What is the official website of Sberbank ?

The official website of Sberbank is https://sber.ru.

What is Sberbank's cybersecurity risk score?

Sberbank has an AI-generated cybersecurity risk score of 822 out of 1000, indicating a Good security posture according to Rankiteo's assessment.

How many security incidents has Sberbank experienced?

According to Rankiteo, Sberbank currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Sberbank been affected by any supply chain cyber incidents ?

According to Rankiteo, Sberbank has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Sberbank have SOC 2 Type 1 certification ?

According to Rankiteo, Sberbank is not certified under SOC 2 Type 1.

Does Sberbank have SOC 2 Type 2 certification ?

According to Rankiteo, Sberbank does not hold a SOC 2 Type 2 certification.

Does Sberbank comply with GDPR ?

According to Rankiteo, Sberbank is not listed as GDPR compliant.

Does Sberbank have PCI DSS certification ?

According to Rankiteo, Sberbank does not currently maintain PCI DSS compliance.

Does Sberbank comply with HIPAA ?

According to Rankiteo, Sberbank is not compliant with HIPAA regulations.

Does Sberbank have ISO 27001 certification ?

According to Rankiteo,Sberbank is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Sberbank operate in ?

Sberbank operates primarily in the Banking industry.

How many employees does Sberbank have ?

Sberbank employs approximately 11,105 people worldwide.

Does Sberbank own any subsidiaries ?

Sberbank presently has no subsidiaries across any sectors.

How many LinkedIn followers does Sberbank have ?

Sberbank's official LinkedIn profile has approximately 59,309 followers.

What is the NAICS classification code for Sberbank ?

Sberbank is classified under the NAICS code 52211, which corresponds to Commercial Banking.

Does Sberbank have a Crunchbase profile ?

Yes, Sberbank has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/sberbank.

Does Sberbank have a LinkedIn profile ?

Yes, Sberbank maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sberbank.

How many cybersecurity incidents has Sberbank experienced ?

As of June 14, 2026, Rankiteo reports that Sberbank has not experienced any cybersecurity incidents.

How many peer or competitor companies does Sberbank have ?

Sberbank has an estimated 7,387 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Sberbank

Boost Score +25 with badge (5 left)

822

/1000

Good

847

/1000

Good

Sberbank Vendor Cyber Rating & Cyber Score

sber.ru

cb in

Add Your Compliance Badge

Сбер — крупнейший банк в России, поставщик надёжных технологических решений и один из ведущих финансовых институтов страны. Мы не боимся меняться и открывать новые горизонты, но в то же время остаёмся верными принципам, сформированным за нашу 180-летнюю историю. Такой подход позволяет нам создавать и развивать десятки технологичных направлений. Нашими сервисами пользуются миллионы людей, а над их созданием и совершенствованием работают десятки тысяч сотрудников. Sber is the largest bank in Russia, supplier of reliable technological solutions and one of the leading national financial institutions. We are not afraid to change and open up new horizons, but at the same time we remain true to the principles that have been formed over our

Sberbank A.I CyberSecurity Scoring

Scoring History

Sberbank

Sberbank CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

Sberbank Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Sberbank

Incidents vs Banking Industry Avg (This Year)

No incidents recorded for Sberbank in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Sberbank in 2026.

Incident Types Sberbank vs Banking Industry Avg (This Year)

No incidents recorded for Sberbank in 2026.

Incident History - Sberbank (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Sberbank Subsidiaries

Sberbank

Banking

Website: https://sber.ru

Company Size: 10,001+ employees

Корпоративный университет СбербанкаBanking

Loading…

Sberbank Similar Companies

Banco Bradesco

banco.bradesco

O Bradesco é um dos líderes do setor financeiro privado e um dos maiores empregadores na categoria. Além disso, apresenta o melhor índice de eficiência entre os bancos de varejo. Nossa missão é fornecer soluções, produtos e serviços financeiros e de seguros com agilidade e competência, principalmente por meio da inclusão bancária e da promoção da mobilidade social, contribuindo para o desenvolvimento sustentável e a construção de relacionamentos duradouros. Nós acreditamos nas pessoas. Desde o início de nossas atividades, reconhecemos no valor do desempenho e no potencial realizador das pessoas a base de sustentação dos negócios da Organização Bradesco. Nossa atuação está inserida e se expande continuamente, por todo o território nacional, ampliando o universo de clientes e parceiros, contemplando uma gama de diversidade que é a própria expressão da estrutura social brasileira. Acreditamos em nossa capacidade de promover crescimento sustentado, para as pessoas e por meio delas. Siga com a gente também aqui, no LinkedIn!

