SGC
Company Details
Linkedin ID:
shopritegroup
Employees number:
43,031
Number of followers:
572,054
NAICS:
43
Industry Type:
Homepage:
shopriteholdings.co.za
IP Addresses:
0
Company ID:
THE_2378372
Scan Status:
In-progress
The Shoprite Group of Companies Company CyberSecurity Posture
shopriteholdings.co.za
The Shoprite Group is the largest retailer in Africa, known for its iconic supermarket brands Shoprite, Checkers and Usave. Starting with just eight stores and 400 employees in 1979, our business is now the continent’s industry leader by market capitalisation, sales, profit, and number of employees and customers. The Group’s core business is food retailing, complemented by value-added retail services and offering across a range of industries including technology, financial, pharmaceutical, furniture, telecommunication as well as ticketing businesses. The Group’s almost 163 000 employees are constantly finding solutions, driving innovation and technological advancements to reshape the retail industry. With the use of data science and artificial intelligence, our diverse mix of talent has transformed the retail landscape from traditional brick-and-mortar shops to multi-channel platforms where customers can experience frictionless and more personalised shopping. In addition to our commercial ventures, the Group is committed to sustainability and being a responsible citizen. The Group’s extensive sustainability initiatives reduce the environmental impact of our operations, improve the lives of the communities we operate in and help develop small suppliers. Since our inception, our purpose has always been to uplift lives every day by pioneering access to the most affordable goods and services, creating economic opportunity and protecting our planet. Join the leaders in retail innovation.
The Shoprite Group of Companies A.I CyberSecurity Scoring
SGC Risk Score (AI oriented)Between 750 and 799
SGC
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
SGC Global Score (TPRM)XXXX
SGC
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
SGC Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
The Shoprite Group of Companies
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Shoprite Group suffered a data breach incident that compromised names and ID numbers, of some of its customers who engaged in money transfers to and within Eswatini and within Namibia and Zambia. They immediately launched an investigation with forensic experts and other data security professionals to establish the origin, nature, and scope of this incident and took additional security measures to protect against further data loss.
SGC Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for SGC
Incidents vs Retail Industry Average (This Year)
No incidents recorded for The Shoprite Group of Companies in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for The Shoprite Group of Companies in 2026.
Incident Types SGC vs Retail Industry Avg (This Year)
No incidents recorded for The Shoprite Group of Companies in 2026.
Incident History — SGC (X = Date, Y = Severity)
SGC cyber incidents detection timeline including parent company and subsidiaries
SGC Company Subsidiaries
The Shoprite Group is the largest retailer in Africa, known for its iconic supermarket brands Shoprite, Checkers and Usave. Starting with just eight stores and 400 employees in 1979, our business is now the continent’s industry leader by market capitalisation, sales, profit, and number of employees and customers. The Group’s core business is food retailing, complemented by value-added retail services and offering across a range of industries including technology, financial, pharmaceutical, furniture, telecommunication as well as ticketing businesses. The Group’s almost 163 000 employees are constantly finding solutions, driving innovation and technological advancements to reshape the retail industry. With the use of data science and artificial intelligence, our diverse mix of talent has transformed the retail landscape from traditional brick-and-mortar shops to multi-channel platforms where customers can experience frictionless and more personalised shopping. In addition to our commercial ventures, the Group is committed to sustainability and being a responsible citizen. The Group’s extensive sustainability initiatives reduce the environmental impact of our operations, improve the lives of the communities we operate in and help develop small suppliers. Since our inception, our purpose has always been to uplift lives every day by pioneering access to the most affordable goods and services, creating economic opportunity and protecting our planet. Join the leaders in retail innovation.
Loading...
