What is the official website of QBE SME ?

The official website of QBE SME is http://www.qbeeurope.com/sme/.

What is QBE SME's cybersecurity risk score?

QBE SME has an AI-generated cybersecurity risk score of 753 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has QBE SME experienced?

According to Rankiteo, QBE SME currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has QBE SME been affected by any supply chain cyber incidents ?

According to Rankiteo, QBE SME has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does QBE SME have SOC 2 Type 1 certification ?

According to Rankiteo, QBE SME is not certified under SOC 2 Type 1.

Does QBE SME have SOC 2 Type 2 certification ?

According to Rankiteo, QBE SME does not hold a SOC 2 Type 2 certification.

Does QBE SME comply with GDPR ?

According to Rankiteo, QBE SME is not listed as GDPR compliant.

Does QBE SME have PCI DSS certification ?

According to Rankiteo, QBE SME does not currently maintain PCI DSS compliance.

Does QBE SME comply with HIPAA ?

According to Rankiteo, QBE SME is not compliant with HIPAA regulations.

Does QBE SME have ISO 27001 certification ?

According to Rankiteo,QBE SME is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does QBE SME operate in ?

QBE SME operates primarily in the Insurance industry.

How many employees does QBE SME have ?

QBE SME employs approximately None employees people worldwide.

Does QBE SME own any subsidiaries ?

QBE SME presently has no subsidiaries across any sectors.

How many LinkedIn followers does QBE SME have ?

QBE SME's official LinkedIn profile has approximately 3,151 followers.

What is the NAICS classification code for QBE SME ?

QBE SME is classified under the NAICS code 524, which corresponds to Insurance Carriers and Related Activities.

Does QBE SME have a Crunchbase profile ?

No, QBE SME does not have a profile on Crunchbase.

Does QBE SME have a LinkedIn profile ?

Yes, QBE SME maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/qbe-sme.

How many cybersecurity incidents has QBE SME experienced ?

As of June 16, 2026, Rankiteo reports that QBE SME has experienced 1 cybersecurity incidents.

How many peer or competitor companies does QBE SME have ?

QBE SME has an estimated 15,537 peer or competitor companies worldwide.

What types of cybersecurity incidents has QBE SME faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

QBE SME

Boost Score +25 with badge (5 left)

753

/1000

Fair

778

/1000

Fair

QBE SME Vendor Cyber Rating & Cyber Score

qbeeurope.com

Add Your Compliance Badge

We actively work with insurance brokers to create innovative solutions that fit the needs of small and medium-sized businesses. Our SME insurance products cover property, casualty, motor and specialist lines. As a business insurance specialist, we have the experience, knowledge and positive attitude to help you achieve your goals. If you're looking for business insurance, ask your broker about QBE.

QBE SME A.I CyberSecurity Scoring

Scoring History

QBE SME

QBE SME CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

QBE Insurance

Cyber Attack

5/2025

QBE1779179280

Loading…

A.I.

QBE SME Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for QBE SME

Incidents vs Insurance Industry Avg (This Year)

No incidents recorded for QBE SME in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for QBE SME in 2026.

Incident Types QBE SME vs Insurance Industry Avg (This Year)

No incidents recorded for QBE SME in 2026.

Incident History - QBE SME (X = Date, Y = Severity)

Loading…

SUBSIDIARY

QBE SME Subsidiaries

QBE SME

Insurance

Website: http://www.qbeeurope.com/sme/

Company Size: 1,001-5,000 employees

QBE EuropeInsurance

QBE ItaliaAssicurazioni

QBE InsuranceInsurance

QBE AsiaInsurance

QBE North AmericaInsurance

QBE Group Shared Services CentreInsurance

QBE VenturesFinancial Services

QBE Insurance New ZealandInsurance

QBE Nouvelle-CalédonieInsurance

QBE Insurance FijiInsurance

QBE CanadaInsurance

British Marine InsuranceInsurance

Loading…

QBE SME Similar Companies

Allstate

cb al.st

At Allstate, we're advocates for peace of mind and a good life. And that comes through in everything we do. From building innovative teams that truly understand our customers' needs, to challenging each other to develop our careers in a meaningful way, and finally to the incredible results we're able to achieve together. See how we’re creating a better future through innovation, advocacy, and empowering people and communities.

