Retail Office Equipment Industry Avg (This Year)

No incidents recorded for GBC in 2026.

Incident History - GBC (X = Date, Y = Severity)

Loading…

SUBSIDIARY

GBC Subsidiaries

GBC

Retail Office Equipment

Website: http://www.GBC.com/

Company Size: 1,296

ACCO BrandsManufacturing

TilibraManufacturing

XyronManufacturing

LEITZ ACCO Brands GmbH & Co KGRetail Office Equipment

ACCO Brands EuropeManufacturing

EsselteRetail Office Equipment

RapidManufacturing

Nobo EuropeRetail Office Equipment

Rexel EuropeRetail Office Equipment

KensingtonComputers and Electronics Manufacturing

Derwent ArtRetail

GBC EuropeRetail Office Equipment

LeitzEinzelhandel: Büroausstattung

GBC Integrated OEM Solutions, an ACCO Brands GroupIndustrial Machinery Manufacturing

AT-A-GLANCERetail Office Equipment

ACCO BRANDS CHILE S.A.Manufacturing

LucidSoundComputers and Electronics Manufacturing

TruSens®Wellness and Fitness Services

Artline PerúManufacturing

Swingline BrasilManufacturing

Artline Official - part of Shachihata EuropeRetail Office Equipment

PowerAEntertainment Providers

QuartetRetail Office Equipment

artline stationeryManufacturing

Loading…

GBC Similar Companies

Staples

cb staples.com

For nearly 40 years, Staples has been a trusted leader in delivering end-to-end workplace solutions for consumers and businesses of all sizes across a broad range of industries. The company provides a comprehensive portfolio of products, strategic solutions, and services including print and marketing, shipping, technology, and travel. Its specialized assortment includes high-quality office supplies, janitorial products, technology, furniture, and breakroom essentials, all supported by best-in-class supply chain capabilities and a dedicated team of experts committed to making the workday easier. Headquartered near Boston, Massachusetts, Staples operates throughout North America via direct B2B sales, e-commerce, and more than 900 retail stores. To learn more, visit your local U.S. Staples store, download the Staples app, explore Staples.com or StaplesBusiness.com, or follow @Staples on social media.

The ODP Corporation

cb theodpcorp.com

The ODP Corporation (NASDAQ:ODP) is a leading provider of products and services through an integrated business-to-business (B2B) distribution platform and omnichannel presence, which includes world-class supply chain and distribution operations, dedicated sales professionals, a B2B digital procurement solution, online presence, and a network of Office Depot and OfficeMax retail stores. Through its operating companies Office Depot, LLC; ODP Business Solutions, LLC; Veyer, LLC; and Varis, LLC, The ODP Corporation empowers every business, professional, and consumer to achieve more every day.

Grainger

https://www.grainger.com/?gucid=N:N:SM:Organic:LN:CSM-4520:Y1IDXW:20240420:APZ_1

As a leading business-to-business organization, more than 4.5 million customers worldwide rely on Grainger for products in categories such as safety, material handling and metalworking, along with services like inventory management and technical support. For our Team Members, Grainger provides value for customers, fostering an engaging culture and driving strong financial results. Our welcoming workplace enables you to learn, grow and make a difference by keeping businesses running and their people safe. For our customers we offer more than a million industrial-quality products, a consultative sales approach, technical and product expertise, a premium digital experience and the ability to get the right products to youright when you need them. Count on us for supplies and solutions for every industry. Visit Grainger.com® to learn more.

Office Depot

cb odp.biz

Office Depot, LLC, an operating company of The ODP Corporation, is a leading specialty retailer providing innovative products and services delivered through a fully integrated omnichannel platform of Office Depot and OfficeMax retail stores and an award-winning online presence, OfficeDepot.com, to support the productivity and organization of its small business, home office and education clients. Office Depot is committed to enabling its clients’ success, strengthening local communities and providing equal opportunities for all. For more information, visit officedepot.com, download the Office Depot app on your iPhone or Android and follow @officedepot on LinkedIn, Facebook, Twitter, Instagram and TikTok. Office Depot is a trademark of The Office Club, Inc. OfficeMax is a trademark of OMX, Inc. ©2023 Office Depot, LLC. All rights reserved. Any other product or company names mentioned herein are the trademarks of their respective owners.

Loading…

NEWS

GBC CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

November 01, 2025 03:49 PM

Parliament will only pass the Cybersecurity Amendment bill after consensus building- Dr. Thomas Anabah

By Love Wilhelmina Abanonave. The Cybersecurity (Amendment) Bill, 2025 proposes sweeping new powers for the Cyber Security Authority,...

