What is the official website of PepsiCo ?

The official website of PepsiCo is http://www.pepsico.com.

What is PepsiCo's cybersecurity risk score?

PepsiCo has an AI-generated cybersecurity risk score of 823 out of 1000, indicating a Good security posture according to Rankiteo's assessment.

How many security incidents has PepsiCo experienced?

According to Rankiteo, PepsiCo currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has PepsiCo been affected by any supply chain cyber incidents ?

According to Rankiteo, PepsiCo has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does PepsiCo have SOC 2 Type 1 certification ?

According to Rankiteo, PepsiCo is not certified under SOC 2 Type 1.

Does PepsiCo have SOC 2 Type 2 certification ?

According to Rankiteo, PepsiCo does not hold a SOC 2 Type 2 certification.

Does PepsiCo comply with GDPR ?

According to Rankiteo, PepsiCo is not listed as GDPR compliant.

Does PepsiCo have PCI DSS certification ?

According to Rankiteo, PepsiCo does not currently maintain PCI DSS compliance.

Does PepsiCo comply with HIPAA ?

According to Rankiteo, PepsiCo is not compliant with HIPAA regulations.

Does PepsiCo have ISO 27001 certification ?

According to Rankiteo,PepsiCo is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does PepsiCo operate in ?

PepsiCo operates primarily in the Food and Beverage Services industry.

How many employees does PepsiCo have ?

PepsiCo employs approximately 158,877 people worldwide.

Does PepsiCo own any subsidiaries ?

PepsiCo presently has no subsidiaries across any sectors.

How many LinkedIn followers does PepsiCo have ?

PepsiCo's official LinkedIn profile has approximately 9,657,828 followers.

What is the NAICS classification code for PepsiCo ?

PepsiCo is classified under the NAICS code 722, which corresponds to Food Services and Drinking Places.

Does PepsiCo have a Crunchbase profile ?

Yes, PepsiCo has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/pepsico.

Does PepsiCo have a LinkedIn profile ?

Yes, PepsiCo maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/pepsico.

How many cybersecurity incidents has PepsiCo experienced ?

As of June 16, 2026, Rankiteo reports that PepsiCo has experienced 1 cybersecurity incidents.

How many peer or competitor companies does PepsiCo have ?

PepsiCo has an estimated 8,734 peer or competitor companies worldwide.

What types of cybersecurity incidents has PepsiCo faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

PepsiCo

Boost Score +25 with badge (5 left)

823

/1000

Good

848

/1000

Good

PepsiCo Vendor Cyber Rating & Cyber Score

pepsico.com

cb in

Add Your Compliance Badge

PepsiCo is a playground for curious people. We invite thinkers, doers, and changemakers to champion innovation, take calculated risks, and challenge the status quo. From executives to team members on the front lines, we’re excited about the future. We take chances. Together, we dare to make the world a better place. Our associates are the magic ingredient. Each of them plays an integral role in helping create deep connections between people and our products. Think about your last group celebration: Chances are, one of our iconic brands was by your side. At PepsiCo, you’re invited to be a part of a global team of innovators who make, move, and sell these products—which are enjoyed by more than 1 billion people a day. A career at PepsiCo

PepsiCo A.I CyberSecurity Scoring

Scoring History

PepsiCo

PepsiCo CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

PepsiCo

Cyber Attack

100

4/2026

PEP1776869574

Loading…

A.I.

PepsiCo Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for PepsiCo

Incidents vs Food and Beverage Services Industry Avg (This Year)

PepsiCo has 41.52% fewer incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs All-Companies Average (This Year)

PepsiCo has 6.54% fewer incidents than the average of all companies with at least one recorded incident.

Incident Types PepsiCo vs Food and Beverage Services Industry Avg (This Year)

PepsiCo reported 1 incidents this year: 1 cyber attacks, 0 ransomware, 0 vulnerabilities, 0 data breaches, compared to industry peers with at least 1 incident.

