GFFC
Company Details
Linkedin ID:
green-field-farms-co-op
Website:
Employees number:
4
Number of followers:
75
NAICS:
722
Industry Type:
Homepage:
gffarms.com
IP Addresses:
0
Company ID:
GRE_2023657
Scan Status:
In-progress
Green Field Farms Co-op Company CyberSecurity Posture
gffarms.com
Green Field Farms firmly believes in continuing our old-world tradition of providing healthy, nourishing food, for you and your family. We are a farmer owned co-op that bridges the gap between our farms and your table with products that go Beyond Organic. We are your source for many varieties of Organic Produce, Milk, Fertilizer, Sauerkraut, and Maple Syrup.
Green Field Farms Co-op A.I CyberSecurity Scoring
GFFC Risk Score (AI oriented)Between 550 and 599
GFFC
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
GFFC Global Score (TPRM)XXXX
GFFC
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
GFFC Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
GreenFields Farming Inc.
Ransomware
Rankiteo Explanation
Attack threatening the organization’s existence
Description: Between February and April 2025, GreenFields Farming Inc. suffered a crippling ransomware assault that encrypted critical operational files, disrupted harvest schedules, and halted processing lines at multiple facilities during peak seasonal production. The attackers exploited unpatched VPN services and insecure RDP configurations to deliver a PowerShell-based payload via phishing emails purporting to contain agricultural invoices. Once inside the network, the malware established persistence through registry modifications and scheduled tasks before locking down key databases and machinery control systems. Production was suspended for days, resulting in spoilage of perishable goods, missed delivery deadlines to major distributors, and breach of contractual obligations. The company incurred direct ransom demands totaling $600,000 and faced over $2 million in recovery costs, including forensic investigations, system rebuilds, and legal fees. Additionally, reputational damage among retail partners and financial penalties for delayed shipments compounded the loss, while emergency provisioning of backup systems and manual workflows stretched resources thin and threatened the firm’s operational stability.
GFFC Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for GFFC
Incidents vs Food and Beverage Services Industry Average (This Year)
Green Field Farms Co-op has 40.85% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Green Field Farms Co-op has 28.21% more incidents than the average of all companies with at least one recorded incident.
Incident Types GFFC vs Food and Beverage Services Industry Avg (This Year)
Green Field Farms Co-op reported 1 incidents this year: 0 cyber attacks, 1 ransomware, 0 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.
Incident History — GFFC (X = Date, Y = Severity)
GFFC cyber incidents detection timeline including parent company and subsidiaries
GFFC Company Subsidiaries
Green Field Farms firmly believes in continuing our old-world tradition of providing healthy, nourishing food, for you and your family. We are a farmer owned co-op that bridges the gap between our farms and your table with products that go Beyond Organic. We are your source for many varieties of Organic Produce, Milk, Fertilizer, Sauerkraut, and Maple Syrup.
Loading...
GFFC Similar Companies
Coca-Cola Beverages Africa
CCBA is the eighth largest Coca-Cola authorised bottler in the world by revenue, and the largest on the continent. It accounts for over 40% of all Coca-Cola ready-to-drink beverages sold in Africa by volume. With over 14,000 employees in Africa, CCBA group services more than 800,000 customers with
Perfetti Van Melle
Perfetti Van Melle is a privately owned company, producing and distributing candies and chewing gums in more than 150 countries worldwide. Employing over 17.000 people and operating 37 companies throughout the world, Perfetti Van Melle has a true global reach: it is present in the Asia Pacific Reg
VARUN BEVERAGES LIMITED
Varun Beverages Limited (VBL) is one of the top FMCG players in the Indian Market. We are on track towards strengthening our position in the global beverage industry with our presence in 14 countries in the Indian sub-continent and Africa - where we are responsible for producing popular brands like
Greene King
Greene King is the country’s leading pub company and brewer with c.2,600 pubs, restaurants and hotels across England, Wales and Scotland. At Greene King we are passionate about delivering our purpose to ‘pour happiness into lives’. That’s for our customers, our team, our pub partners, our suppliers
