What is the official website of GPA ?

The official website of GPA is http://www.gpabr.com.

What is GPA's cybersecurity risk score?

GPA has an AI-generated cybersecurity risk score of 814 out of 1000, indicating a Good security posture according to Rankiteo's assessment.

How many security incidents has GPA experienced?

According to Rankiteo, GPA currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has GPA been affected by any supply chain cyber incidents ?

According to Rankiteo, GPA has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does GPA have SOC 2 Type 1 certification ?

According to Rankiteo, GPA is not certified under SOC 2 Type 1.

Does GPA have SOC 2 Type 2 certification ?

According to Rankiteo, GPA does not hold a SOC 2 Type 2 certification.

Does GPA comply with GDPR ?

According to Rankiteo, GPA is not listed as GDPR compliant.

Does GPA have PCI DSS certification ?

According to Rankiteo, GPA does not currently maintain PCI DSS compliance.

Does GPA comply with HIPAA ?

According to Rankiteo, GPA is not compliant with HIPAA regulations.

Does GPA have ISO 27001 certification ?

According to Rankiteo,GPA is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does GPA operate in ?

GPA operates primarily in the Retail industry.

How many employees does GPA have ?

GPA employs approximately 25,350 people worldwide.

Does GPA own any subsidiaries ?

GPA presently has no subsidiaries across any sectors.

How many LinkedIn followers does GPA have ?

GPA's official LinkedIn profile has approximately 902,938 followers.

What is the NAICS classification code for GPA ?

GPA is classified under the NAICS code 43, which corresponds to Retail Trade.

Does GPA have a Crunchbase profile ?

No, GPA does not have a profile on Crunchbase.

Does GPA have a LinkedIn profile ?

Yes, GPA maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/gpabr.

How many cybersecurity incidents has GPA experienced ?

As of June 6, 2026, Rankiteo reports that GPA has not experienced any cybersecurity incidents.

How many peer or competitor companies does GPA have ?

GPA has an estimated 15,820 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

GPA

Boost Score +25 with badge (5 left)

814

/1000

Good

839

/1000

Good

GPA Vendor Cyber Rating & Cyber Score

gpabr.com

Add Your Compliance Badge

We are one of the largest food retail companies in Brazil. We were pioneers with a multi-format and multi-channel business model that brings together renowned chains and brands such as Pão de Açúcar and Extra, Minuto Pão de Açúcar, Pão de Açúcar Fresh and Mini Extra. In addition to our own and exclusive brands Qualitá, Taeq and Club des Sommeliers. We have more than 765 physical stores and are leaders in food e-commerce in Brazil, working tirelessly to be the best choice for our customers and the pride of our team. We are driven by a passion to serve and win. Our people are committed to our values to offer the best shopping experience in our stores. In all areas, regardless of role or position, everyone is focused on serving and

GPA A.I CyberSecurity Scoring

Scoring History

GPA

GPA CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

GPA Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for GPA

Incidents vs Retail Industry Avg (This Year)

No incidents recorded for GPA in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for GPA in 2026.

Incident Types GPA vs Retail Industry Avg (This Year)

No incidents recorded for GPA in 2026.

Incident History - GPA (X = Date, Y = Severity)

Loading…

SUBSIDIARY

GPA Subsidiaries

GPA

Retail

Website: http://www.gpabr.com

Company Size: 10,001+ employees

Groupe CasinoRetail Groceries

CheftimeFood & Beverages

Grupo ÉxitoRetail

GPA MallsLeasing Non-residential Real Estate

Loading…

GPA Similar Companies

Kohl's

cb kohls.com

Kohl’s is a leading omnichannel retailer with more than 1,100 stores in 49 states. Kohl's business is built on a solid foundation of more than 60 million customers, an unmatched brand portfolio, industry-leading loyalty and Kohl's Card programs, a convenient and accessible nationwide store footprint, and large digital business on Kohls.com and the Kohl's mobile app.

Stop & Shop

stopandshop.com

Stop & Shop has been around for more than 100 years. We started small, as a corner grocery store back in 1914. And we’ve grown…a lot. We have more than 50,000 Associates in 350+ stores throughout Massachusetts, Connecticut, Rhode Island, New York, and New Jersey. Through that change, our values have stayed the same. At Stop & Shop, we’ve made a commitment to making our stores better every day for our associates, our customers, and our communities. It’s our secret recipe for success. It guides everything we do from the products that stock our shelves to the way we manage our stores! It helps us put the customer first, do what’s right, win together, and make ideas happen.

