Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Mercedes-Benz USA

Mercedes-Benz USA Vendor Cyber Rating & Cyber Score

mbusa.com

Mercedes-Benz USA, LLC (MBUSA), a Daimler Company, is responsible for the Distribution and Marketing of Mercedes-Benz and smart products in the United States. MBUSA was founded in 1965 and prior to that Mercedes-Benz cars were sold in the United States by Mercedes-Benz Car Sales, Inc., a subsidiary of the Studebaker-Packard corporation. Today MBUSA has over 300 dealerships with more than 1400 employees. For employment opportunities please visit: http://bit.ly/2tFzlOV. For information on how to get the most out of your Mercedes-Benz vehicle, visit the Owners'​ Support instructional videos section of our site: http://www.mbusa.com/mercedes/owners/videos


Mercedes-Benz USA A.I CyberSecurity Scoring

Mercedes-Benz USA
Company Information
Website:http://www.mbusa.com
Employees number:12,384
Number of followers:777,724
NAICS:3361
Industry Type:Motor Vehicle Manufacturing
Homepage:mbusa.com
Mercedes-Benz USA Risk Score (AI oriented)
Between 750 and 799
logo
Mercedes-Benz USAMotor Vehicle Manufacturing
Updated:
17/06/2026
788/1000
Fair
Baa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
Mercedes-Benz USA Global Score (TPRM)
xxxx
logo
Mercedes-Benz USAMotor Vehicle Manufacturing
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

Mercedes-Benz USA
Mercedes-Benz USAFair
Current Score
788Baa (FAIR)
01000
1 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
788Before Incident
JUNE 2026
788Before Incident
MAY 2026
784Before Incident
Vulnerability
01 May 2026Mercedes-Benz USA
Fortinet, Foxconn, Comcast, Chevron, Samsung, AT&T, Mercedes-Benz and Toyota: FortiBleed leak exposes Fortinet VPN credentials for 73,000 devices.

FortiBleed: Massive Fortinet VPN Credential Leak Exposes 74,000 Firewalls Worldwide

787After Incident
CRITICAL-3
MERCHESAMCOMFOXATTFORTOY1781713752
FortiBleed: Massive Fortinet VPN Credential Leak Exposes 74,000 Firewalls Worldwide A newly uncovered data leak, dubbed FortiBleed, has exposed credentials for 73,932 Fortinet and FortiGate VPN firewalls across organizations globally. Security researcher Bob Diachenko discovered the breach after identifying an unsecured server containing usernames, email addresses, and plaintext passwords for high-profile targets, including Chevron, Samsung, Foxconn, Comcast, AT&T, Mercedes-Benz, Toyota, and multiple government agencies. The dataset, analyzed by Diachenko and later confirmed by threat intelligence firm Hudson Rock, includes 21,632 unique domains spanning 194 countries, with the highest concentrations of affected devices in India, the U.S., Taiwan, Mexico, and Turkey. The compromised credentials span industries such as telecommunications, IT services, finance, healthcare, manufacturing, and critical infrastructure. ### Attack Method & Scope Diachenko’s investigation revealed the breach was orchestrated by a Russian-speaking threat group that conducted 1.16 billion credential-stuffing attempts against 320,777 FortiGate targets and 2.1 billion attempts against 163,650 Microsoft SQL servers. The attackers used a 45-GPU cluster running Hashtopolis to crack intercepted SSL VPN authentication hashes, then leveraged the stolen credentials to infiltrate Active Directory environments. Additional exposed files accidentally left accessible on the same server contained attack logs, scripts, and tooling, along with detailed profiles of targeted organizations, including revenue, employee counts, and industry classifications. The breach also led to full compromises of entities in Japan, Taiwan, Vietnam, Iraq, and Turkey, including a Turkish NATO defense contractor, from which classified documents were allegedly exfiltrated. ### Credential Authenticity & Origin Cybersecurity researcher Kevin Beaumont independently verified portions of the dataset, confirming that many credentials were legitimate and that roughly 75,000 Fortinet devices most still online were affected. The data appears to have been extracted from Fortinet configuration files, as it includes email addresses and other details typically only accessible through exported configs. Notably, many of the exposed passwords were long and complex, suggesting the attackers may have exploited previously unknown vulnerabilities or misconfigurations rather than brute-force methods. Beaumont’s analysis, based on Shodan network scans, found that nearly half of all internet-exposed Fortinet firewalls were included in the leak, with many devices exposing management interfaces directly to the web. ### Unanswered Questions The exact method of initial compromise remains unclear. Researchers have not determined whether the data was obtained via known Fortinet vulnerabilities, a zero-day flaw, or another attack vector. Neither Diachenko, Hudson Rock, nor Beaumont have identified the original source of the configuration leaks. Fortinet has been contacted for comment but has not yet responded. The dataset’s scale and the ongoing exposure of affected devices underscore the severity of the breach, with potential implications for supply chain security, government networks, and critical infrastructure.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Usernames, email addresses, plaintext passwords, attack logs, scripts, tooling, organizational profiles (revenue, employee counts, industry classifications), classified documents (in some cases)Systems Affected: 73,932 Fortinet and FortiGate VPN firewalls, Active Directory environmentsOperational Impact: Full compromises of entities in multiple countries, potential supply chain security risksIdentity Theft Risk: High (exposure of personally identifiable information)
DATA BREACH
Type Of Data Compromised: Credentials (usernames, email addresses, plaintext passwords), attack logs, scripts, tooling, organizational profiles, classified documentsNumber Of Records Exposed: 73,932 Fortinet devices, 21,632 unique domainsSensitivity Of Data: High (plaintext passwords, personally identifiable information, classified documents)Data Exfiltration: Yes (classified documents from a Turkish NATO defense contractor)Personally Identifiable Information: Yes (email addresses, usernames, passwords)
APRIL 2026
784Before Incident
MARCH 2026
784Before Incident
FEBRUARY 2026
784Before Incident
JANUARY 2026
784Before Incident
DECEMBER 2025
783Before Incident
NOVEMBER 2025
783Before Incident
OCTOBER 2025
783Before Incident
SEPTEMBER 2025
783Before Incident
AUGUST 2025
783Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for Mercedes-Benz USA ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in June 2026 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in May 2026 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in April 2026 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in March 2026 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in February 2026 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in January 2026 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in December 2025 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in November 2025 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in October 2025 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in September 2025 ?
?
What was Mercedes-Benz USA's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on Mercedes-Benz USA's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with Mercedes-Benz USA ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view Mercedes-Benz USA's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?
Mercedes-Benz USA Cyber Scoring History | Rankiteo