MTVC
Company Details
Linkedin ID:
matco-tools
Website:
Employees number:
916
Number of followers:
13,262
NAICS:
8111
Industry Type:
Homepage:
matcotools.com
IP Addresses:
0
Company ID:
MAT_9404519
Scan Status:
In-progress
Matco Tools, A Vontier Company Company CyberSecurity Posture
matcotools.com
Matco Tools offers an extensive catalog of tools & tool storage products as well as franchise opportunities for independent sellers. Matco Tools manufactures, distributes, and services premium quality automotive equipment, tools, and tool storage for professional technician. The company has more than 60 years of national brand experience in the automotive equipment industry and a vast product line of more than 13,000 of the highest quality, innovative tools and accessories. Franchise owners operate independent businesses and operate in proprietary territories. Initial corporate and ongoing local training create and build outstanding value for the franchisee's business. For more information on Matco Tools products or franchise opportunities, visit: http://www.matcotools.com http://www.matcotools.com/franchise/ http://www.facebook.com/matcotools http://www.youtube.com/matcotoolsvideos http://twitter.com/matcotools A Vontier Company Vontier is a global industrial technology company focused on smarter transportation and mobility. Our portfolio is built on market-leading expertise in mobility technologies, retail and commercial fueling, fleet management, vehicle diagnostics and maintenance, and smart cities. Together, we are mobilizing the future to create a better world. Visit Vontier.com for more information.
Matco Tools, A Vontier Company A.I CyberSecurity Scoring
MTVC Risk Score (AI oriented)Between 700 and 749
MTVC
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
MTVC Global Score (TPRM)XXXX
MTVC
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
MTVC Company CyberSecurity News & History
Past Incidents
2
Attack Types
1
Matco Tools
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Vermont Office of the Attorney General reported that Matco Tools experienced a data breach on March 1, 2022, which involved unauthorized access to their network. The breach potentially affected customers' names and some variable data, but the exact number of individuals affected is unknown. Matco Tools is offering one year of complimentary identity monitoring services as a precaution.
Orpak Systems
Breach
Rankiteo Explanation
Attack threatening the organization’s existence
Description: Orpak Systems, an Israel-based company, alongside U.S.-based Gasboy fuel management systems, were targeted by a cyberattack orchestrated by the Iran-linked CyberAv3ngers group. The attackers leveraged a custom IoT malware, IOCONTROL, to infiltrate and compromise critical infrastructure. Approximately 200 gas stations in Israel and the U.S. were affected. The attack's impact included potential service shutdowns and the risk of credit card information theft from customers. Persistence and stealth features of the malware posed serious concerns as it could operate undetected and survive device restarts.
MTVC Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for MTVC
Incidents vs Vehicle Repair and Maintenance Industry Average (This Year)
No incidents recorded for Matco Tools, A Vontier Company in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Matco Tools, A Vontier Company in 2025.
Incident Types MTVC vs Vehicle Repair and Maintenance Industry Avg (This Year)
No incidents recorded for Matco Tools, A Vontier Company in 2025.
Incident History — MTVC (X = Date, Y = Severity)
MTVC cyber incidents detection timeline including parent company and subsidiaries
MTVC Company Subsidiaries
Matco Tools offers an extensive catalog of tools & tool storage products as well as franchise opportunities for independent sellers. Matco Tools manufactures, distributes, and services premium quality automotive equipment, tools, and tool storage for professional technician. The company has more than 60 years of national brand experience in the automotive equipment industry and a vast product line of more than 13,000 of the highest quality, innovative tools and accessories. Franchise owners operate independent businesses and operate in proprietary territories. Initial corporate and ongoing local training create and build outstanding value for the franchisee's business. For more information on Matco Tools products or franchise opportunities, visit: http://www.matcotools.com http://www.matcotools.com/franchise/ http://www.facebook.com/matcotools http://www.youtube.com/matcotoolsvideos http://twitter.com/matcotools A Vontier Company Vontier is a global industrial technology company focused on smarter transportation and mobility. Our portfolio is built on market-leading expertise in mobility technologies, retail and commercial fueling, fleet management, vehicle diagnostics and maintenance, and smart cities. Together, we are mobilizing the future to create a better world. Visit Vontier.com for more information.
Loading...