IKEA

ikea.com

The IKEA vision is to create a better everyday life for the many people. Our business idea is to offer well-designed, functional and affordable, high-quality home furnishing, produced with care for people and the environment. The IKEA Brand unites more than 200.000 co-workers and hundreds of companies with different owners all over the world. It’s one brand, but it reaches millions of hearts and homes. Our value chain is unique. It includes everything from product development, design, supply, manufacture and sales – and of course it begins and ends with our customers. The IKEA retail business is operated through a franchise system. Today, 12 different groups of companies market and sell the IKEA product range under franchise agreements with Inter IKEA Systems B.V. Any jobs published on this page are offered by different companies operating under the IKEA Trademark. IKEA was founded in Sweden in 1943.

Avolta

avoltaworld.com

Avolta AG, (SIX: AVOL) is leading a travel experience revolution. The result of the Dufry-Autogrill business combination, Avolta puts the traveler at our strategic core as we maximize every moment of the journey through our unique combination of travel retail and travel food & beverage, passion for innovation and excellent execution. With access to 2.5 billion passengers each year, Avolta really is powered by our more than 77,000 people, the drum beat behind our vision to become the most innovative and successful travel retail company. Our diverse workforce, representing over 150 nationalities, are committed to surprising guests and delivering solid execution, supporting the company in creating value for all stakeholders, bringing Avolta to life every day as we turn our collective aspirations into achievements. Our business is well-diversified across geographical, channel and brand portfolio pillars, operating in 70 countries and 1,000 locations, with 5,100 points of sale across three segments – duty-free, food & beverage and convenience – and various channels from airports and motorways all the way to cruises ferries, railway, border shops and downtown. An inherent element of Avolta’s business strategy is aiming for sustainable and profitable growth of the company while fostering high standards of environmental stewardship and social equity – making meaningful impact in the local communities. Are you looking for a new challenge, a new career adventure that provides opportunities for professional and personal growth in an international environment? Look no further. Become part of our transformative journey, become part of Avolta.

Landmark Group

landmarkgroup.com

For over five decades, Landmark Group has shaped the region’s retail and hospitality landscape-growing from a single store in Bahrain to one of the largest and most successful omnichannel and hospitality groups across the Middle East, Asia and Africa. Rooted in purpose and powered by innovation, we bring together 21 trusted brands — including own brands like Centrepoint, Max, Home Centre, Babyshop, Splash, Shoemart, Lifestyle, VIVA, Citymax and more- spanning fashion, home, fitness, and hospitality. With over 2,500 stores across 15 countries, we live our purpose every day: creating exceptional value for all the lives we touch. Driven by a customer-first philosophy, we place strong emphasis on enriching every interaction. Through our portfolio of loyalty programmes, Shukran and Landmark Rewards, we connect with over 35 million active members, offering exclusive rewards and meaningful experiences across our brands and partners. At Landmark, we believe our greatest strength lies in our people. Our success is powered by talented and passionate Landmarkers who bring diverse perspectives, creativity, and expertise to everything they do. With over 53,000 employees from almost 100 nationalities, we continue to build a culture of growth, innovation, and shared purpose, living the group's values collectively of listening, empowering, adapting and delivering with integrity.

PetSmart

cb petsmart.com

At PetSmart, we’ll do Anything for Pets. ❤️🐾 And the people who love them! Because we’re those people, too. Pets inspire and motivate us to bring our best selves to work each day. Our associates are devoted to ensuring that pets’ lives are happy and healthy. So, naturally, we’re devoted to ensuring that PetSmart is a happy and healthy workplace, too. Whether based in a store, salon, PetsHotel, distribution center, or at our home office, you’ll find yourself inspired and empowered to go further, reach higher, and make the most out of your #LifeAtPetSmart. As the largest specialty retailer in North America, we’re proud to employ approximately 50,000 associates across 1,660+ stores, seven distribution centers, and two home offices. Through our work with PetSmart Charities® and PetSmart Charities of Canada®, we’ve helped 11 million pets find their forever homes, donated over $500+ million in grants to make a difference, and earned the title of the leading funder for animal welfare. PetSmart takes data privacy very seriously, so please be aware that PetSmart will never ask for personal information, such as a driver’s license number or financial information before a candidate accepts an employment offer. Candidates will be asked to provide a social security number in the job application via PetSmart’s secured applicant tracking system, which can be accessed only via www.careers.petsmart.com. Candidates will never be asked to provide any of this information via e-mail.

