Jumia Group
Company Details
Linkedin ID:
jumia-group
Website:
Employees number:
12,144
Number of followers:
144,517
NAICS:
None
Industry Type:
Homepage:
jumia.com
IP Addresses:
0
Company ID:
JUM_1649631
Scan Status:
In-progress
Jumia Group Company CyberSecurity Posture
jumia.com
Jumia (NYSE :JMIA) is a leading e-commerce platform in Africa. It is built around a marketplace, Jumia Logistics, and JumiaPay. The marketplace helps millions of consumers and sellers to connect and transact. Jumia Logistics enables the delivery of millions of packages through our network of local partners. JumiaPay facilitates the payments of online transactions for Jumia's ecosystem. With over 1 billion people and 500 million internet users in Africa, Jumia believes that e-commerce is making people's lives easier by helping them shop and pay for millions of products at the best prices wherever they live. E-commerce is also creating new opportunities for SMEs to grow, and job opportunities for a new generation to thrive. With over 5,000 employees in more than 10 countries in Africa, Jumia is led by top talented leaders offering a great mix of local and international talents and is backed by very high-profile shareholders. Jumia is committed to creating sustainable impact in Africa. Jumia offers unique opportunities in a vibrant and booming environment, creating new jobs, new skills, and empowering a new generation.
Jumia Group A.I CyberSecurity Scoring
Jumia Group Risk Score (AI oriented)Between 750 and 799
Jumia Group
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Jumia Group Global Score (TPRM)XXXX
Jumia Group
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Jumia Group Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Jumia Group Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Jumia Group
Incidents vs Technology, Information and Internet Industry Average (This Year)
No incidents recorded for Jumia Group in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Jumia Group in 2025.
Incident Types Jumia Group vs Technology, Information and Internet Industry Avg (This Year)
No incidents recorded for Jumia Group in 2025.
Incident History — Jumia Group (X = Date, Y = Severity)
Jumia Group cyber incidents detection timeline including parent company and subsidiaries
Jumia Group Company Subsidiaries
Jumia (NYSE :JMIA) is a leading e-commerce platform in Africa. It is built around a marketplace, Jumia Logistics, and JumiaPay. The marketplace helps millions of consumers and sellers to connect and transact. Jumia Logistics enables the delivery of millions of packages through our network of local partners. JumiaPay facilitates the payments of online transactions for Jumia's ecosystem. With over 1 billion people and 500 million internet users in Africa, Jumia believes that e-commerce is making people's lives easier by helping them shop and pay for millions of products at the best prices wherever they live. E-commerce is also creating new opportunities for SMEs to grow, and job opportunities for a new generation to thrive. With over 5,000 employees in more than 10 countries in Africa, Jumia is led by top talented leaders offering a great mix of local and international talents and is backed by very high-profile shareholders. Jumia is committed to creating sustainable impact in Africa. Jumia offers unique opportunities in a vibrant and booming environment, creating new jobs, new skills, and empowering a new generation.
Loading...
Jumia Group Similar Companies
Flipkart
At Flipkart, we're driven by our purpose of empowering every Indian's dream by delivering value through innovation in technology and commerce. With a customer base of over 350 million, product coverage of over 150 million across 80+ categories, a focus on generating direct and indirect employment an
Booking Holdings is the world’s leading provider of online travel & related services, provided to consumers and local partners in more than 220 countries and territories through six primary consumer-facing brands: Booking.com, Priceline, Agoda, Rentalcars.com, KAYAK and OpenTable. Collectively, Book
Mercado Livre Brasil
Fundada em 1999, MercadoLivre é uma companhia de tecnologia líder em comércio eletrônico na América Latina. Por meio de suas principais plataformas MercadoLivre.com e MercadoPago.com, oferece soluções de comércio eletrônico para que pessoas e empresas possam comprar, vender, pagar e anunciar produto
Launched in May 2003, Taobao Marketplace (www.taobao.com) is the online shopping destination of choice for Chinese consumers looking for wide selection, value and convenience. Shoppers choose from a wide range of products and services on Taobao Marketplace, which features hundreds of millions of pro
Primary School
www.primaryschool.com.au is a directory of sites for students and lesson plans and reference material for teachers and parents. It is currently averaging up to 350,000 unique visitors a month and has over 44,000 subscribers to its free weekly newsletter which showcases the latest internet based reso
Sohu.com Inc. (NASDAQ: SOHU) is China's premier online brand and indispensable to the daily life of millions of Chinese, providing a network of web properties and community based/web 2.0 products which offer the vast Sohu user community a broad array of choices regarding information, entertainment a
Thirteen-time Webby award-winning Freelancer is the world’s largest freelancing and crowdsourcing marketplace by total number of users and projects posted. More than 80 million registered users have posted over 25 million projects and contests to date in over 3,000 areas as diverse as website develo
Times Internet
At Times Internet, we create premium digital products that simplify and enhance the lives of millions. As India’s largest digital products company, we have a significant presence across a wide range of categories, including News, Sports, Fintech, and Enterprise solutions. Our portfolio features mar
e&
We're a global technology group focused on innovation and collaboration to create a better future for all. Since 1976, we've been pioneering new technologies and expanding our reach to more people and places. Today, we provide services to over 163 million customers across 16 countries in the Middle
.png)
Jumia Group CyberSecurity News
November 26, 2025 02:08 PM
Amazon Warns Prime Members About Spike in Black Friday Phishing Scams Targeting Accounts and Payment Info
Retail giant Amazon has issued a global alert to its 200–220 million Prime subscribers, warning of a surge in phishing attacks exploiting...
