Company Details
metro-inc.
22,306
117,304
43
metro.ca
15
MET_1946509
Completed


Metro Inc. Company CyberSecurity Posture
metro.caWith annual sales of more than $21 billion, METRO Inc. is a food and pharmacy leader in Québec and Ontario, providing employment to more than 97,000 people. Its purpose is to Nourish the health and well-being of our communities. As a retailer, franchisor, distributor, manufacturer, and provider of eCommerce services, the company operates or services a network of 995 food stores under several banners including Metro, Metro Plus, Super C, Food Basics, Adonis and Première Moisson, and some 640 pharmacies primarily under the Jean Coutu, Brunet, Metro Pharmacy and Food Basics Pharmacy banners. For more details, visit corpo.metro.ca
Company Details
metro-inc.
22,306
117,304
43
metro.ca
15
MET_1946509
Completed
Between 750 and 799

Metro Inc. Global Score (TPRM)XXXX



No incidents recorded for Metro Inc. in 2026.
No incidents recorded for Metro Inc. in 2026.
No incidents recorded for Metro Inc. in 2026.
Metro Inc. cyber incidents detection timeline including parent company and subsidiaries

With annual sales of more than $21 billion, METRO Inc. is a food and pharmacy leader in Québec and Ontario, providing employment to more than 97,000 people. Its purpose is to Nourish the health and well-being of our communities. As a retailer, franchisor, distributor, manufacturer, and provider of eCommerce services, the company operates or services a network of 995 food stores under several banners including Metro, Metro Plus, Super C, Food Basics, Adonis and Première Moisson, and some 640 pharmacies primarily under the Jean Coutu, Brunet, Metro Pharmacy and Food Basics Pharmacy banners. For more details, visit corpo.metro.ca


PUMA is one of the world’s leading sports brands, designing, developing, selling and marketing footwear, apparel and accessories. For more than 75 years, PUMA has relentlessly pushed sport and culture forward by creating fast products for the world’s fastest athletes. PUMA offers performance and spo

Avolta AG, (SIX: AVOL) is leading a travel experience revolution. The result of the Dufry-Autogrill business combination, Avolta puts the traveler at our strategic core as we maximize every moment of the journey through our unique combination of travel retail and travel food & beverage, passion fo

There’s something different about shopping at SPAR, that’s because we’ve created a culture of caring and community to ensure our customers have a consistently enjoyable shopping experience in a uniquely friendly and family orientated store. Nothing means more to us than our valued customers and we

Food Lion, based in Salisbury, N.C., and its 82,000 associates have a longstanding history of serving its customers and communities through 10 Southeastern and Mid-Atlantic states. Since 1957, we have been connected to the towns and cities we serve by providing an easy shopping experience anchored b

We're fueled by a common goal: creating an iconic car-buying experience. We make car-buying fair, accessible, and joyful for all. We are committed to making progress in how we positively impact our society, now and in the future. Above all, we care about people. We are committed to putting people fi
At M&S, we're dedicated to being the most trusted retailer, prioritising quality and delivering value. Every day, we bring the magic of M&S to our customers, whenever, wherever and however they want to shop with us. For over a century, we've set the standard, doing the right thing and embracing inno

The IKEA vision is to create a better everyday life for the many people. Our business idea is to offer well-designed, functional and affordable, high-quality home furnishing, produced with care for people and the environment. The IKEA Brand unites more than 200.000 co-workers and hundreds of compan

Originated from the idea to facilitate the provision of employees’ basic daily needs, a store, known as Indomaret, was established in 1988. As the store developed, the Company were interested to further explore and understand the consumers’ various needs and shopping behaviors. Hence, several employ

