Kohl's
Company Details
Linkedin ID:
kohls-department-stores
Website:
Employees number:
54,385
Number of followers:
293,768
NAICS:
43
Industry Type:
Homepage:
kohls.com
IP Addresses:
0
Company ID:
KOH_1953591
Scan Status:
In-progress
Kohl's Company CyberSecurity Posture
kohls.com
Kohl’s is a leading omnichannel retailer with more than 1,100 stores in 49 states. Kohl's business is built on a solid foundation of more than 60 million customers, an unmatched brand portfolio, industry-leading loyalty and Kohl's Card programs, a convenient and accessible nationwide store footprint, and large digital business on Kohls.com and the Kohl's mobile app.
Kohl's A.I CyberSecurity Scoring
Kohl's Risk Score (AI oriented)Between 750 and 799
Kohl's
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Kohl's Global Score (TPRM)XXXX
Kohl's
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Kohl's Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Kohl's Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Kohl's
Incidents vs Retail Industry Average (This Year)
No incidents recorded for Kohl's in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Kohl's in 2026.
Incident Types Kohl's vs Retail Industry Avg (This Year)
No incidents recorded for Kohl's in 2026.
Incident History — Kohl's (X = Date, Y = Severity)
Kohl's cyber incidents detection timeline including parent company and subsidiaries
Kohl's Company Subsidiaries
Kohl’s is a leading omnichannel retailer with more than 1,100 stores in 49 states. Kohl's business is built on a solid foundation of more than 60 million customers, an unmatched brand portfolio, industry-leading loyalty and Kohl's Card programs, a convenient and accessible nationwide store footprint, and large digital business on Kohls.com and the Kohl's mobile app.
Loading...
Kohl's Similar Companies
Migros Ticaret
Türkiye'de modern perakende sektörünün öncülüğünü yapmakta olan Migros günümüzde çok geniş kullanım alanına sahip mağazalarında, gıda ve ihtiyaç maddelerinin yanı sıra kırtasiye, züccaciye, beyaz eşya, kitap ve konfeksiyon gibi bölümleriyle hemen hemen tüm müşteri gereksinimlerini karşılamaktadır.
Sally Beauty Holdings, Inc. (“Sally”) through its affiliates is the world’s largest distributor of professional beauty supplies. Sally provides the channels that allow manufacturers of beauty supplies to reach customers, both professional and non-professional. Sally Beauty Company, Inc. began a
Albertsons Companies is one of the largest food and drug retailers in the United States, with over 2,200 stores in 34 states and the District of Columbia. Our well-known banners include Albertsons, Safeway, Vons, Jewel-Osco, Shaw's, Acme, Tom Thumb, Randalls, United Supermarkets, Pavilions, Star Mar
Ace Hardware Corporation
Ace Hardware is the largest retailer-owned hardware cooperative in the world with over 5,800 locally owned and operated hardware stores in approximately 70 countries. Headquartered in Oak Brook, Ill., Ace and its subsidiaries operate an expansive network of distribution centers in the U.S. and have
Jumbo Supermarkten
Jumbo is een Brabants familiebedrijf met een rijke historie. Begonnen in 1921 als levensmiddelengroothandel heeft Jumbo een indrukwekkende groei doorgemaakt. Inmiddels is het de tweede supermarktketen van Nederland. Wekelijks verwelkomt Jumbo miljoenen klanten in meer dan 700 winkels en online via J
UNIQLO
About UNIQLO LifeWear Apparel that comes from the Japanese values of simplicity, quality, and longevity. Designed to be of the time and for the time, LifeWear is made with such modern elegance that it becomes the building blocks of each individual’s style. A perfect shirt that is always being made m
Trader Joe's
Trader Joe’s is a national chain of neighborhood grocery stores. We are committed to providing our customers outstanding value in the form of the best quality products at the best everyday prices. Through our rewarding products and knowledgeable, friendly Crew Members, we have been transforming groc
The Shoprite Group is the largest retailer in Africa, known for its iconic supermarket brands Shoprite, Checkers and Usave. Starting with just eight stores and 400 employees in 1979, our business is now the continent’s industry leader by market capitalisation, sales, profit, and number of employees
QuikTrip
QuikTrip Corporation is a privately held company headquartered in Tulsa, Oklahoma. Founded in 1958, QuikTrip has grown to a more than $11 billion company with 800+ stores in eleven states. Those revenues place QuikTrip #29 on the Forbes listing of largest privately held companies. QuikTrip’s strate
.png)
Kohl's CyberSecurity News
December 01, 2025 08:00 AM
MicroAge Appoints Larry Gentry as CEO
PHOENIX, December 1, 2025 (Newswire.com) - MicroAge®, announced today that Larry Gentry has been appointed Chief Executive Officer,...
October 29, 2025 07:00 AM
Kohl’s Taps Giannis Antetokounmpo & Ellie Kemper for Holiday Marketing Push
Kohl's enlists Giannis Antetokounmpo and Ellie Kemper to headline its holiday campaign featuring humor, family, and hometown spirit.
September 04, 2025 07:00 AM
How to Tackle Cybersecurity Tool Sprawl
Start with assessing your data assets, then ensure your people are trained to use the security tools you need.