Standard Chartered

cb sc.com

We are a leading international banking group, with a presence in 54 of the world’s most dynamic markets. Our purpose is to drive commerce and prosperity through our unique diversity, and our heritage and values are expressed in our brand promise, here for good. If you’re interested joining Standard Chartered sign up to our Talent Network. Link: https://www.sc.com/careers/talentnetwork Standard Chartered PLC is listed on the London and Hong Kong stock exchanges.

Crédit Agricole CIB

ca-cib.com

Crédit Agricole CIB is the corporate and investment banking arm of Crédit Agricole Group, 9th largest banking group worldwide in terms of balance sheet size in 2023 (The Banker, July 2024). Nearly 8,600 employees across Europe, the Americas, Asia-Pacific, the Middle East and North Africa support Crédit Agricole CIB's clients, meeting their financial needs throughout the world. Crédit Agricole CIB offers its large corporate and institutional clients a range of products and services in capital markets activities, investment banking, structured finance, commercial banking and international trade. The Bank is a pioneer in the area of climate finance, and is currently a market leader in this segment with a complete offer for all its clients.

Caisse d’Epargne

caisse-epargne.fr

Banques coopératives, les Caisses d'Epargne conjuguent depuis 1818 confiance, solidarité et modernité. Deuxième réseau bancaire en France, les 16 Caisses d'Epargne régionales comptent parmi les premières banques de leur région. Elles accompagnent tous les acteurs économiques et sont leaders du financement du secteur public, du logement social et de l'économie sociale. Au total, les Caisses d'Epargne comptent aujourd'hui 4,8 millions de sociétaires et 20,6 millions de clients, gérés par les 4 182 agences bancaires et l’agence Mon banquier en ligne.

Philippine National Bank

pnb.com.ph

Philippine National Bank is one of the country’s largest private universal banks in terms of assets and deposits. It provides a full range of banking and other financial services to its highly diverse clientele comprised of individual depositors, small and medium enterprises, domestic and international corporations, government institutions, and overseas Filipinos. Backed by over a century of stability and excellence, PNB looks forward to more years of serving its customers first. As of end-2017, PNB has a total of 692 branches and 1,243 ATMs strategically located nationwide. Plus, PNB maintained its position as the Philippine bank with the most extensive international footprint with 72 overseas branches, representative offices, remittance centers and subsidiaries across Asia, Europe, the Middle East, and North America. If you need assistance, please contact the Bank's Customer Care hotline at (+632) 8573-8888 or email at [email protected]. Visit pnbph.net/Consumer-Assistance-Process to know more. Deposits are insured by PDIC up to P1 Million per depositor. Philippine National Bank (PNB) is regulated by the Bangko Sentral ng Pilipinas. https://www.bsp.gov.ph

Credit Suisse

cb credit-suisse.com

Credit Suisse Group AG has been acquired by UBS Group AG. UBS is the world’s largest and only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management, and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors. From gaining new experiences in different roles to acquiring fresh knowledge and skills, we know that great work is never done alone. We know that it’s our people, with their unique backgrounds, skills, experience levels and interests, who drive our ongoing success. Together we’re more than ourselves. Ready to be part of #teamUBS and make an impact? Visit our Jobs section to explore the current job openings or visit https://www.ubs.com/global/en/careers.html UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills, and experiences within our workforce. www.ubs.com/social-legal

Bank of Ireland

cb bankofireland.com

Welcome to Bank of Ireland on LinkedIn. We're here to keep you up to date on our latest news and to provide useful information and guidance to support your financial needs. A leading Irish bank, we offer a wide range of financial products including savings, loans, mortgages and deposit accounts. For more information about Bank of Ireland please visit our website: http://www.bankofireland.com/ Bank of Ireland is regulated by the Central Bank of Ireland