SGC Similar Companies
Publix Super Markets
Founded in 1930, Publix Super Markets is the largest and fastest-growing employee-owned supermarket chain in the United States. Publix employs over 200,000 associates. We are privately-owned, hold no long-term debt, have avoided layoffs, and continue to grow year after year. Publix and our associate
Mercadona
Mercadona is a leading company of physical supermarkets in Spain with an online service, with over 1,610 stores and more than 5.9 million households as customers. Additionally, it has 60 stores in Portugal, with a presence in nine different districts. A family-owned company, its objective is to off
Stop & Shop
Stop & Shop has been around for more than 100 years. We started small, as a corner grocery store back in 1914. And we’ve grown…a lot. We have more than 50,000 Associates in 350+ stores throughout Massachusetts, Connecticut, Rhode Island, New York, and New Jersey. Through that change, our values have
GPA
We are one of the largest food retail companies in Brazil. We were pioneers with a multi-format and multi-channel business model that brings together renowned chains and brands such as Pão de Açúcar and Extra, Minuto Pão de Açúcar, Pão de Açúcar Fresh and Mini Extra. In addition to our own and exclu
Shoppers Drug Mart
Built on a foundation of professional expertise and personal service, Shoppers Drug Mart has been meeting Canadians' health care needs for 50 years. What was once a small pharmacy in Toronto has grown into an organization of over 1,200 stores from coast to coast, becoming an indelible part of the l
Lidl France
Lidl s’est implanté en France en 1989. Nous avons connu une expansion très rapide qui nous a permis de devenir un acteur incontournable de la grande distribution. Lidl France, c’est aujourd’hui 45 000 collaborateurs, plus de 1 570 magasins, 25 Directions Régionales et un siège social sur 2 sites :
John Lewis Partnership
We’re the largest employee owned business in the UK and home of our cherished brands, John Lewis and Waitrose. We’re not just employees, we’re Partners, driven by our purpose to build a happier world. As we look to our future, there’s never been a more exciting time to join us. We’re ruthlessly fo
Target is one of the world’s most recognized brands and one of America’s leading retailers. We make Target our guests’ preferred shopping destination by offering outstanding value, inspiration, innovation and an exceptional guest experience that no other retailer can deliver. Target is committed to
Fozzy Group
Fozzy Group is one of the largest trade industrial groups in Ukraine and one of the leading Ukrainian retailers, with over 700 outlets all around the country. Besides retail, the group's businesses include food production, and restaurants. Fozzy Group is introducing modern solutions in all areas
.png)
SGC CyberSecurity News
October 15, 2025 07:00 AM
Shoprite’s Sixty60 surpasses 100 million orders
Shoprite Group's on-demand grocery delivery platform, Sixty60, has fulfilled over 100 million orders since its launch in November 2019,...
September 26, 2025 07:00 AM
An interesting look at Shoprite’s total revenue growth
Shoprite's non-restated revenue growth has slowed from 16.9% in 2023 to 4.3% in 2025. However, there were big positives associated with this...
August 13, 2025 07:00 AM
Absa and Shoprite team up with new cash-back rewards
Absa and the Shoprite Group have a new rewards partnership, with Absa customers potentially getting up to 60% back until October.
May 16, 2025 07:00 AM
Woolworths Food versus Checkers
Woolworths Food operates in the high-end food retail space and is expected to have a higher profit margin than Shoprite, which includes budget stores.
April 10, 2025 07:00 AM
South African telecom provider serving 7.7 million confirms data leak following cyberattack
South Africa's fourth-largest mobile network operator, Cell C, has confirmed that its data was leaked on the dark web following a cyberattack last year.
April 09, 2025 07:00 AM
RansomHouse hackers disclose data stolen from Cell C
The telco confirms the data compromised in the recent cyber security incident has been unlawfully disclosed by RansomHouse.
March 13, 2025 07:00 AM
Shoprite Checkers taking over many Pick n Pay stores across South Africa
Checkers is taking over yet another retail store previously home to a Pick n Pay, with the Shoprite-owned company continuing to benefit from...
March 04, 2025 08:00 AM
Major retailers closing stores in South Africa – but not Shoprite
While major retail groups like Pick n Pay, SPAR and even Italtile are closing down non-performing or hard-hit stores in South Africa, the Shoprite Group is...
January 27, 2025 08:00 AM
Shoprite Checkers selling its shopping centres across South Africa
Shoprite Checkers, South Africa's largest and most successful retailer, is selling its shopping centres across the country.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
SGC CyberSecurity History Information
Official Website of The Shoprite Group of Companies
The official website of The Shoprite Group of Companies is https://www.shopriteholdings.co.za.
The Shoprite Group of Companies’s AI-Generated Cybersecurity Score
According to Rankiteo, The Shoprite Group of Companies’s AI-generated cybersecurity score is 772, reflecting their Fair security posture.
How many security badges does The Shoprite Group of Companies’ have ?
According to Rankiteo, The Shoprite Group of Companies currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has The Shoprite Group of Companies been affected by any supply chain cyber incidents ?