September 19, 2025 07:00 AM
Jumia teams up with financing group to boost Kenyan smartphone sales
Ongoing efforts to make smartphones affordable to more Africans while still ensuring a margin for sellers are continuing.
August 15, 2025 07:00 AM
FG, Jumia partner to expand e-commerce, digital inclusion
Nigeria partners with Jumia to expand e-commerce access to underserved communities and strengthen the digital economy under the proposed...
August 14, 2025 07:00 AM
Jumia partners ministry to scale eCommerce sector
To advance Nigeria's e-commerce sector and deepen digital inclusion, the Minister of Industry, Trade and Investment, Dr Jumoke Oduwole,
February 22, 2025 08:00 AM
Nigeria's Top 10 Startups That Tech Professionals Should Watch Out For in 2025
Nigeria's tech scene is booming, with top startups like Flutterwave, Paystack, and MTN Nigeria leading innovations in fintech, edtech, and e-commerce.
November 21, 2024 08:00 AM
Nigeria Now Faces 4,718 Cyber Attacks Weekly – Report
Check Point Software Technologies, a cyber security platform has disclosed that there are currently 4718 cyberattacks in Nigeria weekly.
April 30, 2024 07:00 AM
Starlink Now Accessible On Jumia Platform Kenya
Jumia has announced the availability of Starlink's high-speed, low-latency satellite internet on its platform in Kenya.
February 22, 2023 01:37 PM
Côte d'Ivoire's Francis Dufay takes the reins of Jumia Group
He was recently appointed CEO of the e-commerce group Jumia. He formally became CEO of the unicorn in February 2023 but, he had been acting in the position...
August 04, 2022 07:00 AM
Consumers in Kenya to enjoy faster deliveries with Jumia Food Mart
Jumia Food has announced the launch of Jumia Food Mart on its platform which will see customers enjoy a record 20-minute delivery.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Jumia Group CyberSecurity History Information
Official Website of Jumia Group
The official website of Jumia Group is https://group.jumia.com/.
Jumia Group’s AI-Generated Cybersecurity Score
According to Rankiteo, Jumia Group’s AI-generated cybersecurity score is 778, reflecting their Fair security posture.
How many security badges does Jumia Group’ have ?
According to Rankiteo, Jumia Group currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Jumia Group have SOC 2 Type 1 certification ?
According to Rankiteo, Jumia Group is not certified under SOC 2 Type 1.
Does Jumia Group have SOC 2 Type 2 certification ?
According to Rankiteo, Jumia Group does not hold a SOC 2 Type 2 certification.
Does Jumia Group comply with GDPR ?
According to Rankiteo, Jumia Group is not listed as GDPR compliant.
Does Jumia Group have PCI DSS certification ?
According to Rankiteo, Jumia Group does not currently maintain PCI DSS compliance.
Does Jumia Group comply with HIPAA ?
According to Rankiteo, Jumia Group is not compliant with HIPAA regulations.
Does Jumia Group have ISO 27001 certification ?
According to Rankiteo,Jumia Group is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Jumia Group
Jumia Group operates primarily in the Technology, Information and Internet industry.
Number of Employees at Jumia Group
Jumia Group employs approximately 12,144 people worldwide.
Subsidiaries Owned by Jumia Group
Jumia Group presently has no subsidiaries across any sectors.
Jumia Group’s LinkedIn Followers
Jumia Group’s official LinkedIn profile has approximately 144,517 followers.
Jumia Group’s Presence on Crunchbase
Yes, Jumia Group has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/jumia-group.
Jumia Group’s Presence on LinkedIn
Yes, Jumia Group maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/jumia-group.
Cybersecurity Incidents Involving Jumia Group
As of November 27, 2025, Rankiteo reports that Jumia Group has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Jumia Group has an estimated 12,515 peer or competitor companies worldwide.
Jumia Group CyberSecurity History Information
How many cyber incidents has Jumia Group faced ?
Total Incidents: According to Rankiteo, Jumia Group has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Jumia Group ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=jumia-group' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
