Knauf
Company Details
Linkedin ID:
knauf
Website:
Employees number:
11,662
Number of followers:
107,034
NAICS:
4233
Industry Type:
Homepage:
knauf.com
IP Addresses:
0
Company ID:
KNA_1182437
Scan Status:
In-progress
Knauf Company CyberSecurity Posture
knauf.com
Everyone sees opportunity differently. Knauf sees opportunity in everyone. Similar to other global businesses, our 41,500 team members in 90 countries across 300 sites provide a huge opportunity for anyone with ambition and energy. Unlike other global businesses, you may be surprised that Knauf is still a family-owned and run company and that means that our values and people-first culture are at the forefront of how the business operates. This means that career with us can offer you something a bit special; family values at the heart combined with global success and influence. Founded in 1932, we are one of the world’s leading manufacturers of construction materials for interior design, building insulation, and design ceilings. We are made up of 4 core divisions and our plants across the globe produce state-of-the-art drywall systems, plasters, and insulating materials as well as external thermal insulation composite systems.
Knauf A.I CyberSecurity Scoring
Knauf Risk Score (AI oriented)Between 700 and 749
Knauf
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Knauf Global Score (TPRM)XXXX
Knauf
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Knauf Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Knauf
Ransomware
Rankiteo Explanation
Attack threatening the organization's existence
Description: The Knauf Group was targeted in a ransomware attack by the Black Basta ransomware group at the end of June. The group disrupted its business operations, forcing its global IT team to shut down all IT systems to isolate the incident. Black Basta took responsibility for the attack via an announcement on their extortion site, listing Knauf as a victim. The ransomware gang published 20% of the files containing mail communication, user credentials, employee contact information, production documents, and ID scans that they allegedly exfiltrated during the attack on Knauf. The Knauf Group apologized for any inconvenience or delays in the delivery processes, that may occur due to the attack while they were trying to resolve the issue.
Knauf Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Knauf
Incidents vs Wholesale Building Materials Industry Average (This Year)
No incidents recorded for Knauf in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Knauf in 2025.
Incident Types Knauf vs Wholesale Building Materials Industry Avg (This Year)
No incidents recorded for Knauf in 2025.
Incident History — Knauf (X = Date, Y = Severity)
Knauf cyber incidents detection timeline including parent company and subsidiaries
Knauf Company Subsidiaries
Everyone sees opportunity differently. Knauf sees opportunity in everyone. Similar to other global businesses, our 41,500 team members in 90 countries across 300 sites provide a huge opportunity for anyone with ambition and energy. Unlike other global businesses, you may be surprised that Knauf is still a family-owned and run company and that means that our values and people-first culture are at the forefront of how the business operates. This means that career with us can offer you something a bit special; family values at the heart combined with global success and influence. Founded in 1932, we are one of the world’s leading manufacturers of construction materials for interior design, building insulation, and design ceilings. We are made up of 4 core divisions and our plants across the globe produce state-of-the-art drywall systems, plasters, and insulating materials as well as external thermal insulation composite systems.
Loading...
Knauf Similar Companies
Ambuja Cements Limited
Ambuja Cements Ltd. is among the leading cement companies in India. It is a member of the Adani Group - the largest and fastest-growing portfolio of diversified sustainable businesses. Ambuja Cement is known for its hassle-free, home-building solutions. Its unique products tailor-made for Indian cli
Builders FirstSource is the nation’s largest supplier of structural building products, value-added components and services to the professional market for new residential construction and repair and remodeling. Our focus is on providing unparalleled service to both large and small customers. Through
Travis Perkins plc
As a leading partner to the construction industry, we’re here to help build better communities and enrich lives and support our customers to build, repair and maintain the many places, buildings and infrastructure that touch all of our lives every day. We have over 20,000 colleagues in the UK and a
ASSA ABLOY Group
Let’s create a safer and more open world – together! ASSA ABLOY is the global leader in access solutions with sales of SEK 150 billion and 63,000 employees. The Group has operations in over 70 countries and sales worldwide. ASSA ABLOY’s innovations enable safe, secure and convenient access to physi
UltraTech Cement Ltd. is the largest manufacturer of grey cement, Ready Mix Concrete (RMC) and white cement in India. It is also one of the leading cement producers globally. UltraTech as a brand embodies 'strength', 'reliability' and 'innovation'. Together, these attributes inspire engineers to str
Saint-Gobain designs, manufactures and distributes materials and solutions for the construction, mobility and industrial markets. Developed through a continuous innovation process, our integrated solutions provide sustainability and performance in daily life, addressing the renovation of public and
Owens Corning
Owens Corning is a building products leader committed to building a sustainable future through material innovation. Our products provide durable, sustainable, energy-efficient solutions that leverage our unique capabilities and market-leading positions to help our customers win and grow. We are glob
Cemex
Cemex is a global industry leader in producing and supplying cement, aggregates, ready-mix concrete, and urbanization solutions. We’re driving innovation further to solve the world’s building challenges and help the world reach the next frontier of sustainable living. #BuildingABetterFuture Nu
Carrier
Carrier Global Corporation, global leader in intelligent climate and energy solutions, is committed to making the world safer, sustainable and more comfortable for generations to come. From the beginning, we’ve led in inventing new technologies and entirely new industries. Today, we continue to lead
.png)
Knauf CyberSecurity News
June 12, 2025 07:00 AM
Cracking the Code: CodeCrush Ignites STEM Passion in WA Girls
A dynamic multi-day event designed to inspire high school girls across Western Australia to explore the exciting world of Science, Technology, Engineering and...
