QFC Ltd
Company Details
Linkedin ID:
qfc-ltd
Website:
Employees number:
92
Number of followers:
0
NAICS:
337
Industry Type:
Homepage:
qfc.co.uk
IP Addresses:
0
Company ID:
QFC_1704774
Scan Status:
In-progress
QFC Ltd Company CyberSecurity Posture
qfc.co.uk
At QFC we’ve been designing and manufacturing upholstered furniture since 1993 in Grantham, Lincolnshire. We now make over 250,000 sofas a year for major retailers, including DFS, Next, Argos, Laura Ashley, John Lewis and Made. We have a passion for product design and demonstrate our product leadership through our understanding of design trends and our extensive research on consumer buying behaviour. At QFC our culture is to constantly question the status quo and look for better ways of doing things. All areas of our business are aligned to our brand purpose which is to make ‘Sofas to be proud of’. To find out more visit our website www.qfc.co.uk or follow us on Instagram @qfcsofas
QFC Ltd A.I CyberSecurity Scoring
QFC Ltd Risk Score (AI oriented)Between 800 and 849
QFC Ltd
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
QFC Ltd Global Score (TPRM)XXXX
QFC Ltd
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
QFC Ltd Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
QFC Ltd Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for QFC Ltd
Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)
No incidents recorded for QFC Ltd in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for QFC Ltd in 2025.
Incident Types QFC Ltd vs Furniture and Home Furnishings Manufacturing Industry Avg (This Year)
No incidents recorded for QFC Ltd in 2025.
Incident History — QFC Ltd (X = Date, Y = Severity)
QFC Ltd cyber incidents detection timeline including parent company and subsidiaries
QFC Ltd Company Subsidiaries
At QFC we’ve been designing and manufacturing upholstered furniture since 1993 in Grantham, Lincolnshire. We now make over 250,000 sofas a year for major retailers, including DFS, Next, Argos, Laura Ashley, John Lewis and Made. We have a passion for product design and demonstrate our product leadership through our understanding of design trends and our extensive research on consumer buying behaviour. At QFC our culture is to constantly question the status quo and look for better ways of doing things. All areas of our business are aligned to our brand purpose which is to make ‘Sofas to be proud of’. To find out more visit our website www.qfc.co.uk or follow us on Instagram @qfcsofas
Loading...
QFC Ltd Similar Companies
Salamander Designs
Salamander Designs is the #1 AV and Technology Furniture brand for 16 years straight per CE Pro Magazine (has held this title since CE Pro 100 Brand Analysis inception). The Salamander philosophy and manufacturing process results in premium quality, highly customizable AV furniture that effortlessl
WGS
Founded in 1988, Washington Group Solutions is dedicated to helping our clients by providing innovative, cost-effective furniture solutions. WGS specializes in corporate and government offices, as well as healthcare, education, and hospitality facilities. We are committed to listening to and underst
Northwood Design Partners
Northwood Design Partners is a custom furniture manufacturer of 40 years in the Bay Area. We specialize in designing and manufacturing finely crafted wood and steel furniture, including millwork and architectural casework for businesses and private homes. We maintain and thrive for the highest stan
Encore Office Interiors Inc.
Encore is a versatile customer-focused company dedicated to providing excellence. We are a full service dealer offering Compatico, Inscape, Maispace, OSP and Neocase products just to name a few. Along with a broad program of services we set the stage in world-class quality. As a growing leader
Launched in 2015, Endy (endy.com) is revolutionizing the way people sleep, through their ridiculously comfortable, supportive and 100% Canadian-made mattress, and shaking up the industry by selling directly to consumers. At the core of the business is the award-winning mattress, which provides unpar
Home Design
A Home Design atua há 26 anos como uma das principais empresas de mobiliário brasileiro. Com lojas em Salvador-BA e Aracaju-SE , apresenta uma gama de produtos que transmitem o real conceito do “viver bem” aos consumidores em busca de design, sem abrir mão do conforto. Atenta às novidades em decoraç
.png)
QFC Ltd CyberSecurity News
September 23, 2019 07:00 AM
QFC expands platform to more FinTech providers
The Qatar Financial Centre (QFC) has expanded the number of FinTech activities to be licensed and conducted by companies listed on the QFC platform.
September 22, 2019 07:00 AM
QFC expands services to strengthen Qatar’s fintech ecosystem| Gulf Times
The Qatar Financial Center (QFC) has opened up its non-regulated professional services to include fintech services as part of strategy to strengthen the...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
QFC Ltd CyberSecurity History Information
Official Website of QFC Ltd
The official website of QFC Ltd is http://www.qfc.co.uk.
QFC Ltd’s AI-Generated Cybersecurity Score
According to Rankiteo, QFC Ltd’s AI-generated cybersecurity score is 822, reflecting their Good security posture.
How many security badges does QFC Ltd’ have ?
According to Rankiteo, QFC Ltd currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does QFC Ltd have SOC 2 Type 1 certification ?
According to Rankiteo, QFC Ltd is not certified under SOC 2 Type 1.
Does QFC Ltd have SOC 2 Type 2 certification ?
According to Rankiteo, QFC Ltd does not hold a SOC 2 Type 2 certification.
Does QFC Ltd comply with GDPR ?
According to Rankiteo, QFC Ltd is not listed as GDPR compliant.
Does QFC Ltd have PCI DSS certification ?
According to Rankiteo, QFC Ltd does not currently maintain PCI DSS compliance.
Does QFC Ltd comply with HIPAA ?
According to Rankiteo, QFC Ltd is not compliant with HIPAA regulations.
Does QFC Ltd have ISO 27001 certification ?
According to Rankiteo,QFC Ltd is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of QFC Ltd
QFC Ltd operates primarily in the Furniture and Home Furnishings Manufacturing industry.
Number of Employees at QFC Ltd
QFC Ltd employs approximately 92 people worldwide.
Subsidiaries Owned by QFC Ltd
QFC Ltd presently has no subsidiaries across any sectors.
QFC Ltd’s LinkedIn Followers
QFC Ltd’s official LinkedIn profile has approximately 0 followers.
NAICS Classification of QFC Ltd
QFC Ltd is classified under the NAICS code 337, which corresponds to Furniture and Related Product Manufacturing.
QFC Ltd’s Presence on Crunchbase
No, QFC Ltd does not have a profile on Crunchbase.
QFC Ltd’s Presence on LinkedIn
Yes, QFC Ltd maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/qfc-ltd.
Cybersecurity Incidents Involving QFC Ltd
As of November 28, 2025, Rankiteo reports that QFC Ltd has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
QFC Ltd has an estimated 2,617 peer or competitor companies worldwide.
QFC Ltd CyberSecurity History Information
How many cyber incidents has QFC Ltd faced ?
Total Incidents: According to Rankiteo, QFC Ltd has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at QFC Ltd ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description
Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.
Description
Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=qfc-ltd' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