Porto

porto.vc

A Porto é mais que uma seguradora, é um ecossistema de soluções de serviços de proteção com tecnologia embarcada, para melhorar e facilitar a experiência do cliente. Com mais de 70 anos de mercado, a atuação da companhia se concentra hoje em quatro pilares estratégicos de negócio: Seguros, Saúde, Produtos Financeiros e Serviços. Além de 15.8 milhões de clientes únicos, 13 mil funcionários, 12 mil prestadores e 35 mil corretores parceiros, a empresa conta ainda com 101 sucursais e escritórios regionais em todo o Brasil. Ao todo 27 empresas fazem parte do universo Porto – entre elas: Porto Bank, Porto Saúde, Porto Seguro, Porto Serviço, Porto Seguro Uruguai, Azul Seguros, Itaú Seguros de Auto e Residência.

USI Insurance Services

cb usi.com

USI is one of the largest insurance brokerage and consulting firms in the world, delivering property and casualty, employee benefits, personal risk, program and retirement solutions to large risk management clients, middle market companies, smaller firms and individuals. Headquartered in Valhalla, New York, USI connects over 10,500 industry-leading professionals across approximately 200 offices to serve clients’ local, national and international needs. USI has become a premier insurance brokerage and consulting firm by leveraging the USI ONE Advantage®, an interactive platform that integrates proprietary and innovative client solutions, networked local resources and enterprise-wide collaboration to deliver customized results with positive, bottom-line impact. USI attracts best-in-class industry talent with a long history of deep and continuing investment in our local communities. For more information, visit usi.com.

FWD Insurance

fwd.com

FWD Group (1828.HK) is a pan-Asian life and health insurance business that serves approximately 34 million customers across 10 markets, including BRI Life in Indonesia. FWD’s customer-led and tech-enabled approach aims to deliver innovative propositions, easy-to-understand products and a simpler insurance experience. Established in 2013, the company operates in some of the fastest-growing insurance markets in the world with a vision of changing the way people feel about insurance. FWD Group is listed on the main board of the Hong Kong Stock Exchange under the stock code 1828.

Unum

unum.com

Since our founding in 1848, Unum has been a leader in the employee benefits business through innovation, integrity and an unwavering commitment to our customers. This simple philosophy has guided us through America’s fledgling insurance landscape and helped us become an international leader in financial protection benefits, offering disability, life, accident, critical illness, dental, vision and stop-loss insurance; leave and absence management support and behavioral health services.

HUB International

hubinternational.com

Hi, we’re HUB. We advise businesses and individuals on how to reach their goals. When you partner with us, you’re at the center of a vast network of risk, insurance, employee benefits, retirement and wealth management specialists that bring clarity to a changing world with tailored solutions and unrelenting advocacy. So you’re ready for tomorrow. About Hub International Headquartered in Chicago, Illinois, Hub International Limited (Hub) is a leading full-service global insurance broker providing property and casualty, life and health, employee benefits, investment and risk management products and services. From offices located throughout North America, Hub’s vast network of specialists provides peace of mind on what matters most by protecting clients through unrelenting advocacy and tailored insurance solutions. For more information, please visit hubinternational.com.