MTVC Similar Companies
Australia Post
Connecting businesses with consumers is the heart of commercial prosperity and the cornerstone of Australia Post's commitment to Australian businesses. As connectivity transforms our lives, Australia Post is evolving to meet the future needs of businesses by providing trusted service solutions in et
Glovo is a pioneering multi-category app connecting users with businesses, and couriers, offering on-demand services from local restaurants, grocers and supermarkets, and high street retail stores. Glovo’s vision is to give everyone easy access to everything within their city, so that our users can
HelloFresh is on a mission to change the way people eat, forever! From our 2011 founding in Europe’s vibrant tech hub Berlin, we’re evolving from the world’s leading meal kit company to the world's leading food solutions group. We delivered 243.3 million meals and reached 7.5 million active custome
You have loved and trusted our brands for over 170 years. We have a clear purpose, to deliver better everyday health with humanity. 💚 Our category-leading brands include Sensodyne, Panadol, Centrum, TUMS, Advil, Otrivin and Voltaren. We combine deep human understanding and trusted science to make ev
NRG stands at the intersection of energy and home services, where we are driven by the idea of a smarter, cleaner future. Our focus is on innovative solutions that make our customers’ lives easier—helping them power, protect, and intelligently manage their homes and businesses. Together, we create
Care.com is a consumer tech company with heart. We’re on a mission to solve a human challenge we all face: finding great care for the ones we love. We’re moms and dads and pet parents. We have parents and grandparents so we understand that everyone, at some point in their lives, could use a helping
.png)
MTVC CyberSecurity News
October 31, 2025 07:00 AM
Matco Tools Launches the Eagle Experience Mobile Toolbox and Diagnostic Tour
STOW, Ohio--(BUSINESS WIRE)--Matco Tools, a franchisee-led brand delivering quality automotive tools to professional technicians,...
July 24, 2025 07:00 AM
Matco Tools Unveils the New 6s Toolbox: The Pinnacle of Tool Storage for Automotive Technicians
STOW, Ohio, July 24, 2025--(BUSINESS WIRE)--Matco Tools is excited to announce the relaunch of the upgraded 6s toolbox,...
December 12, 2023 08:00 AM
Vontier Appoints Mike Dwyer As President Of Matco Tools
RALEIGH, N.C.–(BUSINESS WIRE)–Vontier Corporation (NYSE: VNT), a leading global provider of critical technologies and solutions to connect,...
December 12, 2023 08:00 AM
Vontier Appoints Mike Dwyer as President of Matco Tools
Mike Dwyer, who previously served as president of Goodyear Tire's North American consumer business, has been named president of Matco Tools.
January 27, 2023 08:00 AM
Matco Tools Corporation Files Official Notice of Data Breach Affecting Ove 14k Individuals
On January 26, 2023, Matco Tools Corporation filed notice of a data breach with the Maine Attorney General's Office following a cybersecurity incident.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
MTVC CyberSecurity History Information
Official Website of Matco Tools, A Vontier Company
The official website of Matco Tools, A Vontier Company is http://www.matcotools.com.
Matco Tools, A Vontier Company’s AI-Generated Cybersecurity Score
According to Rankiteo, Matco Tools, A Vontier Company’s AI-generated cybersecurity score is 735, reflecting their Moderate security posture.
How many security badges does Matco Tools, A Vontier Company’ have ?
According to Rankiteo, Matco Tools, A Vontier Company currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Matco Tools, A Vontier Company have SOC 2 Type 1 certification ?
According to Rankiteo, Matco Tools, A Vontier Company is not certified under SOC 2 Type 1.
Does Matco Tools, A Vontier Company have SOC 2 Type 2 certification ?
According to Rankiteo, Matco Tools, A Vontier Company does not hold a SOC 2 Type 2 certification.
Does Matco Tools, A Vontier Company comply with GDPR ?
According to Rankiteo, Matco Tools, A Vontier Company is not listed as GDPR compliant.
Does Matco Tools, A Vontier Company have PCI DSS certification ?
According to Rankiteo, Matco Tools, A Vontier Company does not currently maintain PCI DSS compliance.
Does Matco Tools, A Vontier Company comply with HIPAA ?
According to Rankiteo, Matco Tools, A Vontier Company is not compliant with HIPAA regulations.