Incident History - PepsiCo (X = Date, Y = Severity)

Loading…

SUBSIDIARY

PepsiCo Subsidiaries

PepsiCo

Food and Beverage Services

Website: http://www.pepsico.com

Company Size: 10,001+ employees

Frito-LayFood and Beverage Services

PepsiCo FoundationNon-profit Organizations

PepsiCo Away From HomeFood and Beverage Services

PepsiCo RomâniaFood and Beverage Services

Gatorade Performance PartnerFood and Beverage Services

Loading…

PepsiCo Similar Companies

Keurig Dr Pepper Inc.

cb keurigdrpepper.com

Keurig Dr Pepper (KDP) is a leading beverage company in North America, with annual revenue in excess of $14.1 billion and nearly 28,000 employees. KDP holds leadership positions in soft drinks, specialty coffee and tea, water, juice and juice drinks and mixers, and markets the #1 single serve coffee brewing system in the U.S. and Canada. The Company’s portfolio of more than 125 owned, licensed and partner brands is designed to satisfy virtually any consumer need, any time, and includes Keurig®, Dr Pepper®, Green Mountain Coffee Roasters®, Canada Dry®, Snapple®, Bai®, Mott's®, CORE® and The Original Donut Shop®. Through its powerful sales and distribution network, KDP can deliver its portfolio of hot and cold beverages to nearly every point of purchase for consumers. The Company is committed to sourcing, producing and distributing its beverages responsibly through its Drink Well. Do Good. corporate responsibility platform, including efforts around circular packaging, efficient natural resource use and supply chain sustainability. For more information, visit, www.keurigdrpepper.com.

Sigma

sigma-alimentos.com

We are a global food company dedicated to bringing local favorite foods to communities everywhere. Within 17 countries, we offer quality branded food at a range of price points and across diverse categories. We're a company dedicated to the production, distribution and sales of refrigerated and frozen products such as cold meats, dry meats, cheese, yogurt, prepared meals and beverages. We have a strong diversified portfolio of well-positioned brands that market in the countries where we participate. We operate in 64 production plants, serving more than 670,000 customers in North, Central, South America, the Caribbean and Europe. We strive for excellence in everything we do. We're passionate about innovation and our consumers; we're committed in bringing them the best quality and taste in every product. The passion and effort we invest in our work is the reason we're on the road to success.

Molson Coors Beverage Company

molsoncoors.com

From Coors Light, Miller Lite, Molson Canadian, Carling and Staropramen to Coors Banquet, Blue Moon Belgian White, Leinenkugel’s Summer Shandy, Vizzy, Creemore Springs and more, our 16,000+ employees across the globe make and market many of the most beloved beverage brands in the world. While our history is rooted in beer, we offer a modern portfolio that expands beyond the beer aisle with energy drinks, non-alc beer and canned cocktails, ready-to-drink coffee and more. Molson Coors Beverage Company is a publicly traded company that operates through Molson Coors North America and Molson Coors Europe, and is traded on the New York and Canadian Stock Exchange (TAP). Our commitment to raising industry standards, promoting the responsible consumption of our products, and leaving a positive imprint on our employees, consumers and communities is reflected on our website, www.molsoncoors.com. Celebrate responsibly. Follow only if legal drinking age and do not share with those who are underage. TERMS: http://bit.ly/TnCs-MC

HMSHost

hmshost.com

HMSHost is recognized by the industry as the leader in travel dining with awards such as Restaurateur with the Highest Regard for Customer Service and Best Brand Restaurateur for Shake Shack by Airport Experience News. USA Today 10Best Readers’ Choice Travel Awards gave first place honors to both of HMSHost’s Whisky River locations at Charlotte Douglas International Airport and Raleigh-Durham International Airport. ACI-NA, the trade association representing commercial service airports in the United States and Canada, recognized HMSHost with the 2020 Inclusion Champion Award, for leadership and achievement in the ongoing inclusion of business and workforce diversity, outreach, and advocacy. The company also creates original award-winning events and campaigns including Airport Restaurant Month, Channel Your Inner Chef live culinary contest, 1,000 Acts of Kindness, and Eat Well. Travel Further. For careers, text HMSHost to 97211 or visit us at careers.hmshost.com

Carlsberg Group

carlsberggroup.com

This is the official LinkedIn channel of the Carlsberg Group. The Carlsberg Group was established in 1847 by brewer J.C. Jacobsen. J.C. Jacobsen was a true renaissance man. A believer in quality, research and serving the community, he shared his knowledge with fellow brewers. He looked to the future, prizing long-term growth over short-term gain. Today, Carlsberg Group is one of the leading brewery groups in the world, with a large portfolio of beer and other beverage brands. Our beer portfolio spans core beer brands, including local power brands and international premium brands, craft & speciality brands and alcohol-free brews. Our brands are enjoyed in more than 150 markets across Western Europe, Asia and Central & Eastern Europe, and we hold a number 1 or 2 position in more than 20 markets. We strive to brew better beers, today and tomorrow. Doing business responsibly and sustainably supports that purpose – and drives the efforts to deliver value for both our shareholders and the society. Learn more on www.carlsberggroup.com We post about beer, so please only follow if you are of legal drinking age, and forward to those of legal drinking age only. #Celebrateresponsibly. See our house rules: https://bit.ly/2Kx73f7