Zurich Insurance

zurich.com

Zurich Insurance Group (Zurich) is a leading global multi-line insurer founded more than 150 years ago, which has grown into a business serving more than 75 million customers in more than 200 countries and territories, while delivering industry-leading total shareholder returns. Our customers include individuals, small businesses, and mid-sized and large companies, as well as multinational corporations. The Group is headquartered in Zurich, Switzerland, where it was founded in 1872. ONE TEAM, ONE PURPOSE We are Zurich, one global company, with one mission, one ambition, one set of shared values and a clear commitment to our stakeholders: our customers, our people, our shareholders, and the communities in which we live and work. You can find our community guidelines on: https://www.zurich.com/services/social-media

Bajaj General Insurance

bajajgeneralinsurance.com

Bajaj General Insurance Limited (formerly known as Bajaj Allianz General Insurance Company Limited) is one of India’s leading, most trusted and dynamic private general insurance companies. It is a subsidiary of Bajaj Finserv Limited, India’s leading and most diversified financial services group. Bajaj General offers a broad portfolio of innovative and customer-focused insurance solutions, spanning motor, health, and home insurance, along with specialised products such as pet insurance, wedding insurance, event protection, cyber insurance, and rural insurance. Established in 2001, the company has grown its footprint to nearly 1,500 towns and cities across India, ensuring easy access and a close connection to its customers. With a strong legacy, a forward-looking mindset, and an unwavering focus on its ‘Customer-First’ philosophy, Bajaj General remains committed to protecting what matters most, empowering individuals, families, and businesses to live with confidence and peace of mind.

Prudential Indonesia (PT Prudential Life Assurance)

prudential.co.id

Listening. Understanding. Delivering. At Prudential Indonesia we deliver excellence by consistently innovating, creating new opportunities and growing our business to cater all of our customers' needs. With a vision of becoming truly world class, Prudential Indonesia provides quality services and proven track record of market leadership in the country. Working at Prudential Indonesia gives you many opportunities to develop yourself and explore what you’re really capable of, as well as the perfect environment to collaborate, listen and care for others. Ask around. The more you find out about us, the more you’ll learn that we’re an insurance company that understands you. We are here to listen.

Loading…

NEWS

QBE SME CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 19, 2025 07:00 AM

SMEs in Hong Kong, Singapore underinsured despite growing risks – QBE

SMEs in Hong Kong and Singapore recognise a broad range of business risks, yet many remain underinsured, according to the latest QBE SME surveys.

Read Article

March 19, 2025 07:00 AM

SMEs in Singapore and Hong Kong remain underinsured amid growing threats

A recent survey by QBE featured by the Insurance Business Magazine reveals that Singapore and Hong Kong's small and medium-sized enterprises (SMEs) are...

Read Article

February 19, 2025 08:00 AM

QBE report reveals emerging challenges for Singapore SMEs

QBE Insurance's annual SME surveys reveal challenges for small and medium-sized enterprises in Singapore and Hong Kong, highlighting rising...

Read Article

February 18, 2025 08:00 AM

SMEs in Hong Kong and Singapore face triple threat - insurer

SMEs in Hong Kong and Singapore are facing increasing operational costs, evolving cyber threats, and the growing influence of artificial intelligence (AI) in...

Read Article

February 13, 2025 08:00 AM

QBE underwrites CyberFender for Singapore SMBs protection

Singapore-based Cornerstone introduced CyberFender, a cyber insurance solution designed for small-to-medium businesses (SMBs).

Read Article

April 24, 2024 07:00 AM

One in three Singapore SMEs expect AI to replace or take over jobs: survey

SMEs in Singapore expect artificial intelligence (AI) to eventually replace or take over jobs in their companies, according to the findings of a new survey.

Read Article

April 23, 2024 07:00 AM

Cyber Risk Awareness Declines Among Singaporean SMEs: QBE Report

Awareness of today's vast and complex cyber risk landscape is in decline among local SMEs, this year's QBE SME Survey for Singapore has...

Read Article

September 20, 2023 07:00 AM

Singtel launches one-stop cyber security resilience programme for small and medium enterprises

First-of-its-kind training and cyber incident management programme is specifically designed to improve SMEs' cyber readiness.