Does Matco Tools, A Vontier Company have ISO 27001 certification ?
According to Rankiteo,Matco Tools, A Vontier Company is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Matco Tools, A Vontier Company
Matco Tools, A Vontier Company operates primarily in the Vehicle Repair and Maintenance industry.
Number of Employees at Matco Tools, A Vontier Company
Matco Tools, A Vontier Company employs approximately 916 people worldwide.
Subsidiaries Owned by Matco Tools, A Vontier Company
Matco Tools, A Vontier Company presently has no subsidiaries across any sectors.
Matco Tools, A Vontier Company’s LinkedIn Followers
Matco Tools, A Vontier Company’s official LinkedIn profile has approximately 13,262 followers.
NAICS Classification of Matco Tools, A Vontier Company
Matco Tools, A Vontier Company is classified under the NAICS code 8111, which corresponds to Automotive Repair and Maintenance.
Matco Tools, A Vontier Company’s Presence on Crunchbase
Yes, Matco Tools, A Vontier Company has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/matco-tools-franchise.
Matco Tools, A Vontier Company’s Presence on LinkedIn
Yes, Matco Tools, A Vontier Company maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/matco-tools.
Cybersecurity Incidents Involving Matco Tools, A Vontier Company
As of November 28, 2025, Rankiteo reports that Matco Tools, A Vontier Company has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
Matco Tools, A Vontier Company has an estimated 177 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Matco Tools, A Vontier Company ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Cyberattack on Orpak Systems and Gasboy Fuel Management Systems
Description: Orpak Systems, an Israel-based company, alongside U.S.-based Gasboy fuel management systems, were targeted by a cyberattack orchestrated by the Iran-linked CyberAv3ngers group. The attackers leveraged a custom IoT malware, IOCONTROL, to infiltrate and compromise critical infrastructure. Approximately 200 gas stations in Israel and the U.S. were affected. The attack's impact included potential service shutdowns and the risk of credit card information theft from customers. Persistence and stealth features of the malware posed serious concerns as it could operate undetected and survive device restarts.
Type: Cyberattack
Attack Vector: IoT Malware
Vulnerability Exploited: Custom IoT malware, IOCONTROL
Threat Actor: CyberAv3ngers group
Motivation: Disruption and potential data theft
Title: Matco Tools Data Breach
Description: The Vermont Office of the Attorney General reported that Matco Tools experienced a data breach on March 1, 2022, which involved unauthorized access to their network. The breach potentially affected customers' names and some variable data, but the exact number of individuals affected is unknown. Matco Tools is offering one year of complimentary identity monitoring services as a precaution.
Date Detected: 2022-03-01
Type: Data Breach
Attack Vector: Unauthorized Access
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Cyberattack ORP001122124
Data Compromised: Credit card information
Systems Affected: Gas station fuel management systems
Downtime: ['Potential service shutdowns']
Payment Information Risk: ['High']
Incident : Data Breach MAT603072525
Data Compromised: Customers' names, Variable data
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Credit Card Information, , Customers' Names, Variable Data and .
Which entities were affected by each incident ?
Incident : Cyberattack ORP001122124
Entity Name: Orpak Systems
Entity Type: Company
Industry: Fuel Management Systems
Location: Israel
Customers Affected: Approximately 200 gas stations
Incident : Cyberattack ORP001122124
Entity Name: Gasboy
Entity Type: Company
Industry: Fuel Management Systems
Location: U.S.
Customers Affected: Approximately 200 gas stations
Incident : Data Breach MAT603072525
Entity Name: Matco Tools
Entity Type: Company
Industry: Tools and Equipment
Data Breach Information
What type of data was compromised in each breach ?
Incident : Cyberattack ORP001122124
Type of Data Compromised: Credit card information
Incident : Data Breach MAT603072525
Type of Data Compromised: Customers' names, Variable data
References
Where can I find more information about each incident ?
Incident : Data Breach MAT603072525
Source: Vermont Office of the Attorney General
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Vermont Office of the Attorney General.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an CyberAv3ngers group.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2022-03-01.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Credit card information, , Customers' names, Variable data and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was Gas station fuel management systems.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Credit card information, Customers' names and Variable data.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Vermont Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=matco-tools' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
