LSC
Company Details
Linkedin ID:
levi-strauss-&-co-
Website:
Employees number:
16,765
Number of followers:
751,717
NAICS:
448
Industry Type:
Homepage:
levistrauss.com
IP Addresses:
0
Company ID:
LEV_2218723
Scan Status:
In-progress
Levi Strauss & Co. Company CyberSecurity Posture
levistrauss.com
You’re an original. So are we. We’re a company of people who like to forge our own path. We invented the blue jean in 1873, and we reinvented khaki pants in 1986. We pioneered labor and environmental guidelines in manufacturing. And we work to build sustainability into everything we do. We just might be the original startup. Our brands — Levi’s®, Dockers®, Beyond Yoga®, Denizen® and Signature by Levi Strauss & Co.™ — stand for freedom and self-expression around the world. And for more than 170 years, we’ve used the strength of our brands to lead with our values and make an outsized impact on the world. There’s plenty of room to make your mark here. We employ more than 15,000 people around the world, and this is a place where everyone contributes to the conversation. Levi Strauss & Co. is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law.
Levi Strauss & Co. A.I CyberSecurity Scoring
LSC Risk Score (AI oriented)Between 750 and 799
LSC
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
LSC Global Score (TPRM)XXXX
LSC
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
LSC Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Levi Strauss & Co.
Breach
Rankiteo Explanation
Attack without any consequences
Description: The Washington State Office of the Attorney General reported a data breach involving Levi Strauss & Co. on June 21, 2024. The incident, classified as unauthorized access, was discovered on June 13, 2024, affecting approximately 640 individuals. The breach involved attempts to log into accounts using stolen credentials but did not confirm any fraudulent activities.
LSC Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for LSC
Incidents vs Retail Apparel and Fashion Industry Average (This Year)
No incidents recorded for Levi Strauss & Co. in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Levi Strauss & Co. in 2025.
Incident Types LSC vs Retail Apparel and Fashion Industry Avg (This Year)
No incidents recorded for Levi Strauss & Co. in 2025.
Incident History — LSC (X = Date, Y = Severity)
LSC cyber incidents detection timeline including parent company and subsidiaries
LSC Company Subsidiaries
You’re an original. So are we. We’re a company of people who like to forge our own path. We invented the blue jean in 1873, and we reinvented khaki pants in 1986. We pioneered labor and environmental guidelines in manufacturing. And we work to build sustainability into everything we do. We just might be the original startup. Our brands — Levi’s®, Dockers®, Beyond Yoga®, Denizen® and Signature by Levi Strauss & Co.™ — stand for freedom and self-expression around the world. And for more than 170 years, we’ve used the strength of our brands to lead with our values and make an outsized impact on the world. There’s plenty of room to make your mark here. We employ more than 15,000 people around the world, and this is a place where everyone contributes to the conversation. Levi Strauss & Co. is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law.
Loading...
LSC Similar Companies
Aditya Birla Fashion and Retail Ltd. (ABFRL) emerged after the consolidation of the branded apparel businesses of Aditya Birla Group comprising ABNL's Madura Fashion division and ABNL's subsidiaries Pantaloons Fashion and Retail (PFRL) and Madura Fashion & Lifestyle (MFL) in May 2015. Post the conso
C&A Brasil
A C&A foi fundada em 1841 pelos irmãos holandeses Clemens e August. Suas iniciais deram origem ao nome da marca. Somamos mais de 1,8 mil unidades em 24 países da Europa, América Latina e Ásia e estamos entre as maiores redes de varejo do mundo. No Brasil, tudo começou em 1976, com a inauguração da
VF Corporation
VF Corporation is one of the world’s largest apparel, footwear and accessories companies connecting people to the lifestyles, activities and experiences they cherish most through a family of iconic outdoor, active and workwear brands including Vans®, The North Face®, Timberland® and Dickies®. Our pu
Under Armour
Under Armour is obsessed with being better, stronger, and more focused than anyone else out there. Our mission: to make athletes better. Our vision: to inspire you with performance solutions you never knew you needed and can’t imagine living without. Our values define and unite us, the belief
Forever 21 continues to be a fashion industry leader with a mission to make the latest trends accessible to all. F21 persists on staying ahead of innovation and providing styles and fit that our customers love. While reinventing for now and beyond, we’re seeking passionate and creative new family me
ChenOne Stores Limited
ChenOne is a chain of fashion stores owned by the Chenab Group. The first ChenOne store was opened in 1997 at Islamabad with the sole ambition to bring world class standards to a local market. Currently, there are more than 30 business units changing lifestyles both locally and all over the globe.
At HUGO BOSS, we firmly believe that the passion and dedication of our employees is the essence for the successful execution of our “CLAIM 5” growth strategy. A strong commitment to empowering people and teams is therefore firmly anchored in “CLAIM 5”. In this context, our HUGO BOSS values – entrepr
Tailored Brands, Inc.
Our Purpose: We help people love the way they look and feel for their most important moments. Our Values: • Customer-First - We put customers at the center of every decision • Win Together - We rally together to achieve common goals • Better Every Day - We strive for excellence and continuous impro
Our global house of brands unites the magic of Coach and Kate Spade New York. By intertwining different people and ideas, we push ourselves in our work and expand the bounds of possibility. Learn about our iconic brands: tapestry.com/our-brands We’ve grown by finding people dedicated to the dream a
.png)
LSC CyberSecurity News
November 27, 2025 09:23 AM
The Trends: Are jeans experincing a positive new wave?
Denim is getting ready for a recovery. This is an opinion industry insiders are discussing about while they are gathered in Milan for Denim...
November 27, 2025 12:14 AM
Is Levi Strauss’s 2025 Rally Justified After 32.8% Gains and Digital Expansion?