Read Article

March 15, 2023 07:00 AM

QBE elevates Andex Fung to head of Asia SME

QBE has promoted Andex Fung to the head of its SME segment, Asia. Hong Kong-based Fung (pictured) was hired in August last year as head of retail and SME...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-53430

SUMMARY

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Message modules) allows a denial of service via a gzip decompression bomb. This vulnerability is associated with program files lib/grpc/compressor/gzip.ex, lib/grpc/message.ex and program routines 'Elixir.GRPC.Compressor.Gzip':decompress/1, 'Elixir.GRPC.Message':from_data/2. 'Elixir.GRPC.Compressor.Gzip':decompress/1 calls :zlib.gunzip/1 directly on attacker-controlled bytes with no decompressed-size limit, ratio check, or incremental decoding. Because this module is the registered gzip GRPC.Compressor implementation, it is invoked automatically whenever an incoming gRPC frame carries the grpc-encoding: gzip header. :zlib.gunzip/1 allocates the entire decompressed result as a single binary, so a small highly compressible payload (for example a few kilobytes of zeros, which gzip compresses at roughly 1000:1) expands to multiple gigabytes inside a single call. The max_receive_message_length limit is enforced only against the already-decompressed message, so it provides no protection. An unauthenticated remote peer can send a single crafted frame to exhaust the BEAM node's heap and trigger an out-of-memory kill. This issue affects grpc: from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48854

SUMMARY

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust the BEAM's memory and crash the server by streaming a large or slow-trickle unary request body. 'Elixir.GRPC.Server.Adapters.Cowboy.Handler':read_full_body/3 (lib/grpc/server/adapters/cowboy/handler.ex) accumulates every received chunk into a single growing binary with no size cap. Additionally, when the client omits the grpc-timeout header, the per-chunk read timeout resolves to :infinity, allowing a slow-trickle client to keep the connection alive indefinitely while memory grows. A single connection is sufficient to exhaust server memory and crash the node. This issue affects grpc from 0.3.1 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48853

SUMMARY

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc allow unauthenticated attackers to crash the BEAM node via atom table exhaustion and, when a decoded term flows into a call site that invokes it, achieve remote code execution on the server. 'Elixir.GRPC.Codec.Erlpack':decode/2 (lib/grpc/codec/erlpack.ex) calls :erlang.binary_to_term/1 on the raw gRPC message body without the :safe option, no size bound, and no type guard. Any unauthenticated peer that sends a request with Content-Type: application/grpc+erlpack can send a crafted payload that mints arbitrary new atoms (which are never garbage-collected, exhausting the bounded atom table and crashing the VM) or that encodes a fun term which, if applied anywhere downstream, executes attacker-controlled code inside the server process. This issue affects grpc from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 9.2

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48723

SUMMARY

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36.4 are vulnerable to OS command injection via the cypress_config_file configuration parameter. In readCypressConfigUtil.js, the loadJsFile() function constructs a shell command by interpolating the user-controlled cypress_config_filepath value into a template literal, then executes it via child_process.execSync(). Shell metacharacters in the config path (specifically " and ;) allow breaking out of the quoted argument and injecting arbitrary commands. This issue has been fixed in version 1.36.6.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: 7.8)

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-48599

SUMMARY

Authorization Bypass Through User-Controlled Key vulnerability in elixir-grpc grpc allows authenticated attackers to access or modify resources belonging to other users by smuggling a conflicting value for any path-bound field via the query string or request body. In 'Elixir.GRPC.Server.Transcode':map_request/5 (lib/grpc/server/transcode.ex), all three clauses use Map.merge/2 with path bindings as the first argument, giving them the lowest merge precedence. A request such as GET /users/me/profile?user_id=victim (or a POST with {"user_id": "victim"} when body: "*") yields a decoded protobuf struct where the path-bound field carries the attacker-supplied value rather than the router-extracted value. Any handler that uses the path-bound field for authorization, multi-tenancy scoping, or ownership checks is silently bypassed. This issue affects grpc from 0.8.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 7.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…