Alfamart was initiated in 1989 by Djoko Susanto and started its business in trading and distribution. In 1999, the company expanded to minimarket sector and now has become one of the largest retail chains in Indonesia. Having over 20.000 stores, 36 office branch, and more than 165.000 employees, Alf
.png)
In 2023, 725 data breaches were reported to OCR and across those breaches, more than 133 million records were exposed or impermissibly disclosed.
Metro Community College's cybersecurity program has been ranked No. 16 in the nation, offering students an affordable path into a...
A cyber-attack has disabled the nationwide CodeRED emergency notification system used across the metro area.
Growth has brought new challenges and opportunities alike for Danny Jenkins. The CEO and co-founder of cybersecurity firm ThreatLocker Inc.
The takedown of a massive outlaw telecom network in the New York City metro area by the U.S. Secret Service has raised concerns about the...
MTA said data was compromised in a cybersecurity breach that targeted some of its systems, according to state officials.
The Maryland Transit Administration (MTA) said some of its services are unavailable due to a cybersecurity incident.
UPDATE (Aug. 25): The Maryland Transit Administration provided an update late Monday morning about services impacted by a "cybersecurity...
The Maryland Transit Administration (MTA) and the Department of Information Technology (DoIT) are investigating a cybersecurity incident.

Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
The official website of Metro Inc. is http://www.corpo.metro.ca.
According to Rankiteo, Metro Inc.’s AI-generated cybersecurity score is 793, reflecting their Fair security posture.
According to Rankiteo, Metro Inc. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
According to Rankiteo, Metro Inc. has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
According to Rankiteo, Metro Inc. is not certified under SOC 2 Type 1.
According to Rankiteo, Metro Inc. does not hold a SOC 2 Type 2 certification.
According to Rankiteo, Metro Inc. is not listed as GDPR compliant.
According to Rankiteo, Metro Inc. does not currently maintain PCI DSS compliance.
According to Rankiteo, Metro Inc. is not compliant with HIPAA regulations.
According to Rankiteo,Metro Inc. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Metro Inc. operates primarily in the Retail industry.
Metro Inc. employs approximately 22,306 people worldwide.
Metro Inc. presently has no subsidiaries across any sectors.
Metro Inc.’s official LinkedIn profile has approximately 117,304 followers.
Metro Inc. is classified under the NAICS code 43, which corresponds to Retail Trade.
Yes, Metro Inc. has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/metro-inc.
Yes, Metro Inc. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/metro-inc..
As of January 24, 2026, Rankiteo reports that Metro Inc. has not experienced any cybersecurity incidents.
Metro Inc. has an estimated 15,596 peer or competitor companies worldwide.
Total Incidents: According to Rankiteo, Metro Inc. has faced 0 incidents in the past.
Incident Types: The types of cybersecurity incidents that have occurred include .
.png)
Typemill is a flat-file, Markdown-based CMS designed for informational documentation websites. A reflected Cross-Site Scripting (XSS) exists in the login error view template `login.twig` of versions 2.19.1 and below. The `username` value can be echoed back without proper contextual encoding when authentication fails. An attacker can execute script in the login page context. This issue has been fixed in version 2.19.2.
A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sourcecodester Domain Availability Checker v1.0. The vulnerability occurs because the application improperly handles user-supplied data in the createResultElement method by using the unsafe innerHTML property to render domain search results.
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/upload.php component. The application fails to properly validate uploaded file contents. Additionally, the application preserves the user-supplied file extension during the save process. This allows an unauthenticated attacker to upload arbitrary PHP code by spoofing the MIME type as an image, leading to full system compromise.
A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at jailer startup, if the jailer is executed with root privileges. To mitigate this issue, users should upgrade to version v1.13.2 or 1.14.1 or above.
An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Aptsys gemscms backend platform thru 2025-05-28. This unauthenticated endpoint returns a list of cashier accounts, including names, email addresses, usernames, and passwords hashed using MD5. As MD5 is a broken cryptographic function, the hashes can be easily reversed using public tools, exposing user credentials in plaintext. This allows remote attackers to perform unauthorized logins and potentially gain access to sensitive POS operations or backend functions.

Get company history
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.