Metro Inc.
Company Details
Linkedin ID:
metro-inc.
Website:
Employees number:
19,235
Number of followers:
105,822
NAICS:
43
Industry Type:
Homepage:
metro.ca
IP Addresses:
15
Company ID:
MET_1946509
Scan Status:
Completed
Metro Inc. Company CyberSecurity Posture
metro.ca
With annual sales of more than $21 billion, METRO Inc. is a food and pharmacy leader in Québec and Ontario, providing employment to more than 97,000 people. Its purpose is to Nourish the health and well-being of our communities. As a retailer, franchisor, distributor, manufacturer, and provider of eCommerce services, the company operates or services a network of 995 food stores under several banners including Metro, Metro Plus, Super C, Food Basics, Adonis and Première Moisson, and some 640 pharmacies primarily under the Jean Coutu, Brunet, Metro Pharmacy and Food Basics Pharmacy banners. For more details, visit corpo.metro.ca
Metro Inc. A.I CyberSecurity Scoring
Metro Inc. Risk Score (AI oriented)Between 750 and 799
Metro Inc.
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Metro Inc. Global Score (TPRM)XXXX
Metro Inc.
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Metro Inc. Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Metro Inc. Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Metro Inc.
Incidents vs Retail Industry Average (This Year)
No incidents recorded for Metro Inc. in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Metro Inc. in 2025.
Incident Types Metro Inc. vs Retail Industry Avg (This Year)
No incidents recorded for Metro Inc. in 2025.
Incident History — Metro Inc. (X = Date, Y = Severity)
Metro Inc. cyber incidents detection timeline including parent company and subsidiaries
Metro Inc. Company Subsidiaries
With annual sales of more than $21 billion, METRO Inc. is a food and pharmacy leader in Québec and Ontario, providing employment to more than 97,000 people. Its purpose is to Nourish the health and well-being of our communities. As a retailer, franchisor, distributor, manufacturer, and provider of eCommerce services, the company operates or services a network of 995 food stores under several banners including Metro, Metro Plus, Super C, Food Basics, Adonis and Première Moisson, and some 640 pharmacies primarily under the Jean Coutu, Brunet, Metro Pharmacy and Food Basics Pharmacy banners. For more details, visit corpo.metro.ca
Loading...
Metro Inc. Similar Companies
PT Lion Super Indo
Sejak tahun 1997, Super Indo telah bertumbuh dan berkembang di Indonesia melalui kemitraan bersama Ahold Delhaize yang berasal dari Belanda dan Salim Group dari Indonesia. Didukung lebih dari 10,000 karyawan* yang terlatih, Super Indo berhasil menyediakan berbagai macam barang kebutuhan sehari-hari
Abdullah Al-Othaim Markets
تعتبر أسواق عبدالله العثيم امتداد لمؤسسة صالح العثيم التجارية، التي أسسها في عام 1376هـ ( 1956م ) الشيخ الراحل/ صالح العثيم " يرحمه الله "حيث افتتحت تلك المؤسسة موقعها الأول في قلب منطقة العمل التجاري آنذاك الرياض-حلة القصمان، وعملت في تجارة المواد الغذائية وفي عام 1401 هـ / 1980 م تم تأسيس شركة أسو
Macy's
Macy's is America’s store for life. The largest retail brand of Macy's, Inc. (NYSE:M) delivers quality fashion at affordable prices to customers at approximately 640 locations in 43 states, the District of Columbia, Puerto Rico, and Guam, as well as to customers in more than 100 international destin
Founded in 1947, H&M Group is a global design company with ~4,702 stores in 76 markets and 56 online markets. At H&M Group, we believe in making great design available to everyone. It’s essential in everything we do. Our family of brands and business ventures offer customers around the world a wealt
Toys"R"Us
Toys“R”Us is a beloved brand known all around the world—and we know how to have fun! For over 70 years we've been the toy authority and ambassadors of all things play. Our new vision looks beyond traditional retail for a re-imagined, immersive experience for kids of all ages. We've got a whole new w
SEPHORA
Sephora is the world’s leading global prestige beauty retail brand. With over 56 000 talents across 35 markets, Sephora connects customers and beauty brands within the world’s most trusted and dynamic beauty community. We serve a highly engaged community of hundreds of millions of beauty followers a
Food Lion
Food Lion, based in Salisbury, N.C., and its 82,000 associates have a longstanding history of serving its customers and communities through 10 Southeastern and Mid-Atlantic states. Since 1957, we have been connected to the towns and cities we serve by providing an easy shopping experience anchored b
Hobby Lobby
In 1970, entrepreneurs David and Barbara Green, along with their young family, began making miniature picture frames in their garage. A few years later, on August 3, 1972, the Green family opened the first Hobby Lobby store with a mere 300 square feet of retail space. Hobby Lobby has not stopped g
SAIEP
Supermercados La Anónima es líder absoluto en el mercado de venta de productos masivos en la Patagonia, tanto por el número de locales que opera como por su nivel de ventas. Presente en 75 ciudades del interior del país. Opera con tres unidades de negocios en su actividad principal, y cuenta con
.png)
Metro Inc. CyberSecurity News
November 17, 2025 08:00 AM
ThreatLocker to hire more than 1,000 in metro Orlando as valuation tops $2B
Growth has brought new challenges and opportunities alike for Danny Jenkins. The CEO and co-founder of cybersecurity firm ThreatLocker Inc.