BBVA

bbva.com

At BBVA we are leading the transformation of banking worldwide, united in pursuing our goal of bringing the age of opportunity to everyone. Firmly focused on the future, our on-going digital transformation is already producing disruptive innovations that power our vision of banking. Every one of our 121,486 employees, from branch staff to senior leaders, plays an essential role in giving our 71.5 million customers the cutting edge banking solutions that they deserve. Building on 166 years of history we know the importance of constant development, which is why we place so much confidence in the collaborative working environment that enables our people to grow and excel. If you would like to learn about the culture and opportunities on offer at a company that is leading the way for 21st century banking, head to the ‘Life’ tab to find out more.

BNP Paribas

bnpp.lk

BNP Paribas is a leading bank in Europe with an international reach. It has a presence in 64 countries, with more than 178,000 employees, including more than 144,000 in Europe. BNP Paribas holds leading positions in its three major operating divisions: ⚆ Commercial, Personal Banking & Services for all the Group’s retail banking networks and several specialised businesses, including BNP Paribas Personal Finance and Arval; ⚆ Investment & Protection Services for savings, investment and protection solutions; ⚆ Corporate & Institutional Banking, which is focused on corporate and institutional clients. The Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realise their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, the Group has four domestic markets (Belgium, France, Italy and Luxembourg) and BNP Paribas Personal Finance is the European leader in consumer lending. BNP Paribas is rolling out its integrated retail-banking model in Mediterranean countries, in Turkey, in Eastern Europe and a large network in the western part of the United States. In its Corporate & Institutional Banking and Investment & Protection Services activities, BNP Paribas also enjoys top positions in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. To learn more about our social media terms and Data Protection Notice: https://group.bnpparibas/en/data-protection

Loading…

NEWS

Sberbank CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

January 18, 2026 03:00 PM

Deputy Chairman of the Sberbank Executive Board Stanislav Kuznetsov talks at SPIEF about overcoming the global digital crisis

Deputy Chairman of the Sberbank Executive Board Stanislav Kuznetsov moderated the Overcoming The Global Digital Crisis: Is There A Way Out? panel discussion...

Read Article

December 29, 2025 08:00 AM

Sberbank issues Russia’s first crypto-backed loan

The pilot loan used Sberbank's Rutoken custody system to safeguard digital assets, highlighting growing institutional support for...

Read Article

December 03, 2025 08:00 AM

“We are building a tech bridge between Russia and India”—Herman Gref of Sberbank on bilateral tech ties

Sberbank CEO Herman Gref highlights Russia's leadership in payment technologies and generative AI, emphasizing unique solutions like...

Read Article

November 10, 2025 08:00 AM

ITMO Student Wins Russia’s Drone Programming Championship

First-year ITMO student Ekaterina Kochetkova earned a gold medal at Russia's first Drone Programming Championship.

Read Article

October 18, 2025 07:00 AM

AI, blockchain, and cybersecurity reshape BRICS+ creative ecosystems

According to Cybersecurity Ventures, global cybercrime losses are projected to reach US$10.5 trillion annually by 2025, while Check Point...

Read Article

October 09, 2025 07:00 AM

I Am a Professional Season 9: All About Information and Cyber Security Track

Medalists, winners, and diploma holders of the I Am a Professional Competition have the chance to receive up to 300000 rubles,...

Read Article

October 08, 2025 07:00 AM

Moscow Startup Summit offers RUB ₽1.2 billion to tech innovators

Startups at the Moscow Startup Summit secured investment offers exceeding RUB ₽1.2 billion, showcasing AI and deeptech innovations from 42...

Read Article

September 16, 2025 03:01 PM

Russia's VK launches RuStore for apps after exit of Western alternatives

Russian internet group VK launched a home-made app store on Wednesday, the latest in a Kremlin-endorsed drive to create a raft of domestic digital services...

Read Article

September 10, 2025 07:00 AM

MoFR Union Minister meets Russian Sberbank VP for South Asia

Union Minister for Finance and Revenue Dr Kan Zaw received the Delegation led by Mr Ivan Nosov, Vice-President for South Asia Region of the...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…