What is the official website of Gestamp ?

The official website of Gestamp is http://www.gestamp.com.

What is Gestamp's cybersecurity risk score?

Gestamp has an AI-generated cybersecurity risk score of 754 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Gestamp experienced?

According to Rankiteo, Gestamp currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Gestamp been affected by any supply chain cyber incidents ?

According to Rankiteo, Gestamp has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Gestamp have SOC 2 Type 1 certification ?

According to Rankiteo, Gestamp is not certified under SOC 2 Type 1.

Does Gestamp have SOC 2 Type 2 certification ?

According to Rankiteo, Gestamp does not hold a SOC 2 Type 2 certification.

Does Gestamp comply with GDPR ?

According to Rankiteo, Gestamp is not listed as GDPR compliant.

Does Gestamp have PCI DSS certification ?

According to Rankiteo, Gestamp does not currently maintain PCI DSS compliance.

Does Gestamp comply with HIPAA ?

According to Rankiteo, Gestamp is not compliant with HIPAA regulations.

Does Gestamp have ISO 27001 certification ?

According to Rankiteo,Gestamp is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Gestamp operate in ?

Gestamp operates primarily in the Motor Vehicle Manufacturing industry.

How many employees does Gestamp have ?

Gestamp employs approximately 16,717 people worldwide.

Does Gestamp own any subsidiaries ?

Gestamp presently has no subsidiaries across any sectors.

How many LinkedIn followers does Gestamp have ?

Gestamp's official LinkedIn profile has approximately 473,240 followers.

What is the NAICS classification code for Gestamp ?

Gestamp is classified under the NAICS code 3361, which corresponds to Motor Vehicle Manufacturing.

Does Gestamp have a Crunchbase profile ?

No, Gestamp does not have a profile on Crunchbase.

Does Gestamp have a LinkedIn profile ?

Yes, Gestamp maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/gestamp.

How many cybersecurity incidents has Gestamp experienced ?

As of June 7, 2026, Rankiteo reports that Gestamp has not experienced any cybersecurity incidents.

How many peer or competitor companies does Gestamp have ?

Gestamp has an estimated 12,962 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Gestamp

Boost Score +25 with badge (5 left)

754

/1000

Fair

779

/1000

Fair

Gestamp Vendor Cyber Rating & Cyber Score

gestamp.com

Add Your Compliance Badge

Gestamp is a multinational specialized in the design, development and manufacture of highly engineered metal components for the main vehicle manufacturers. It develops products with an innovative design to produce lighter and safer vehicles, which offer lower energy consumption and a lower environmental impact. Its products cover the areas of BiW, chassis and mechanisms. Gestamp is present in 24 countries with 115 production plants, 13 R&D centers and a workforce of more than 43,000 employees worldwide.

Gestamp A.I CyberSecurity Scoring

Scoring History

Gestamp

Gestamp CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

Gestamp Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Gestamp

Incidents vs Motor Vehicle Manufacturing Industry Avg (This Year)

No incidents recorded for Gestamp in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Gestamp in 2026.

Incident Types Gestamp vs Motor Vehicle Manufacturing Industry Avg (This Year)

No incidents recorded for Gestamp in 2026.

Incident History - Gestamp (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Gestamp Subsidiaries

Parent Company

Gestamp

Motor Vehicle Manufacturing

Website: http://www.gestamp.com

Company Size: 10,000+ employees

No subsidiary data available for this company.

Loading…

Gestamp Similar Companies

BMW Group

bmwgroup.com

With its four brands BMW, MINI, Rolls-Royce and BMW Motorrad, the BMW Group is the world’s leading premium manufacturer of automobiles and motorcycles and also provides premium financial services. The BMW Group production network comprises over 30 production sites worldwide; the company has a global sales network in more than 140 countries. In 2024, the BMW Group sold over 2.45 million passenger vehicles and more than 210,000 motorcycles worldwide. The profit before tax in the financial year 2024 was € 11.0 billion on revenues amounting to € 142.4 billion. As of 31 December 2024, the BMW Group had a workforce of 159,104 employees. The economic success of the BMW Group has always been based on long-term thinking and responsible action. Sustainability is a key element of the BMW Group’s corporate strategy and covers all products from the supply chain and production to the end of their useful life.