January 06, 2025 08:00 AM
Knauf McGregor named 2024 local employer of excellence by Texas Workforce Commission
Last year 25 news told you how Knauf invested more than $200M into the city of McGregor. Now, the company is being recognized by the state...
November 13, 2024 03:30 PM
Construction Giant Knauf Hit with Ransomware
Knauf Gips KG, one of the world's largest producers of building materials and systems, has issued an apologetic announcement to customers and partners due to a...
July 25, 2022 07:00 AM
Building materials firm Knauf hit by Black Basta ransomware
The Knauf Group, a German-based multinational producer of construction materials, has announced that it's been the target of a cyberattack.
July 20, 2022 07:00 AM
Knauf Group ransomware attack hits plasterboard market
Knauf Group, one of the world's largest suppliers of building materials, remains impacted by a ransomware attack nearly a month after the...
June 30, 2022 07:00 AM
Building materials manufacturer Knauf affected by cyber attack worldwide (June 29, 2022)
[German]The manufacturer Knauf (gypsum, Plaster, building materials) fell victim to a cyber attack on June 29, 2022.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Knauf CyberSecurity History Information
Official Website of Knauf
The official website of Knauf is http://www.knauf.com.
Knauf’s AI-Generated Cybersecurity Score
According to Rankiteo, Knauf’s AI-generated cybersecurity score is 737, reflecting their Moderate security posture.
How many security badges does Knauf’ have ?
According to Rankiteo, Knauf currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Knauf have SOC 2 Type 1 certification ?
According to Rankiteo, Knauf is not certified under SOC 2 Type 1.
Does Knauf have SOC 2 Type 2 certification ?
According to Rankiteo, Knauf does not hold a SOC 2 Type 2 certification.
Does Knauf comply with GDPR ?
According to Rankiteo, Knauf is not listed as GDPR compliant.
Does Knauf have PCI DSS certification ?
According to Rankiteo, Knauf does not currently maintain PCI DSS compliance.
Does Knauf comply with HIPAA ?
According to Rankiteo, Knauf is not compliant with HIPAA regulations.
Does Knauf have ISO 27001 certification ?
According to Rankiteo,Knauf is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Knauf
Knauf operates primarily in the Wholesale Building Materials industry.
Number of Employees at Knauf
Knauf employs approximately 11,662 people worldwide.
Subsidiaries Owned by Knauf
Knauf presently has no subsidiaries across any sectors.
Knauf’s LinkedIn Followers
Knauf’s official LinkedIn profile has approximately 107,034 followers.
NAICS Classification of Knauf
Knauf is classified under the NAICS code 4233, which corresponds to Lumber and Other Construction Materials Merchant Wholesalers.
Knauf’s Presence on Crunchbase
No, Knauf does not have a profile on Crunchbase.
Knauf’s Presence on LinkedIn
Yes, Knauf maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/knauf.
Cybersecurity Incidents Involving Knauf
As of December 14, 2025, Rankiteo reports that Knauf has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Knauf has an estimated 5,120 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Knauf ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
How does Knauf detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with shut down all it systems to isolate the incident, and communication strategy with apologized for any inconvenience or delays in the delivery processes..
Incident Details
Can you provide details on each incident ?
Title: Ransomware Attack on Knauf Group
Description: The Knauf Group was targeted in a ransomware attack by the Black Basta ransomware group at the end of June. The group disrupted its business operations, forcing its global IT team to shut down all IT systems to isolate the incident. Black Basta took responsibility for the attack via an announcement on their extortion site, listing Knauf as a victim. The ransomware gang published 20% of the files containing mail communication, user credentials, employee contact information, production documents, and ID scans that they allegedly exfiltrated during the attack on Knauf. The Knauf Group apologized for any inconvenience or delays in the delivery processes that may occur due to the attack while they were trying to resolve the issue.
Date Detected: End of June
Type: Ransomware
Threat Actor: Black Basta
Motivation: Financial Gain
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware KNA05626722
Data Compromised: Mail communication, User credentials, Employee contact information, Production documents, Id scans
Downtime: True
Identity Theft Risk: True
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Mail Communication, User Credentials, Employee Contact Information, Production Documents, Id Scans and .
Which entities were affected by each incident ?
Incident : Ransomware KNA05626722
Entity Name: Knauf Group
Entity Type: Company
Industry: Building Materials
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Ransomware KNA05626722
Containment Measures: shut down all IT systems to isolate the incident
Communication Strategy: apologized for any inconvenience or delays in the delivery processes
Data Breach Information
What type of data was compromised in each breach ?
Incident : Ransomware KNA05626722
Type of Data Compromised: Mail communication, User credentials, Employee contact information, Production documents, Id scans
Sensitivity of Data: High
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by shut down all it systems to isolate the incident and .
Ransomware Information
Was ransomware involved in any of the incidents ?
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Apologized For Any Inconvenience Or Delays In The Delivery Processes.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Black Basta.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on End of June.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were mail communication, user credentials, employee contact information, production documents, ID scans and .
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was shut down all IT systems to isolate the incident.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were user credentials, mail communication, ID scans, production documents and employee contact information.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.
Risk Information
cvss2
Base: 2.6
Severity: HIGH
AV:N/AC:H/Au:N/C:N/I:P/A:N
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=knauf' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
