What is the official website of Mercadona ?

The official website of Mercadona is https://mercadona.avature.net/es_ES/Careers.

What is Mercadona's cybersecurity risk score?

Mercadona has an AI-generated cybersecurity risk score of 821 out of 1000, indicating a Good security posture according to Rankiteo's assessment.

How many security incidents has Mercadona experienced?

According to Rankiteo, Mercadona currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Mercadona been affected by any supply chain cyber incidents ?

According to Rankiteo, Mercadona has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Mercadona have SOC 2 Type 1 certification ?

According to Rankiteo, Mercadona is not certified under SOC 2 Type 1.

Does Mercadona have SOC 2 Type 2 certification ?

According to Rankiteo, Mercadona does not hold a SOC 2 Type 2 certification.

Does Mercadona comply with GDPR ?

According to Rankiteo, Mercadona is not listed as GDPR compliant.

Does Mercadona have PCI DSS certification ?

According to Rankiteo, Mercadona does not currently maintain PCI DSS compliance.

Does Mercadona comply with HIPAA ?

According to Rankiteo, Mercadona is not compliant with HIPAA regulations.

Does Mercadona have ISO 27001 certification ?

According to Rankiteo,Mercadona is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Mercadona operate in ?

Mercadona operates primarily in the Retail industry.

How many employees does Mercadona have ?

Mercadona employs approximately 31,177 people worldwide.

Does Mercadona own any subsidiaries ?

Mercadona presently has no subsidiaries across any sectors.

How many LinkedIn followers does Mercadona have ?

Mercadona's official LinkedIn profile has approximately 1,378,699 followers.

What is the NAICS classification code for Mercadona ?

Mercadona is classified under the NAICS code 43, which corresponds to Retail Trade.

Does Mercadona have a Crunchbase profile ?

No, Mercadona does not have a profile on Crunchbase.

Does Mercadona have a LinkedIn profile ?

Yes, Mercadona maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/mercadona.

How many cybersecurity incidents has Mercadona experienced ?

As of June 6, 2026, Rankiteo reports that Mercadona has not experienced any cybersecurity incidents.

How many peer or competitor companies does Mercadona have ?

Mercadona has an estimated 15,820 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Mercadona

Boost Score +25 with badge (5 left)

821

/1000

Good

846

/1000

Good

Mercadona Vendor Cyber Rating & Cyber Score

avature.net

Add Your Compliance Badge

Mercadona is a leading company of physical supermarkets in Spain with an online service, with over 1,610 stores and more than 5.9 million households as customers. Additionally, it has 60 stores in Portugal, with a presence in nine different districts. A family-owned company, its objective is to offer its customers the best solutions with the maximum quality in food, personal care, home care and pet care. Mercadona has the best talent: a workforce of 110,000 highly committed individuals, 7,000 of them in Portugal, who share the Mercadona Model and a passion for service excellence. To achieve this, the company has a pioneering human resources policy which sets it apart in the industry, offering stable, quality employment, continuous

Mercadona A.I CyberSecurity Scoring

Scoring History

Mercadona

Mercadona CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

Mercadona Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Mercadona

Incidents vs Retail Industry Avg (This Year)

No incidents recorded for Mercadona in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Mercadona in 2026.

Incident Types Mercadona vs Retail Industry Avg (This Year)

No incidents recorded for Mercadona in 2026.

Incident History - Mercadona (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Mercadona Subsidiaries

Mercadona

Retail

Website: https://mercadona.avature.net/es_ES/Careers

Company Size: 10,001+ employees

Mercadona PortugalRetail

Loading…

Mercadona Similar Companies

Toys"R"Us

toysrus.com

Toys“R”Us is a beloved brand known all around the world—and we know how to have fun! For over 70 years we've been the toy authority and ambassadors of all things play. Our new vision looks beyond traditional retail for a re-imagined, immersive experience for kids of all ages. We've got a whole new way to play, and we can't wait to share it with you!