According to Rankiteo, The Shoprite Group of Companies has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does The Shoprite Group of Companies have SOC 2 Type 1 certification ?
According to Rankiteo, The Shoprite Group of Companies is not certified under SOC 2 Type 1.
Does The Shoprite Group of Companies have SOC 2 Type 2 certification ?
According to Rankiteo, The Shoprite Group of Companies does not hold a SOC 2 Type 2 certification.
Does The Shoprite Group of Companies comply with GDPR ?
According to Rankiteo, The Shoprite Group of Companies is not listed as GDPR compliant.
Does The Shoprite Group of Companies have PCI DSS certification ?
According to Rankiteo, The Shoprite Group of Companies does not currently maintain PCI DSS compliance.
Does The Shoprite Group of Companies comply with HIPAA ?
According to Rankiteo, The Shoprite Group of Companies is not compliant with HIPAA regulations.
Does The Shoprite Group of Companies have ISO 27001 certification ?
According to Rankiteo,The Shoprite Group of Companies is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of The Shoprite Group of Companies
The Shoprite Group of Companies operates primarily in the Retail industry.
Number of Employees at The Shoprite Group of Companies
The Shoprite Group of Companies employs approximately 43,031 people worldwide.
Subsidiaries Owned by The Shoprite Group of Companies
The Shoprite Group of Companies presently has no subsidiaries across any sectors.
The Shoprite Group of Companies’s LinkedIn Followers
The Shoprite Group of Companies’s official LinkedIn profile has approximately 572,054 followers.
NAICS Classification of The Shoprite Group of Companies
The Shoprite Group of Companies is classified under the NAICS code 43, which corresponds to Retail Trade.
The Shoprite Group of Companies’s Presence on Crunchbase
Yes, The Shoprite Group of Companies has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/shoprite-holdings.
The Shoprite Group of Companies’s Presence on LinkedIn
Yes, The Shoprite Group of Companies maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/shopritegroup.
Cybersecurity Incidents Involving The Shoprite Group of Companies
As of January 24, 2026, Rankiteo reports that The Shoprite Group of Companies has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
The Shoprite Group of Companies has an estimated 15,596 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at The Shoprite Group of Companies ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does The Shoprite Group of Companies detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with forensic experts, third party assistance with data security professionals..
Incident Details
Can you provide details on each incident ?
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach THE233928722
Data Compromised: Names, Id numbers
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Id Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach THE233928722
Entity Name: Shoprite Group
Entity Type: Retail
Industry: Retail
Location: EswatiniNamibiaZambia
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach THE233928722
Incident Response Plan Activated: True
Third Party Assistance: Forensic Experts, Data Security Professionals.
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Forensic experts, Data security professionals, .
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach THE233928722
Type of Data Compromised: Names, Id numbers
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach THE233928722
Investigation Status: Ongoing
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Forensic Experts, Data Security Professionals, .
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, ID numbers and .
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was forensic experts, data security professionals, .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Names and ID numbers.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Typemill is a flat-file, Markdown-based CMS designed for informational documentation websites. A reflected Cross-Site Scripting (XSS) exists in the login error view template `login.twig` of versions 2.19.1 and below. The `username` value can be echoed back without proper contextual encoding when authentication fails. An attacker can execute script in the login page context. This issue has been fixed in version 2.19.2.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Description
A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sourcecodester Domain Availability Checker v1.0. The vulnerability occurs because the application improperly handles user-supplied data in the createResultElement method by using the unsafe innerHTML property to render domain search results.
Description
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/upload.php component. The application fails to properly validate uploaded file contents. Additionally, the application preserves the user-supplied file extension during the save process. This allows an unauthenticated attacker to upload arbitrary PHP code by spoofing the MIME type as an image, leading to full system compromise.
Description
A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at jailer startup, if the jailer is executed with root privileges. To mitigate this issue, users should upgrade to version v1.13.2 or 1.14.1 or above.
Risk Information
cvss3
Base: 6.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
cvss4
Base: 6.0
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description
An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Aptsys gemscms backend platform thru 2025-05-28. This unauthenticated endpoint returns a list of cashier accounts, including names, email addresses, usernames, and passwords hashed using MD5. As MD5 is a broken cryptographic function, the hashes can be easily reversed using public tools, exposing user credentials in plaintext. This allows remote attackers to perform unauthorized logins and potentially gain access to sensitive POS operations or backend functions.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=shopritegroup' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