MBRF

mbrf-global-foods-company

We are one of the leading global producers and exporters of quality food, as we believe it is fundamental to a better life for all people. Not only what we do, but the way we do it, is guided by the purpose of a better life for everyone, from farm to fork. That is why we conduct a sustainable management of our chain, which is vivid, long and complex. In our chain, it is vital to know how to manage interdependence, appreciate knowledge and the development of people and their diversity, ensure efficiency and always innovate. That is how we guarantee our results. We never relinquish Safety, Quality and Integrity to reach our goals and, guided by these fundamental commitments, we maintain operations in more than 127 countries, we are responsible for iconic and beloved brands such as Sadia, Perdigão and Qualy, and own over 35 production plants, 40 distribution plants, in addition to more than 4,000 products and 4.5 million tons of food sold around the globe. Producing food in a way that improves the lives of so many people worldwide is a fascinating challenge. This is our greatest passion.

Red Bull

redbull.com

Red Bull Gives Wiiings to People and Ideas. This has driven us – and all we do – since 1987. Today, Red Bull operates in over 170 countries, selling more than 12 billion cans annually and growing! Above all, our people remain the essential ingredient in bringing the Red Bull brand to life. Check out our open roles to become part of the world of Red Bull. Most jobs take energy, ours give it. Check out our open roles to become part of the world of Red Bull – jobs.redbull.com

Suntory Holdings Limited

suntory.com

As a global leader in the beverage industry, Suntory Group aims to inspire the brilliance of life, by creating rich experiences for people, in harmony with nature. Sustained by the gifts of nature and water, the Group offers a uniquely diverse portfolio of products, from award-winning Japanese whiskies Yamazaki and Hibiki, iconic American whiskies Jim Beam and Maker's Mark, canned ready-to-drink -196 (minus one-nine-six), The Premium Malt’s beer, Japanese wine Tomi, and the world-famous Château Lagrange. Its brand collection also includes non-alcoholic favorites Orangina, Lucozade, Oasis, BOSS coffee, Suntory Tennensui water, TEA+ Oolong Tea, and V energy drink, as well as popular health and wellness product Sesamin EX. Founded as a family-owned business in 1899 in Osaka, Japan, Suntory Group has grown into a global company operating throughout the Americas, Europe, Africa, Asia and Oceania, with an annual revenue (excluding excise taxes) of $20.5 billion in 2025. Its 41,628 employees worldwide draw upon the unique blend of Japanese artisanship and global tastes to explore new product categories and markets.

Arca Continental

arcacontal.com

Arca Continental produces, distributes and sells non-alcoholic beverages under The Coca-Cola Company brand, as well as snacks under the brands of Bokados in Mexico, Inalecsa in Ecuador and Wise in the US. With an outstanding history spanning more than 98 years, Arca Continental is the second-largest Coca-Cola botter in Latin America and one of the largest in the world. Within its Coca-Cola franchise territory, the company servers over 119 million consumers in northern and western Mexico, Ecuador, Peru, northern Argentina and southwestern region of the U.S. The Company´s shares trade on the Mexican Stock Exchange under the ticker symbol "AC". For more information on Arca Continental, please visit www.arcacontal.com

Loading…

NEWS

PepsiCo CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

June 12, 2026 01:22 PM

26 Indian Americans among Forbes most successful immigrants

Indian origin innovators, executives and entrepreneurs recognized for shaping American business, technology and public life.

Read Article

May 20, 2026 01:57 PM

ATO releases Decision Impact Statement on High Court PepsiCo decision

On 19 March 2026, the Australian Taxation Office (ATO) released its Decision Impact Statement (DIS) following the High Court's decision in...

Read Article

May 12, 2026 07:00 AM

Nivya Alakkasseri Elevated as Associate Director at PepsiCo

PepsiCo has appointed Nivya Alakkasseri as Associate Director, further strengthening the company's cybersecurity and enterprise security...

Read Article

April 30, 2026 07:00 AM

The Role of 3PLs in Reducing Supply Chain Cybersecurity Risks

Third-party logistics providers play a central role in securing supply chain systems, as they can either introduce vulnerabilities or...

Read Article

April 28, 2026 07:00 AM

PepsiCo, Givaudan, Smurfit WestRock and Statkraft sign 10‑year renewable energy agreement to advance value chain decarbonization across Europe

PepsiCo, Givaudan, Statkraft and Smurfit Westrock announce a renewable energy initiative enabled by the pep+ REnew program, supported by...

Read Article

April 25, 2026 07:00 AM

PepsiCo (PEP): The Best Slow Growth Stock to Buy According to Analysts

On April 22, 2026, PepsiCo, Inc.