Lojas Renner S.A.

lojasrennersa.com.br

We are a fashion and lifestyle ecosystem connected to our customers through digital channels and more than 600 stores in Brazil, Argentina and Uruguay. From the beginning, everything we do is to enchant. This is how our story began, in 1965, conquering important milestones, and today we are the leader in omnichannel fashion retail in the country. All this history based on solid values, built by our more than 24 thousand employees from the Renner, Camicado, Youcom, Realize CFI and Repassa businesses. We are creating a sustainability journey, with commitments to an increasingly responsible fashion. Through our businesses, we enchant employees, customers and everyone who is part of this network, always with a lot of collaboration and care for people. We are Lojas Renner S.A.

SPAR International

spar-international.com

The worldwide SPAR organisation operates over 13,800 SPAR stores in 48 countries on four continents, meeting the needs of over 14,7 million consumers every day. The SPAR concept was established on the basis of wholesalers and retailers working in partnership to the benefit of all, including customers. The cornerstone of this partnership is a commitment to the open exchange of knowledge and information. This commitment is a hallmark of the organisation and is intimately connected to the sense of SPAR as a family. Today, SPAR is the world's largest food retail voluntary chain with a rapidly growing presence globally. SPAR located in central Amsterdam is the custodian of the SPAR brand worldwide and unites the scale and resources of the global group, providing strategies and a wide scope of service to grow our brand, our retail operations and our presence worldwide.

B&M Retail

bmstores.co.uk

B&M is a fast-growing discount retailer, operating from over 750 high street and out of town stores across the UK, with a team of over 38,000! In the UK, we offer customers a broad range of FMCG brands and non-grocery products at sensational prices. Our aim is to provide customers with a fun and exciting shopping experience, offering them great products and fantastic value so that they return again and again to a B&M store. Our success is down to our customers and built on “word of mouth” – with an average 5 million customer transactions across our stores each week. We spend next to nothing on advertising so that we can focus on keeping the prices of our products as low as possible. The Group also owns a chain of over 100 general merchandise and grocery stores in France under the B&M brand. Our Heron Foods business operates over 300 discount convenience stores in England and Wales. To find out more about joining one of the UK’s fastest growing retailers, please visit our website www.bmstores.co.uk/careers

Woolworths

cb woolworths.co.za

Woolworths offers a unique blend of food, fashion, beauty and homeware. Since 1931, we’ve found ways to do better, think bigger, inspire more, care more. As we continue to innovate and evolve, our commitment to quality will never change. Woolies Exceptional Quality™ is the driving force of every decision we make, product we sell and customer we serve. Our values inform what we stand for and underpin everything we do. And our duty to leave the world and our community in a better place than we found it means that sustainability, transparency and ethical practices sit at the heart of our business. Join us and our creative, innovative, passionate and dedicated 34 000 strong staff on our journey to be a leading retailer in the southern hemisphere.

Leroy Merlin

adeo.com

Leroy Merlin is a major player in the global DIY market. We help people around the world with all their home improvement projects, from renovations and extensions, to decoration and repairs... We offer a wide range of DIY solutions that cover plumbing, lighting, heating, electricity, sanitation, security, cooking, gardening and much more. At Leroy Merlin, we believe that people are at the heart of any business. This commitment, based on our Human First strategy, has allowed us to be regularly reward by the “Great Place to Work” Institute and "Top Employers" Institute in different countries. Adapting to local markets and promoting partnerships are key drivers for Leroy Merlin. We believe that it's only by building long-lasting relationships that we can create value for everyone: our customers, co-workers, suppliers, local markets and stakeholders.

