What is the official website of Giant Eagle, Inc. ?

The official website of Giant Eagle, Inc. is http://jobs.gianteagle.com/.

What is Giant Eagle, Inc.'s cybersecurity risk score?

Giant Eagle, Inc. has an AI-generated cybersecurity risk score of 778 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Giant Eagle, Inc. experienced?

According to Rankiteo, Giant Eagle, Inc. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Giant Eagle, Inc. been affected by any supply chain cyber incidents ?

According to Rankiteo, Giant Eagle, Inc. has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Giant Eagle, Inc. have SOC 2 Type 1 certification ?

According to Rankiteo, Giant Eagle, Inc. is not certified under SOC 2 Type 1.

Does Giant Eagle, Inc. have SOC 2 Type 2 certification ?

According to Rankiteo, Giant Eagle, Inc. does not hold a SOC 2 Type 2 certification.

Does Giant Eagle, Inc. comply with GDPR ?

According to Rankiteo, Giant Eagle, Inc. is not listed as GDPR compliant.

Does Giant Eagle, Inc. have PCI DSS certification ?

According to Rankiteo, Giant Eagle, Inc. does not currently maintain PCI DSS compliance.

Does Giant Eagle, Inc. comply with HIPAA ?

According to Rankiteo, Giant Eagle, Inc. is not compliant with HIPAA regulations.

Does Giant Eagle, Inc. have ISO 27001 certification ?

According to Rankiteo,Giant Eagle, Inc. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Giant Eagle, Inc. operate in ?

Giant Eagle, Inc. operates primarily in the Retail Groceries industry.

How many employees does Giant Eagle, Inc. have ?

Giant Eagle, Inc. employs approximately 14,276 people worldwide.

Does Giant Eagle, Inc. own any subsidiaries ?

Giant Eagle, Inc. presently has no subsidiaries across any sectors.

How many LinkedIn followers does Giant Eagle, Inc. have ?

Giant Eagle, Inc.'s official LinkedIn profile has approximately 129,824 followers.

What is the NAICS classification code for Giant Eagle, Inc. ?

Giant Eagle, Inc. is classified under the NAICS code 44511, which corresponds to Supermarkets and Other Grocery (except Convenience) Stores.

Does Giant Eagle, Inc. have a Crunchbase profile ?

No, Giant Eagle, Inc. does not have a profile on Crunchbase.

Does Giant Eagle, Inc. have a LinkedIn profile ?

Yes, Giant Eagle, Inc. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/giant-eagle.

How many cybersecurity incidents has Giant Eagle, Inc. experienced ?

As of June 7, 2026, Rankiteo reports that Giant Eagle, Inc. has not experienced any cybersecurity incidents.

How many peer or competitor companies does Giant Eagle, Inc. have ?

Giant Eagle, Inc. has an estimated 404 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

GEI

Boost Score +25 with badge (5 left)

778

/1000

Fair

803

/1000

Good

Giant Eagle, Inc. Vendor Cyber Rating & Cyber Score

gianteagle.com

Add Your Compliance Badge

Giant Eagle strives to be a best place to work in the eyes of the nearly 36,000 individuals who work in our stores, pharmacies, warehouses and in our corporate offices. At Giant Eagle, you'll have the opportunity to develop a real career with countless opportunities for you to grow with us. The way we conduct business and treat one another – our Team Members, customers, community members and valued partners – defines what the Giant Eagle culture is all about. Our Purpose Beyond Profit is "We are one Giant Eagle Family. Together, we provide our communities with life's essentials, so our neighbors have the opportunity to thrive." We do this by staying true to our Core Values: Respect All: We go out of our way to treat our guests and one

GEI A.I CyberSecurity Scoring

Scoring History

GEI

Giant Eagle, Inc. CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

GEI Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for GEI

Incidents vs Retail Groceries Industry Avg (This Year)

No incidents recorded for Giant Eagle, Inc. in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Giant Eagle, Inc. in 2026.

Incident Types GEI vs Retail Groceries Industry Avg (This Year)

No incidents recorded for Giant Eagle, Inc. in 2026.

Incident History - GEI (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Giant Eagle, Inc. Subsidiaries

Parent Company

GEI

Retail Groceries

Website: http://jobs.gianteagle.com/

Company Size: 10,001+ employees

No subsidiary data available for this company.

Loading…

Giant Eagle, Inc. Similar Companies

E.Leclerc

e.leclerc

Depuis plus de 70 ans, E.Leclerc poursuit un objectif : démocratiser la consommation, c'est l'expression de son utilité sociale. Cet engagement au service du plus grand nombre doit permettre à chacun d'accéder aux produits et services dont il a besoin ou envie, au quotidien. L'accessibilité, qu'elle soit une question de prix, de proximité ou d'information, est un combat permanent, sans cesse renouvelé par les attentes des consommateurs et les enjeux de société. Améliorer le pouvoir d'achat des consommateurs au quotidien ; Briser les monopoles pour ouvrir de nouveaux marchés, comme la parapharmacie ou les produits culturels ; Soutenir à la fois les producteurs français au travers des "Alliances Locales", et la préservation de l'environnement avec l'opération "Nettoyons la Nature" qui rassemble chaque année plusieurs centaines de milliers de bénévoles ; Développer les savoir-faire qui offrent une expérience toujours plus positive, durable et engagée dans la consommation ; tels sont les engagements qui caractérisent l'action de E.Leclerc et façonnent son image parmi les marques préférées des Français. Enseigne coopérative portée par 587 adhérents dans 721 centres et 690 drives, et par des millions de clients dans toute la France, E.Leclerc est leader du secteur de la grande distribution. Rejoignez le mouvement !