DENSO

cb denso.com

DENSO is one of the world's largest automotive suppliers with a 75-year history of providing advanced automotive systems and technology to automakers worldwide. While our products are featured on nearly every vehicle make and model on the road today, we're also looking to innovate beyond automotive so we can maximize how we support the evolving needs of society. Globally, we have 158,000 employees, including 27,000+ in North America, working together every day to pursue our Two Great Causes: Green -- which represents our goal of achieving carbon neutrality by 2035 through our products, processes and facilities; and Peace of Mind -- which focuses on developing solutions for safer and more seamless experiences across society. Together, they help us pursue our mission of contributing to a better world.

AUDI AG

cb audi.com

#WeAreProgress ++ Progress is in our DNA. It’s not just in our cars, but also in us. The focus at Audi is on us – the people – and we are shaping the future of mobility together. With our inner drive. With the aim to continuously improve. With our mindset, courage and confidence. Because progress develops in the mind – and in the heart! Learn more about how we are progress: https://lnkd.in/dKyUjig Impressum: https://www.audi.com/en/legal.html Legal notice: https://www.audi.com/en/legal-notice.html Privacy Policy for Recruiting activities: Datenschutzhinweis (DE): https://karriere.audi.de/sap/bc/bsp/sap/z_hcmx_ui_ext/commons/resources/downloads/Datenschutzhinweis.pdf Data protection note (EN): https://karriere.audi.de/sap/bc/bsp/sap/z_hcmx_ui_ext/commons/resources/downloads/PrivacyPolicy.pdf Community Management: Audi Interaction GmbH (https://www.audiinteraction.com/)

Dana Incorporated

dana.com

In a world of constant motion, life is about balance. At Dana, our balanced approach considers the people, products, and planet that sustain us all. For 120 years, we've been powering innovation to move our world. Today, over 25,000 Dana people, in more than 20 countries, advance drive and motion systems, thermal and sealing technologies, and power management innovations. Supporting traditional, hybrid, and EV manufacturers, wherever the road takes us. We're not just adapting to the future of mobility. We're shaping it. Headquartered in Maumee, Ohio, United States — Dana reported sales of $7.7 billion in 2024. We were named among the "World's Most Ethical Companies 2025” by Ethisphere and as one of "America's Most Responsible Companies 2023" by Newsweek. We’re always looking for talented people to join the Dana team. For more, please visit https://jobs.dana.com.

Harley-Davidson Motor Company

harley-davidson.com

In 1903, out of a small shed in Milwaukee, Wisconsin, four young men lit a cultural wildfire that would grow and spread across geographies and generations. Their innovation and imagination for what was possible on two wheels sparked a transportation revolution and lifestyle that would make Harley-Davidson the most desirable motorcycle brand in the world. • Our Mission: More than building machines, we stand for the timeless pursuit of adventure. Freedom for the soul. • Our Vision: Building our legend and leading our industry through innovation, evolution and emotion. Our Mission and Vision honor our past and help define our future. And what we hope you see in these guiding statements is a consumer-led company that’s driven to win, lead and deliver a Harley-Davidson experience that our riders expect and deserve – one where adventure and “freedom for the soul” are the payoff. To do this, we are redefining our culture to reignite the company’s soul and spirit. We are calling our cultural journey “H-D#1” represented by our recognizable #1 logo, introduced in 1969 to celebrate a National Racing Championship. The #1 logo is uniquely ours - an iconic symbol of winning and the hard work it takes to get there. The Hardwire is Harley-Davidson’s 2021-2025 strategic plan guided by our mission and vision. Our plan is targeting long-term profitable growth through focused efforts that extend and strengthen our brand and drive value for all stakeholders. The Hardwire is designed to enhance the desirability of Harley-Davidson and fuel our unique lifestyle brand. For more information, visit our company site: www.harley-davidson.com or our career site: jobs.harley-davidson.com

General Motors

gm.com

General Motors’ vision is to create a world with Zero Crashes, Zero Emissions and Zero Congestion, and we have committed ourselves to leading the way toward this future. Today, we are in the midst of a transportation revolution, and we have the ambition, the talent and the technology to realize the safer, better and more sustainable world we want. As an open, inclusive company, we’re also creating an environment where everyone feels welcomed and valued for who they are. One team, where all ideas are considered and heard, where everyone can contribute to their fullest potential, with a culture based in respect, integrity, accountability and equality. Our team brings wide-ranging perspectives and experiences to solving the complex transportation challenges of today and tomorrow. For information on the GM Privacy Statement, please visit http://www.gm.com/privacy-statement.html