August 27, 2025 07:00 AM
Stocks to Watch Today : Nvidia, CrowdStrike, DSS Inc., NovaBay Pharma, Kohl’s Corporation
On August 27, key stocks like Nvidia, DSS, and CrowdStrike showed significant trading activity and varied performances, reflecting investor...
May 22, 2025 07:00 AM
Recipients of the 2025 NRF PROTECT Awards Announced
The National Retail Federation will honor leading professionals in loss prevention and cybersecurity at the 2025 NRF PROTECT Awards on June...
March 26, 2025 07:00 AM
Two dozen Kohl’s stores to shutter this weekend: Here’s where
Kohl's announced 27 underperforming stores would close before April. The final day for those locations is coming this weekend.
October 15, 2024 07:00 AM
Kohl’s class action claims retailer affected by third-party data breach
Who: A Kohl's customer, plaintiff Michael Martinez, is suing the retailer. Why: Martinez claims Kohl's did not adequately protect customer...
October 11, 2024 07:00 AM
Kohl’s, Others Join List Sued Over Debt Collector Data Breach
Four more disparate companies have been hit with proposed class actions accusing them of inadequate cybersecurity linked to debt-collection...
April 04, 2024 07:00 AM
Expert: Cyberattacks 'more sophisticated,' protect yourself
Data breaches are a periodic occurrence — from hospital systems to the AT&T data leak just this week. AT&T said 73 million customers were...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Kohl's CyberSecurity History Information
Official Website of Kohl's
The official website of Kohl's is http://careers.kohls.com.
Kohl's’s AI-Generated Cybersecurity Score
According to Rankiteo, Kohl's’s AI-generated cybersecurity score is 777, reflecting their Fair security posture.
How many security badges does Kohl's’ have ?
According to Rankiteo, Kohl's currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Kohl's been affected by any supply chain cyber incidents ?
According to Rankiteo, Kohl's has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Kohl's have SOC 2 Type 1 certification ?
According to Rankiteo, Kohl's is not certified under SOC 2 Type 1.
Does Kohl's have SOC 2 Type 2 certification ?
According to Rankiteo, Kohl's does not hold a SOC 2 Type 2 certification.
Does Kohl's comply with GDPR ?
According to Rankiteo, Kohl's is not listed as GDPR compliant.
Does Kohl's have PCI DSS certification ?
According to Rankiteo, Kohl's does not currently maintain PCI DSS compliance.
Does Kohl's comply with HIPAA ?
According to Rankiteo, Kohl's is not compliant with HIPAA regulations.
Does Kohl's have ISO 27001 certification ?
According to Rankiteo,Kohl's is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Kohl's
Kohl's operates primarily in the Retail industry.
Number of Employees at Kohl's
Kohl's employs approximately 54,385 people worldwide.
Subsidiaries Owned by Kohl's
Kohl's presently has no subsidiaries across any sectors.
Kohl's’s LinkedIn Followers
Kohl's’s official LinkedIn profile has approximately 293,768 followers.
NAICS Classification of Kohl's
Kohl's is classified under the NAICS code 43, which corresponds to Retail Trade.
Kohl's’s Presence on Crunchbase
Yes, Kohl's has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/kohl-s.
Kohl's’s Presence on LinkedIn
Yes, Kohl's maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/kohls-department-stores.
Cybersecurity Incidents Involving Kohl's
As of January 24, 2026, Rankiteo reports that Kohl's has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Kohl's has an estimated 15,596 peer or competitor companies worldwide.
Kohl's CyberSecurity History Information
How many cyber incidents has Kohl's faced ?
Total Incidents: According to Rankiteo, Kohl's has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Kohl's ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Typemill is a flat-file, Markdown-based CMS designed for informational documentation websites. A reflected Cross-Site Scripting (XSS) exists in the login error view template `login.twig` of versions 2.19.1 and below. The `username` value can be echoed back without proper contextual encoding when authentication fails. An attacker can execute script in the login page context. This issue has been fixed in version 2.19.2.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Description
A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sourcecodester Domain Availability Checker v1.0. The vulnerability occurs because the application improperly handles user-supplied data in the createResultElement method by using the unsafe innerHTML property to render domain search results.
Description
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/upload.php component. The application fails to properly validate uploaded file contents. Additionally, the application preserves the user-supplied file extension during the save process. This allows an unauthenticated attacker to upload arbitrary PHP code by spoofing the MIME type as an image, leading to full system compromise.
Description
A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at jailer startup, if the jailer is executed with root privileges. To mitigate this issue, users should upgrade to version v1.13.2 or 1.14.1 or above.
Risk Information
cvss3
Base: 6.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
cvss4
Base: 6.0
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description
An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Aptsys gemscms backend platform thru 2025-05-28. This unauthenticated endpoint returns a list of cashier accounts, including names, email addresses, usernames, and passwords hashed using MD5. As MD5 is a broken cryptographic function, the hashes can be easily reversed using public tools, exposing user credentials in plaintext. This allows remote attackers to perform unauthorized logins and potentially gain access to sensitive POS operations or backend functions.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=kohls-department-stores' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