Lojas Renner S.A.

lojasrennersa.com.br

We are a fashion and lifestyle ecosystem connected to our customers through digital channels and more than 600 stores in Brazil, Argentina and Uruguay. From the beginning, everything we do is to enchant. This is how our story began, in 1965, conquering important milestones, and today we are the leader in omnichannel fashion retail in the country. All this history based on solid values, built by our more than 24 thousand employees from the Renner, Camicado, Youcom, Realize CFI and Repassa businesses. We are creating a sustainability journey, with commitments to an increasingly responsible fashion. Through our businesses, we enchant employees, customers and everyone who is part of this network, always with a lot of collaboration and care for people. We are Lojas Renner S.A.

Grupo Casas Bahia

instagram.com

Mais do que varejo, somos um ecossistema que conecta produtos, serviços, crédito e logística com dedicação total! Estamos presentes na mente, no coração e na casa de milhões de brasileiros, com um portfólio de marcas que há décadas faz parte da vida das pessoas: Casas Bahia, Ponto Frio, Extra.com.br, BanQi, Bartira e CB Full. Aqui, o cliente está no centro de tudo. E é por isso que inovamos todos os dias para oferecer a melhor experiência em produtos, serviços financeiros, tecnologia e logística. Estamos em todas as regiões do Brasil, com mais de 1.000 lojas físicas, dezenas de centros de distribuição e somos uma das maiores e mais digitais redes logísticas do país. Contamos com a maior fábrica de móveis da América Latina, um banco digital que leva crédito a quem mais precisa e a nossa mega plataforma logística que conecta marcas e clientes. Além disso, o Grupo Casas Bahia tem capital aberto na B3 desde 2013, com um compromisso sólido com o mercado e com a nossa história. Porque aqui, a dedicação é o que nos move. Acreditamos no poder da transformação, da inclusão e da inovação para fazer a diferença na vida de cada cliente, colaborador e parceiro. Somos feitos de dedicação total. Nós somos o Grupo Casas Bahia! 🚀💙❤️ Para falar conosco, entre em contato através de mensagem via perfil oficial no Instagram - Grupo Casas Bahia

Wayfair

cb aboutwayfair.com

Wayfair is the destination for all things home: helping everyone, anywhere create their feeling of home. From expert customer service, to the development of tools that make the shopping process easier, to carrying one of the widest and deepest selections of items for every space, style, and budget, Wayfair gives everyone the power to create spaces that are just right for them.

Loading…

NEWS

GPA CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 16, 2026 08:00 AM

GPA awarded $1.7 million more for cybersecurity

John O'Connor ... The Guam Power Authority has been awarded an additional $1.7 million to strengthen its cybersecurity posture and resilience,...

Read Article

February 06, 2026 08:00 AM

Meet a 27-year-old software engineer who turned a 1.0 GPA in high school into a six-figure career at American Express

Angel Juarez was worried. At age 19, he was working part-time at a Michaels crafts store earning less than $15,000 a year and trying to make...

Read Article

December 27, 2025 08:00 AM

UAH Center for Cybersecurity Research and Education opens applications for DoD cyber scholarships

HUNTSVILLE – The Center for Cybersecurity Research and Education at the University of Alabama in Huntsville has announced the availability...

Read Article

December 19, 2025 08:00 AM

UAH CCRE announces applications are open for cybersecurity scholarships starting Fall 2026 semester

The Center for Cybersecurity Research and Education (CCRE) at The University of Alabama in Huntsville (UAH), a part of The University of...

Read Article

December 05, 2025 08:00 AM

Here’s What GPA You Need To Study In The Cybersecurity Field

In an age where data breaches are increasingly common, cybersecurity is more critical than ever. This field focuses on protecting computer...

Read Article

September 10, 2025 07:00 AM

GPA pushes for partnership with feds as military demand doubling energy needs

The Guam Power Authority is intensifying its call for federal investment to strengthen the island's electrical grid, warning that Guam's...

Read Article

June 05, 2025 07:00 AM

Academic Excellence: 15 Jaguars Earn PBC Track & Field Recognition

Augusta University men's track & field placed 15 student-athletes on the 2024-25 Peach Belt Conference Team of Academic Distinction, presented by Barnes &...

Read Article

May 25, 2025 07:00 AM

Benavente: Cybersecurity concerns bar GPA from obtaining batteries from US adversaries

The Guam Power Authority is looking to procure significant energy storage system services to make use of stored solar energy during peak...

Read Article

May 07, 2025 01:06 PM

Specialization in Cyber Security

The new Cybersecurity Collaborative Specialization builds on Carleton's internationally recognized excellence in the many and diverse facets of cybersecurity.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…