Speedway

speedway.com

Speedway operates across the U.S., predominately in the Midwest and East Coast. In May 2021, 7-Eleven acquired 3,800 Speedway Stores from Marathon Petroleum Corp., increasing 7-Eleven’s total number of stores to more than 13,000 in the U.S. and Canada and allowing 7-Eleven to bring convenience to more customers than ever before. Learn more about 7-Eleven and their family of brands here: https://corp.7-eleven.com/corp/about

Sodimac

falabella.com

#SomosUnEquipo Te invitamos a conocer y a ser parte de nuestra Casa, un lugar donde la innovación, la sostenibilidad y la diversidad se viven día a día. Con más de 60 años de trayectoria y presencia en Chile, Perú, Colombia, Argentina, Brasil, Uruguay y México, nuestra compañía se enfoca en el mejoramiento del hogar, desarrollando soluciones únicas e innovadoras para nuestros clientes, mientras que nuestros equipos trabajan colaborativamente para cumplir nuestro Propósito: Simplificar y disfrutar más la vida. Somos parte de Falabella y ofrecemos grandes oportunidades de desarrollo profesional, movilidad y aprendizaje, así como también la experiencia de trabajar en uno de los principales conglomerados de Retail de América Latina. Súmate a nuestra Casa, súmate a Falabella. ¡Te esperamos! Falabella Corporativo: Chile – Perú - India Falabella Retail: Colombia - Chile - Perú Sodimac: Chile - México - Perú - Argentina - Colombia - Brasil - Uruguay Falabella Financiero: Chile - Perú - Colombia - México Falabella.com: Chile Linio: Perú - México - Chile - Colombia Tottus: Chile – Perú Falabella Inmobiliario: Chile - Perú Mall Plaza: Chile - Colombia - Perú

Auchan Retail

auchan-retail.com

To create new-generation retailing that improves people’s lives, Auchan Retail places customers at the centre of its actions and reaffirms the retailer’s role: that of a multi-format, “phygital” activist for good, healthy, local produce that constantly reinvents itself to deliver a new customer experience – one that’s close, connected, surprising and considerate. Auchan Retail’s 1,985 points of sale offer all forms of retailing in 12 countries: hypermarkets, supermarkets and ultra convenience stores – all supplemented by the power and flexibility of e-retail. We’re one of the largest employer worldwide, with 179,590 employees.

Loading…

NEWS

Mercadona CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 10, 2026 08:00 AM

Institut Cerdà recognises Mercadona's Portal Tornillo

Mercadona has been recognised for Portal Tornillo, an internal tool developed by the Mercadona IT team that streamlines selection...

Read Article

February 05, 2025 08:00 AM

These are the five best Mercadona products for ‘guiris’ in Spain, according to TikToker – but do YOU agree?

The Impact of Cyber Attacks on Gambling. Next Story. Spain plans to reduce working week to 37.5 hours: Government says it will 'modernise'...

Read Article

January 30, 2025 08:00 AM

Mercadona reinforces its commitment to Digital Excellence with an investment of 250 million euros

Mercadona IT, Mercadona's IT department implements an ambitious Digital Excellence Plan up to 2028 for modernising 300 internal applications...

Read Article

September 18, 2024 07:00 AM

Mercadona creates a Tech Hub in Porto

Mercadona is recruiting a team of tech experts for its new Porto Tech Hub. Mercadona's Tech Hub in Porto will focus on the digitalization and reengineering of...

Read Article

May 28, 2024 07:00 AM

Iberdrola España breaks 2,000 charging points at Mercadona supermarkets

Iberdrola España has installed its first 2000 charging points at Mercadona supermarkets and workplaces, building the largest semi-fast...

Read Article

December 11, 2023 08:00 AM

Mercadona expands its technology team opening development hubs in Seville, Vigo, Santander and Porto

Mercadona IT has facilities in Valencia, Seville (with ten employees), Vigo (with a team of eight IT professionals), Santander (with twelve)...

Read Article

July 30, 2021 07:00 AM

Spanish DPA Fines Supermarket Chain 2,520,000 EUR for Unlawful Use of Facial Recognition System

On July 27, 2021, the Spanish Data Protection Authority (the “AEPD”) imposed a €2,520,000 fine on Spanish supermarket chain Mercadona,...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…