PepsiCo is a playground for curious people. We invite thinkers, doers, and changemakers to champion innovation, take calculated risks, and challenge the status quo. From executives to team members on the front lines, we’re excited about the future. We take chances. Together, we dare to make the worl
Compass Group USA
Compass Group is redefining the food and facility services landscape with innovation and passion through the lens of what’s next. Serving premier healthcare systems, respected educational institutions, world-renowned cultural centers, popular sporting and entertainment venues, and Fortune 500 organi
We bottle and sell the beverages of The Coca-Cola Company exclusively in our 29 markets and partner with other beverage businesses to also sell their brands. With over 100 brands covering eight categories – sparkling, water, juices, ready-to-drink tea, energy, plant-based, premium spirits and coffee
Red Bull
Red Bull Gives Wiiings to People and Ideas. This has driven us – and all we do – since 1987. Today, Red Bull operates in over 170 countries, selling more than 12 billion cans annually and growing! Above all, our people remain the essential ingredient in bringing the Red Bull brand to life. Check out
The Coca-Cola Company
From our roots at the counter of a local Atlanta pharmacy, to our current portfolio of more than 200 beverages, The Coca-Cola Company is one of the most globally-recognized brands in the world. Today, our lineup features beloved beverage brands, including Coca-Cola, Sprite, Fanta, smartwater, Dasa
.png)
GFFC CyberSecurity News
August 12, 2024 07:00 AM
Grit and Determination Bring an Iowa Co-op and a Community Back From Disaster
A devastating EF-4 tornado swept through the tightly knit city of Greenfield, Iowa, on the afternoon of May 21, lineworkers and employees of Farmers Rural...
January 09, 2017 08:00 AM
Co-op Veteran Program Grows - America's Electric Cooperatives
Desert Storm and the Iraq War veteran says he fits right in with the electric co-op community and will do his part to enlist many a co-op...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
GFFC CyberSecurity History Information
Official Website of Green Field Farms Co-op
The official website of Green Field Farms Co-op is http://www.gffarms.com.
Green Field Farms Co-op’s AI-Generated Cybersecurity Score
According to Rankiteo, Green Field Farms Co-op’s AI-generated cybersecurity score is 592, reflecting their Very Poor security posture.
How many security badges does Green Field Farms Co-op’ have ?
According to Rankiteo, Green Field Farms Co-op currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Green Field Farms Co-op have SOC 2 Type 1 certification ?
According to Rankiteo, Green Field Farms Co-op is not certified under SOC 2 Type 1.
Does Green Field Farms Co-op have SOC 2 Type 2 certification ?
According to Rankiteo, Green Field Farms Co-op does not hold a SOC 2 Type 2 certification.
Does Green Field Farms Co-op comply with GDPR ?
According to Rankiteo, Green Field Farms Co-op is not listed as GDPR compliant.
Does Green Field Farms Co-op have PCI DSS certification ?
According to Rankiteo, Green Field Farms Co-op does not currently maintain PCI DSS compliance.
Does Green Field Farms Co-op comply with HIPAA ?
According to Rankiteo, Green Field Farms Co-op is not compliant with HIPAA regulations.
Does Green Field Farms Co-op have ISO 27001 certification ?
According to Rankiteo,Green Field Farms Co-op is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Green Field Farms Co-op
Green Field Farms Co-op operates primarily in the Food and Beverage Services industry.
Number of Employees at Green Field Farms Co-op
Green Field Farms Co-op employs approximately 4 people worldwide.
Subsidiaries Owned by Green Field Farms Co-op
Green Field Farms Co-op presently has no subsidiaries across any sectors.
Green Field Farms Co-op’s LinkedIn Followers
Green Field Farms Co-op’s official LinkedIn profile has approximately 75 followers.
NAICS Classification of Green Field Farms Co-op
Green Field Farms Co-op is classified under the NAICS code 722, which corresponds to Food Services and Drinking Places.
Green Field Farms Co-op’s Presence on Crunchbase
No, Green Field Farms Co-op does not have a profile on Crunchbase.
Green Field Farms Co-op’s Presence on LinkedIn
Yes, Green Field Farms Co-op maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/green-field-farms-co-op.