Tottus

tottus.com

Nuestro propósito: Simplificar y Disfrutar más la vida. Pertenecemos a Falabella, una de las mayores compañías de retail de América Latina. En 2002 ingresamos al mercado peruano bajo la marca Tottus y posteriormente al chileno en 2004. Somos un equipo que trabajamos para superar cada día la expectativas de nuestros clientes y colaboradores. Creemos en nuestros talentos internos y buscamos la excelencia en todos nuestros procesos, con el único propósito de poder simplificar y disfrutar más la vida. Además trabajamos para vincularnos cara a cara con la comunidad, porque somos parte del territorio en el que estamos insertos con nuestra operación y con cada acción construimos una historia y guiamos un destino de largo plazo con la sociedad.

Jumbo

jumbo.cl

Con un tamaño promedio de 8.250 m2, Hipermercados Jumbo ofrece un variado surtido de productos, que incluye alimentos, abarrotes y una amplia gama de artículos no comestibles, como vestuario, elementos para el hogar y electrodomésticos. Además de las marcas tradicionales, Jumbo ofrece productos de marca propia, las cuales han alcanzado un sólido y fuerte posicionamiento comercial, asociado principalmente a la variedad y excelente calidad. Considerando el volumen de ventas, Jumbo es uno de los principales participantes del negocio de supermercados en Chile. Posee un sólido y claro posicionamiento comercial en el segmento al que está dirigido, lo que le ha permitido mantener márgenes de venta positivos y superiores al promedio de la industria.

Winn-Dixie

winn-dixie.com

Founded in 1925, Winn-Dixie grocery stores, liquor stores and in-store pharmacies serve communities throughout five southeastern states - Alabama, Florida, Georgia, Louisiana and Mississippi. Winn-Dixie Stores, Inc. is a subsidiary of The Winn-Dixie Company, which is one of the largest supermarket chains based in the Southeast. About The Winn-Dixie Company The Winn-Dixie Company, based in Jacksonville, Florida, is a trusted neighborhood grocer with deep roots across Florida and southern Georgia. Building on more than a century of legacy, the company is shaping the future of neighborhood grocery through continued store investments, innovative formats and a seamless omnichannel experience that delivers exceptional value both in stores and online. Guided by its purpose to feed and enrich the communities it serves, The Winn-Dixie Company is known for exceptional service and locally authentic stores. The grocer is committed to offering fresh, high-quality products and meaningful value through its nationally recognized Winn-Dixie Rewards program. For more information and updates, visit WinnDixie.com and follow @WinnDixie on Facebook, Instagram, and LinkedIn.

Loading…

NEWS

Giant Eagle, Inc. CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

November 21, 2025 08:00 AM

Giant Eagle Finalizes Class Settlement Over Retirement Plan Fees

Giant Eagle Inc.'s $668750 class settlement with workers challenging the fees tied to the grocery chain's retirement plan received final...

Read Article

August 13, 2025 07:00 AM

Hundreds of Former Israeli Spies Are Working in Big Tech, Database Shows

In late July, the U.S. cybersecurity giant Palo Alto Networks (PANW) announced that it had acquired the Israeli identity management and...

Read Article

July 10, 2025 07:00 AM

Ahold Delhaize appoints auto industry veteran as CTO

Grocery giant Ahold Delhaize appointed Jan Brecht as CTO and member of its executive committee, effective Sept. 26, the company said...

Read Article

May 29, 2025 07:00 AM

Grocer Giant Eagle Settles 401(k) Fee Challenge in Pennsylvania

Pennsylvania-based grocery chain Giant Eagle Inc. agreed to pay $668750 to settle a proposed class action by workers who say their...

Read Article

March 05, 2024 08:00 AM

Well-known healthcare company confirms cyber attack impacting Giant Eagle Pharmacies

Change Healthcare confirmed that they were experiencing cybersecurity issues perpetrated by a cybercrime threat.

Read Article

February 26, 2024 08:00 AM

Obituary for Paul D. Wonders

Paul D. Wonders, 58, of West Palm Beach, FL, formerly of Freeport passed away Monday, February 5, 2024, peacefully at his home.

Read Article

October 31, 2023 07:00 AM

Giant Eagle Launches myPerks Pay Rewards Visa Credit Card in Partnership with FNBO

OMAHA, Neb. & PITTSBURGH–(BUSINESS WIRE)–Giant Eagle and FNBO (First National Bank of Omaha) today launched the myPerks® Pay Rewards Visa®...

Read Article

February 24, 2023 08:00 AM

Revenue Cycle Management Company Reports Healthcare Data Breach Impacting 250K

Several vendors reported healthcare data breaches recently, including mobile pharmacy solutions provider mscripts and revenue cycle...

Read Article

May 06, 2022 07:00 AM

Giant Eagle CIO: ‘Culture Is a Competitive Advantage’

Kirk Ball, executive vice president and CIO at Giant Eagle Inc., one of the nation's largest food retailers and distributors.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…