Read Article

April 17, 2026 07:00 AM

PepsiCo revamps Gatorade to compete in booming hydration market

PepsiCo is overhauling Gatorade with new powders, lower-sugar options and updated packaging to reclaim market share amid rising competition...

Read Article

April 16, 2026 07:00 AM

PepsiCo Q1 Revenue Beats Estimates as Snacks Rebound

PepsiCo reported Q1 revenue of $19.44 billion, topping the $18.94 billion estimate, as its snack food segment rebounded after selective...

Read Article

March 25, 2026 11:57 AM

ATO releases Decision Impact Statement on High Court PepsiCo decision

At a glance. The ATO has released a Decision Impact Statement (DIS) following the High Court's decision in Commissioner of Taxation v PepsiCo Inc.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-53430

SUMMARY

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Message modules) allows a denial of service via a gzip decompression bomb. This vulnerability is associated with program files lib/grpc/compressor/gzip.ex, lib/grpc/message.ex and program routines 'Elixir.GRPC.Compressor.Gzip':decompress/1, 'Elixir.GRPC.Message':from_data/2. 'Elixir.GRPC.Compressor.Gzip':decompress/1 calls :zlib.gunzip/1 directly on attacker-controlled bytes with no decompressed-size limit, ratio check, or incremental decoding. Because this module is the registered gzip GRPC.Compressor implementation, it is invoked automatically whenever an incoming gRPC frame carries the grpc-encoding: gzip header. :zlib.gunzip/1 allocates the entire decompressed result as a single binary, so a small highly compressible payload (for example a few kilobytes of zeros, which gzip compresses at roughly 1000:1) expands to multiple gigabytes inside a single call. The max_receive_message_length limit is enforced only against the already-decompressed message, so it provides no protection. An unauthenticated remote peer can send a single crafted frame to exhaust the BEAM node's heap and trigger an out-of-memory kill. This issue affects grpc: from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48854

SUMMARY

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust the BEAM's memory and crash the server by streaming a large or slow-trickle unary request body. 'Elixir.GRPC.Server.Adapters.Cowboy.Handler':read_full_body/3 (lib/grpc/server/adapters/cowboy/handler.ex) accumulates every received chunk into a single growing binary with no size cap. Additionally, when the client omits the grpc-timeout header, the per-chunk read timeout resolves to :infinity, allowing a slow-trickle client to keep the connection alive indefinitely while memory grows. A single connection is sufficient to exhaust server memory and crash the node. This issue affects grpc from 0.3.1 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48853

SUMMARY

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc allow unauthenticated attackers to crash the BEAM node via atom table exhaustion and, when a decoded term flows into a call site that invokes it, achieve remote code execution on the server. 'Elixir.GRPC.Codec.Erlpack':decode/2 (lib/grpc/codec/erlpack.ex) calls :erlang.binary_to_term/1 on the raw gRPC message body without the :safe option, no size bound, and no type guard. Any unauthenticated peer that sends a request with Content-Type: application/grpc+erlpack can send a crafted payload that mints arbitrary new atoms (which are never garbage-collected, exhausting the bounded atom table and crashing the VM) or that encodes a fun term which, if applied anywhere downstream, executes attacker-controlled code inside the server process. This issue affects grpc from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 9.2

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48723

SUMMARY

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36.4 are vulnerable to OS command injection via the cypress_config_file configuration parameter. In readCypressConfigUtil.js, the loadJsFile() function constructs a shell command by interpolating the user-controlled cypress_config_filepath value into a template literal, then executes it via child_process.execSync(). Shell metacharacters in the config path (specifically " and ;) allow breaking out of the quoted argument and injecting arbitrary commands. This issue has been fixed in version 1.36.6.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: 7.8)

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-48599

SUMMARY

Authorization Bypass Through User-Controlled Key vulnerability in elixir-grpc grpc allows authenticated attackers to access or modify resources belonging to other users by smuggling a conflicting value for any path-bound field via the query string or request body. In 'Elixir.GRPC.Server.Transcode':map_request/5 (lib/grpc/server/transcode.ex), all three clauses use Map.merge/2 with path bindings as the first argument, giving them the lowest merge precedence. A request such as GET /users/me/profile?user_id=victim (or a POST with {"user_id": "victim"} when body: "*") yields a decoded protobuf struct where the path-bound field carries the attacker-supplied value rather than the router-extracted value. Any handler that uses the path-bound field for authorization, multi-tenancy scoping, or ownership checks is silently bypassed. This issue affects grpc from 0.8.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 7.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…