Cybersecurity Incidents Involving Green Field Farms Co-op
As of December 15, 2025, Rankiteo reports that Green Field Farms Co-op has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Green Field Farms Co-op has an estimated 8,522 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Green Field Farms Co-op ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
What was the total financial impact of these incidents on Green Field Farms Co-op ?
Total Financial Loss: The total financial loss from these incidents is estimated to be $2.60 million.
How does Green Field Farms Co-op detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an remediation measures with emergency provisioning of backup systems, remediation measures with manual workflows, and recovery measures with system rebuilds, recovery measures with forensic investigations..
Incident Details
Can you provide details on each incident ?
Title: Ransomware Attack on GreenFields Farming Inc.
Description: Between February and April 2025, GreenFields Farming Inc. suffered a crippling ransomware assault that encrypted critical operational files, disrupted harvest schedules, and halted processing lines at multiple facilities during peak seasonal production. The attackers exploited unpatched VPN services and insecure RDP configurations to deliver a PowerShell-based payload via phishing emails purporting to contain agricultural invoices. Once inside the network, the malware established persistence through registry modifications and scheduled tasks before locking down key databases and machinery control systems. Production was suspended for days, resulting in spoilage of perishable goods, missed delivery deadlines to major distributors, and breach of contractual obligations. The company incurred direct ransom demands totaling $600,000 and faced over $2 million in recovery costs, including forensic investigations, system rebuilds, and legal fees. Additionally, reputational damage among retail partners and financial penalties for delayed shipments compounded the loss, while emergency provisioning of backup systems and manual workflows stretched resources thin and threatened the firm’s operational stability.
Date Detected: February 2025
Type: Ransomware
Attack Vector: Phishing emailsUnpatched VPN servicesInsecure RDP configurations
Vulnerability Exploited: Unpatched VPN servicesInsecure RDP configurations
Motivation: Financial gain
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
How does the company identify the attack vectors used in incidents ?
Identification of Attack Vectors: The company identifies the attack vectors used in incidents through Phishing emailsUnpatched VPN servicesInsecure RDP configurations.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware GRE845050725
Financial Loss: $2,600,000
Systems Affected: Key databasesMachinery control systems
Downtime: Days
Operational Impact: Disrupted harvest schedulesHalted processing lines
Brand Reputation Impact: Reputational damage among retail partners
Legal Liabilities: Legal fees
What is the average financial loss per incident ?
Average Financial Loss: The average financial loss per incident is $2.60 million.
Which entities were affected by each incident ?
Incident : Ransomware GRE845050725
Entity Name: GreenFields Farming Inc.
Entity Type: Company
Industry: Agriculture
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Ransomware GRE845050725
Remediation Measures: Emergency provisioning of backup systemsManual workflows
Recovery Measures: System rebuildsForensic investigations
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware GRE845050725
Data Encryption: Yes
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: Emergency provisioning of backup systems, Manual workflows, .
Ransomware Information
Was ransomware involved in any of the incidents ?
How does the company recover data encrypted by ransomware ?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through System rebuilds, Forensic investigations, .
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : Ransomware GRE845050725
Entry Point: Phishing Emails, Unpatched Vpn Services, Insecure Rdp Configurations,
High Value Targets: Key Databases, Machinery Control Systems,
Data Sold on Dark Web: Key Databases, Machinery Control Systems,
Post-Incident Analysis
What were the root causes and corrective actions taken for each incident ?
Incident : Ransomware GRE845050725
Root Causes: Unpatched Vpn Services, Insecure Rdp Configurations,
Additional Questions
General Information
What was the amount of the last ransom demanded ?
Last Ransom Demanded: The amount of the last ransom demanded was $600,000.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on February 2025.
Impact of the Incidents
What was the highest financial loss from an incident ?
Highest Financial Loss: The highest financial loss from an incident was $2,600,000.
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Key databasesMachinery control systems.
Ransomware Information
What was the highest ransom demanded in a ransomware incident ?
Highest Ransom Demanded: The highest ransom demanded in a ransomware incident was $600,000.
Initial Access Broker
.png)
Latest Global CVEs (Not Company-Specific)
Description
NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
Description
uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Description
A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
Description
A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=green-field-farms-co-op' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