Motherson Group

motherson.com

Motherson is a diversified global design, engineering, manufacturing and assembly (DEMA) specialist, delivering full-system solutions to customers across a wide range of industries. With a robust network of 425 state-of-the-art facilities across 44 countries, and a dedicated workforce of more than 200,000 professionals, Motherson is continually working toward its vision of being a globally preferred sustainable solutions provider for its stakeholders. The group recorded revenues of USD 21.2 billion in 2024-25 and is ranked among the top 15 automotive suppliers worldwide. As a trusted partner to OEM customers, Motherson offers an extensive, versatile product portfolio spanning the entire spectrum of the mobility industry. This includes passenger and commercial vehicles, two- and three-wheelers, rolling stock, off-highway vehicles, earthmoving, material-handling and agricultural machinery. Its product range encompasses electrical distribution systems, fully assembled vehicle interior and exterior modules, rear vision systems, moulded plastic parts and assemblies, injection moulding tools, rubber components, lighting systems, and machined metal products. Beyond the automotive sector, Motherson has strategically diversified into industries such as health and medical, aerospace, consumer electronics, logistics, and industrial IT solutions. This expansion reflects the group’s adaptability and unwavering commitment to meeting its customers' evolving needs. Motherson believes its employees are its partners in progress, its biggest asset. The organisation nurtures an environment where employees thrive as dynamic professionals and individuals. The organisation is responsive to its employees' professional aspirations and provides a range of growth opportunities, enabling them to advance professionally and to take on strategic roles within the organisation.

Tenneco

tenneco.com

We’re united by one purpose: to be the most trusted partner and the best manufacturer and distributor to the transportation industry. And we’re doing it by leaning into the one thing no one can copy: our culture — our sustainable competitive advantage. The Tenneco Way combines our Core Values, our mindset, and our commitment to developing ourselves and our teams. It’s how we create opportunities for our employees, deliver excellence for our customers, and build the capability that drives our future success. This is how we win. This is how we lead. This is The Tenneco Way. Learn more at Tenneco.com.

JLR

cb jlr.com

At JLR, we create exceptional experiences through our brands: Range Rover, Defender, Discovery and Jaguar. As the corporate home of these iconic British brands, we bring together world-class design, pioneering innovation and the creative ambition that drives our business forward. Our heritage matters, but it's our future that excites us. We're transforming at pace, shaping new technologies, electrifying our products and reimagining how people move through the world. None of this happens by accident. It happens because of our people – creators, problem-solvers and pioneers who bring bold ideas to life every day. Everyone at JLR plays a role in building an enterprise that is as exceptional as the experiences we deliver. Here, you'll find the scale of a global organisation and the opportunity to make a meaningful impact from day one. We are proud of the brands we steward, but even prouder of the culture we're building – one where curiosity is encouraged, craftsmanship is celebrated and every colleague is supported to grow. If you would like to be part of our journey, you can explore our business areas and current opportunities right here on LinkedIn. You can also connect with our teams, ask questions and hear from the people who make JLR what it is. The future is exciting. We hope you will help us create it.

Loading…

NEWS

Gestamp CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

December 13, 2025 08:00 AM

Incransom Strikes Beyçelik Gestamp Automotive

On December 13, 2025, the notorious ransomware group Incransom announced a successful cyberattack against. Beyçelik Gestamp Otomotiv Sanayi...

Read Article

October 07, 2025 07:00 AM

Jaguar Land Rover bailout shows rising cost of cybercrime

Much of Jaguar Land Rover's IT infrastructure is said to date back to Ford's ownership of the company, leaving a complicated set of...

Read Article

September 22, 2025 07:00 AM

Gestamp’s digital pathway to flexible, efficient manufacturing

Gestamp is leveraging Industry 4.0, digitalisation, and AI to enhance efficiency and flexibility in automotive manufacturing, driving global...

Read Article

February 13, 2024 08:00 AM

Gestamp redefines supply chain management for industry 4.0

Gestamp's digitalisation lead, Diego Mallada, explains how the tier one supplier is navigating the digital future, as well as creating it.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…