Ever wondered if Levi Strauss shares are truly worth their price, or if there is hidden value the market is missing?
November 26, 2025 08:10 PM
Levi’s Opens Its Biggest Italian Store in Milan
Levi's opened its biggest store in Italy in Milan's central shopping street Corso Vittorio Emanuele, offering iconic denim, collaborations,...
November 24, 2025 07:41 PM
'There’s only so much you can absorb from the tariffs, because they’re just very high': Levi’s CEO states the plain truth
Levi's CEO Michelle Gass spoke to McKinsey and Business of Fashion for its 10th “State of Fashion” report. It's a “relationship business,”...
November 24, 2025 12:15 PM
Hillsdale Investment Management Inc. Acquires 73,800 Shares of Levi Strauss & Co. $LEVI
Hillsdale Investment Management Inc. grew its stake in Levi Strauss & Co. (NYSE:LEVI - Free Report) by 216.7% during the second quarter,...
November 22, 2025 10:09 AM
Levi Strauss (LEVI): Assessing Valuation After Strong Shareholder Returns and Analyst Optimism
Levi Strauss (LEVI) shares have seen some movement recently, prompting investors to pay attention to the stock's performance and valuation.
November 20, 2025 11:16 PM
New Levi’s Exhibit Proves Iconic Jeans Never Fade
Levi Strauss has reopened its history museum, The Vault, with an exhibit called “Amped” that celebrates iconic denim looks worn by musicians...
November 19, 2025 05:16 PM
3 Anti-Jeans Fashion Editors Try The World's Most Famous Denim Brand—These 6 Styles Seriously Impressed Us
I Just Tried Levi's Best-Selling Jeans—These 6 Pairs Seriously Impressed Me · The Best Levi's Jeans · 1. Levi's Ribcage Wide-Leg · 2. Levi's 501...
November 19, 2025 10:00 AM
What we can learn about Kurt Cobain, Freddie Mercury and Beyoncé from their denim
An exhibition at Levi's San Francisco headquarters highlights how jeans can offer surprising insights into the lives and legacies of the...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
LSC CyberSecurity History Information
Official Website of Levi Strauss & Co.
The official website of Levi Strauss & Co. is http://www.levistrauss.com.
Levi Strauss & Co.’s AI-Generated Cybersecurity Score
According to Rankiteo, Levi Strauss & Co.’s AI-generated cybersecurity score is 757, reflecting their Fair security posture.
How many security badges does Levi Strauss & Co.’ have ?
According to Rankiteo, Levi Strauss & Co. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Levi Strauss & Co. have SOC 2 Type 1 certification ?
According to Rankiteo, Levi Strauss & Co. is not certified under SOC 2 Type 1.
Does Levi Strauss & Co. have SOC 2 Type 2 certification ?
According to Rankiteo, Levi Strauss & Co. does not hold a SOC 2 Type 2 certification.
Does Levi Strauss & Co. comply with GDPR ?
According to Rankiteo, Levi Strauss & Co. is not listed as GDPR compliant.
Does Levi Strauss & Co. have PCI DSS certification ?
According to Rankiteo, Levi Strauss & Co. does not currently maintain PCI DSS compliance.
Does Levi Strauss & Co. comply with HIPAA ?
According to Rankiteo, Levi Strauss & Co. is not compliant with HIPAA regulations.
Does Levi Strauss & Co. have ISO 27001 certification ?
According to Rankiteo,Levi Strauss & Co. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Levi Strauss & Co.
Levi Strauss & Co. operates primarily in the Retail Apparel and Fashion industry.
Number of Employees at Levi Strauss & Co.
Levi Strauss & Co. employs approximately 16,765 people worldwide.
Subsidiaries Owned by Levi Strauss & Co.
Levi Strauss & Co. presently has no subsidiaries across any sectors.
Levi Strauss & Co.’s LinkedIn Followers
Levi Strauss & Co.’s official LinkedIn profile has approximately 751,717 followers.
NAICS Classification of Levi Strauss & Co.
Levi Strauss & Co. is classified under the NAICS code 448, which corresponds to Clothing and Clothing Accessories Stores.
Levi Strauss & Co.’s Presence on Crunchbase
Yes, Levi Strauss & Co. has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/levi-strauss-co.
Levi Strauss & Co.’s Presence on LinkedIn
Yes, Levi Strauss & Co. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/levi-strauss-&-co-.
Cybersecurity Incidents Involving Levi Strauss & Co.
As of November 27, 2025, Rankiteo reports that Levi Strauss & Co. has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Levi Strauss & Co. has an estimated 4,844 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Levi Strauss & Co. ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Levi Strauss & Co. Data Breach
Description: The Washington State Office of the Attorney General reported a data breach involving Levi Strauss & Co. on June 21, 2024. The incident, classified as unauthorized access, was discovered on June 13, 2024, affecting approximately 640 individuals. The breach involved attempts to log into accounts using stolen credentials but did not confirm any fraudulent activities.
Date Detected: 2024-06-13
Date Publicly Disclosed: 2024-06-21
Type: Data Breach
Attack Vector: Unauthorized Access
Vulnerability Exploited: Stolen Credentials
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
Which entities were affected by each incident ?
Incident : Data Breach LEV007072625
Entity Name: Levi Strauss & Co.
Entity Type: Company
Industry: Retail
Customers Affected: 640
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach LEV007072625
Number of Records Exposed: 640
References
Where can I find more information about each incident ?
Incident : Data Breach LEV007072625
Source: Washington State Office of the Attorney General
Date Accessed: 2024-06-21
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Washington State Office of the Attorney GeneralDate Accessed: 2024-06-21.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2024-06-13.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2024-06-21.
Data Breach Information
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 640.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Washington State Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=levi-strauss-&-co-' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