October 26, 2025 07:00 AM
Healthcare Data Breach Statistics
In 2023, 725 data breaches were reported to OCR and across those breaches, more than 133 million records were exposed or impermissibly disclosed.
October 09, 2025 07:00 AM
Life In A Metro: Can’t Ignore Cyber Threats
New Delhi: A massive power blackout on April 28 caused disruptions in the metro networks in Spain and Portugal, impacting hundreds of trains...
September 29, 2025 07:00 AM
Governor Rhoden Proclaims October Cybersecurity Awareness Month
PIERRE, S.D. (MITCHELLNOW) – Governor Larry Rhoden has proclaimed October as Cybersecurity Awareness Month in South Dakota.
September 23, 2025 07:00 AM
Secret Service Telcom Takedown Raises Concerns About Mobile Net Security
The takedown of a massive outlaw telecom network in the New York City metro area by the U.S. Secret Service has raised concerns about the...
September 23, 2025 07:00 AM
Secret Service foils massive plot to cripple NYC cell network and threaten UN General Assembly
A network capable of crippling cell towers and jamming 911 calls across New York City was uncovered by the Secret Service ahead of the UN...
September 22, 2025 07:00 AM
Maryland Transit Administration hit by cybersecurity breach
MTA said data was compromised in a cybersecurity breach that targeted some of its systems, according to state officials.
August 25, 2025 07:00 AM
MTA: 'Cybersecurity incident' affecting Mobility, real-time tracking info
UPDATE (Aug. 25): The Maryland Transit Administration provided an update late Monday morning about services impacted by a "cybersecurity...
August 24, 2025 07:00 AM
Cyberattack disrupts MTA systems; core services remain active but mobility scheduling impacted
The Maryland Transit Administration (MTA) and the Department of Information Technology (DoIT) are investigating a cybersecurity incident.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Metro Inc. CyberSecurity History Information
Official Website of Metro Inc.
The official website of Metro Inc. is http://www.corpo.metro.ca.
Metro Inc.’s AI-Generated Cybersecurity Score
According to Rankiteo, Metro Inc.’s AI-generated cybersecurity score is 793, reflecting their Fair security posture.
How many security badges does Metro Inc.’ have ?
According to Rankiteo, Metro Inc. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Metro Inc. have SOC 2 Type 1 certification ?
According to Rankiteo, Metro Inc. is not certified under SOC 2 Type 1.
Does Metro Inc. have SOC 2 Type 2 certification ?
According to Rankiteo, Metro Inc. does not hold a SOC 2 Type 2 certification.
Does Metro Inc. comply with GDPR ?
According to Rankiteo, Metro Inc. is not listed as GDPR compliant.
Does Metro Inc. have PCI DSS certification ?
According to Rankiteo, Metro Inc. does not currently maintain PCI DSS compliance.
Does Metro Inc. comply with HIPAA ?
According to Rankiteo, Metro Inc. is not compliant with HIPAA regulations.
Does Metro Inc. have ISO 27001 certification ?
According to Rankiteo,Metro Inc. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Metro Inc.
Metro Inc. operates primarily in the Retail industry.
Number of Employees at Metro Inc.
Metro Inc. employs approximately 19,235 people worldwide.
Subsidiaries Owned by Metro Inc.
Metro Inc. presently has no subsidiaries across any sectors.
Metro Inc.’s LinkedIn Followers
Metro Inc.’s official LinkedIn profile has approximately 105,822 followers.
NAICS Classification of Metro Inc.
Metro Inc. is classified under the NAICS code 43, which corresponds to Retail Trade.
Metro Inc.’s Presence on Crunchbase
Yes, Metro Inc. has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/metro-inc.
Metro Inc.’s Presence on LinkedIn
Yes, Metro Inc. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/metro-inc..
Cybersecurity Incidents Involving Metro Inc.
As of November 27, 2025, Rankiteo reports that Metro Inc. has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Metro Inc. has an estimated 15,247 peer or competitor companies worldwide.
Metro Inc. CyberSecurity History Information
How many cyber incidents has Metro Inc. faced ?
Total Incidents: According to Rankiteo, Metro Inc. has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Metro Inc. ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=metro-inc.' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