Read Article

October 28, 2025 10:13 AM

Kojo Oppong Nkrumah warns against criminalizing free speech in draft Cybersecurity Bill

The Member of Parliament for Ofoase-Ayirebi, Kojo Oppong Nkrumah, has cautioned the government to be deliberate in its approach to...

Read Article

October 11, 2025 04:44 PM

First aid in cybersecurity crucial – David Gyedu

The Chief Executive Officer of Cyber1Defense and a cybersecurity expert, David Gyedu has emphasised the need to understand the first aid in cybersecurity.

Read Article

October 02, 2025 07:00 AM

Mobile technology bridging gap in breast cancer awareness – Cybersecurity Analyst

Cybersecurity analyst, David Gyedu, has emphasized the importance of technology in supporting breast health, noting that mobile applications...

Read Article

October 01, 2025 07:00 AM

24-Hour Economy requires secure systems and strong cybersecurity protocols – Mahama

President John Dramani Mahama has stressed that Ghana's plan for a 24-hour economy will only succeed if backed by secure systems,...

Read Article

October 01, 2025 07:00 AM

Photos: President Mahama launches National Cyber Security Awareness Month

The President and commander in chief of the Ghana Armed Forces, John Dramani Mahama on Wednesday, 1 October 2025, launched the National...

Read Article

October 01, 2025 07:00 AM

20% of global cyber incidents target financial sector, losses exceed $12 billion – President Mahama

President John Dramani Mahama has revealed that 20% of all reported cyber incidents worldwide have targeted the financial sector,...

Read Article

September 18, 2025 07:00 AM

Social media doing more harm than good to Ghanaian youth – Cybersecurity Expert

Cybersecurity Expert, David Gyedu, has cautioned that the negative impact of social media on Ghanaian youth far outweighs its benefits.

Read Article

September 18, 2025 07:00 AM

Cyber Security expert calls for social media regulations over rising insults

A cyber security expert, David Gyedu, has called for urgent regulations on the use of social media in Ghana, stressing that the platforms...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-56355

SUMMARY

GNU Savannah Administration Savane through 3.17 uses untrusted data as part of authorization.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 3.7)

cvss3

Base Score: 3.7

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.2

REFERENCES

CVE-2026-56347

SUMMARY

AVideo TopMenu plugin through version 26.0 contains a stored cross-site scripting vulnerability in menu item rendering due to missing output encoding of icon classes, URLs, and text labels. Attackers can inject malicious JavaScript through unescaped menu item fields that execute for all site visitors, potentially stealing session cookies or performing unauthorized actions.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.1)

cvss3

Base Score: 6.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.7

Exploitability

2.8

REFERENCES

CVE-2026-56346

SUMMARY

AVideo through version 25.0 contains an authentication bypass vulnerability in the decryptMessage.json.php endpoint that allows unauthenticated users to decrypt PGP messages. Remote attackers can submit private keys, ciphertext, and passphrases to perform server-side decryption without credentials, exposing key material to logs and enabling resource exhaustion attacks.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.5

Exploitability

3.9

REFERENCES

CVE-2026-56345

SUMMARY

AVideo through 29.0 contains an authorization bypass vulnerability in the Meet plugin's uploadRecordedVideo.json.php endpoint that derives the target users_id from the uploaded filename without verification. An attacker with knowledge of the Meet shared secret can craft a malicious file upload with a filename containing an arbitrary users_id to invoke passwordless User->login() and establish an authenticated session as any user including admin. Attackers can obtain the Meet shared secret through path-traversal vulnerabilities or timing attacks against checkToken.json.php, then POST a crafted file to uploadRecordedVideo.json.php with a filename like '1-anything.mp4' to hijack admin sessions and gain full account takeover.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.2

Complexity: HIGH

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.2

REFERENCES

CVE-2026-56342

SUMMARY

AVideo through version 27.0 contains a server-side request forgery vulnerability in plugin/Live/test.php that allows authenticated administrators to read arbitrary URLs via the statsURL parameter, which lacks isSSRFSafeURL() validation and accepts requests to private IP ranges and cloud metadata endpoints. Attackers can exploit this by crafting requests to internal services, cloud metadata endpoints like 169.254.169.254, and localhost to retrieve sensitive information including IAM credentials, internal service responses, and network configuration details.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.8)

cvss3

Base Score: 6.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

cvss4

Base Score: 6.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

2.3

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…