SGC
Company Details
Linkedin ID:
shopritegroup
Employees number:
43,031
Number of followers:
572,054
NAICS:
43
Industry Type:
Homepage:
shopriteholdings.co.za
IP Addresses:
0
Company ID:
THE_2378372
Scan Status:
In-progress
The Shoprite Group of Companies Company CyberSecurity Posture
shopriteholdings.co.za
The Shoprite Group is the largest retailer in Africa, known for its iconic supermarket brands Shoprite, Checkers and Usave. Starting with just eight stores and 400 employees in 1979, our business is now the continent’s industry leader by market capitalisation, sales, profit, and number of employees and customers. The Group’s core business is food retailing, complemented by value-added retail services and offering across a range of industries including technology, financial, pharmaceutical, furniture, telecommunication as well as ticketing businesses. The Group’s almost 163 000 employees are constantly finding solutions, driving innovation and technological advancements to reshape the retail industry. With the use of data science and artificial intelligence, our diverse mix of talent has transformed the retail landscape from traditional brick-and-mortar shops to multi-channel platforms where customers can experience frictionless and more personalised shopping. In addition to our commercial ventures, the Group is committed to sustainability and being a responsible citizen. The Group’s extensive sustainability initiatives reduce the environmental impact of our operations, improve the lives of the communities we operate in and help develop small suppliers. Since our inception, our purpose has always been to uplift lives every day by pioneering access to the most affordable goods and services, creating economic opportunity and protecting our planet. Join the leaders in retail innovation.
The Shoprite Group of Companies A.I CyberSecurity Scoring
SGC Risk Score (AI oriented)Between 750 and 799
SGC
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
SGC Global Score (TPRM)XXXX
SGC
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
SGC Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
The Shoprite Group of Companies
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Shoprite Group suffered a data breach incident that compromised names and ID numbers, of some of its customers who engaged in money transfers to and within Eswatini and within Namibia and Zambia. They immediately launched an investigation with forensic experts and other data security professionals to establish the origin, nature, and scope of this incident and took additional security measures to protect against further data loss.
SGC Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for SGC
Incidents vs Retail Industry Average (This Year)
No incidents recorded for The Shoprite Group of Companies in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for The Shoprite Group of Companies in 2026.
Incident Types SGC vs Retail Industry Avg (This Year)
No incidents recorded for The Shoprite Group of Companies in 2026.
Incident History — SGC (X = Date, Y = Severity)
SGC cyber incidents detection timeline including parent company and subsidiaries
SGC Company Subsidiaries
The Shoprite Group is the largest retailer in Africa, known for its iconic supermarket brands Shoprite, Checkers and Usave. Starting with just eight stores and 400 employees in 1979, our business is now the continent’s industry leader by market capitalisation, sales, profit, and number of employees and customers. The Group’s core business is food retailing, complemented by value-added retail services and offering across a range of industries including technology, financial, pharmaceutical, furniture, telecommunication as well as ticketing businesses. The Group’s almost 163 000 employees are constantly finding solutions, driving innovation and technological advancements to reshape the retail industry. With the use of data science and artificial intelligence, our diverse mix of talent has transformed the retail landscape from traditional brick-and-mortar shops to multi-channel platforms where customers can experience frictionless and more personalised shopping. In addition to our commercial ventures, the Group is committed to sustainability and being a responsible citizen. The Group’s extensive sustainability initiatives reduce the environmental impact of our operations, improve the lives of the communities we operate in and help develop small suppliers. Since our inception, our purpose has always been to uplift lives every day by pioneering access to the most affordable goods and services, creating economic opportunity and protecting our planet. Join the leaders in retail innovation.
Loading...
SGC Similar Companies
Azadea Group
AZADEA Group is a premier lifestyle retail company that owns and operates more than 40+ leading international franchise concepts across the Middle East and Africa. With over 13,500 employees, dedicated offices in every market it operates, and world-class infrastructure, the company oversees over 700
Hobby Lobby
In 1970, entrepreneurs David and Barbara Green, along with their young family, began making miniature picture frames in their garage. A few years later, on August 3, 1972, the Green family opened the first Hobby Lobby store with a mere 300 square feet of retail space. Hobby Lobby has not stopped g
Dollar General has been Serving Others for approximately 85 years. With approximately 20,000 stores, we serve communities across the country, from right around the corner. We exist to provide convenience, quality, and value, so our customers can get back to what's important. Our products include hig
Farmácias Pague Menos
Somos gente que cuida de gente. Cada um com características, histórias e qualidades únicas, mas todos unidos pelo mesmo propósito: viver plenamente. Temos orgulho da nossa história, por isso fazemos o nosso melhor hoje, sem deixar de olhar para o amanhã. Nossa visão é ser a melhor empresa do varej
Hy-Vee, Inc. is an employee-owned corporation operating more than 563 business units across nine Midwestern states with sales of more than $13 billion annually. The supermarket chain is synonymous with quality, variety, convenience, healthy lifestyles, culinary expertise and superior customer servic
Rite Aid is a full-service pharmacy committed to improving health outcomes. Rite Aid is defining the modern pharmacy by meeting customer needs with a wide range of solutions that offer convenience, including retail and delivery pharmacy, as well as services offered through our wholly owned subsidi
华润创业有限公司
Founded in 1992, China Resources Enterprise, Limited is the Hong Kong flagship subsidiary of China Resources (Holdings) Company Limited in the comprehensive consumer goods and retail services businesses. The Company focuses on three businesses: beer, food and beverage. For the beer division, Chin
Zalando
Welcome to Zalando. Here’s some key info about us: Our position and vision: - We’re Europe’s leading online platform for fashion and lifestyle. - Founded in Berlin in 2008, we bring head-to-toe fashion to more than 50 million active customers in 25 markets; offering clothes, footwear, accessories,
Dollarama
Dollarama was founded by third-generation retailer and Canadian entrepreneur, Larry Rossy. It all started with one store, in Matane, Quebec, in 1992, and quickly grew over the next two decades to become a household name and shopping destination for Canadians from coast to coast. Dollarama today is
.png)
SGC CyberSecurity News
October 15, 2025 07:00 AM
Shoprite’s Sixty60 surpasses 100 million orders
Shoprite Group's on-demand grocery delivery platform, Sixty60, has fulfilled over 100 million orders since its launch in November 2019,...
September 26, 2025 07:00 AM
An interesting look at Shoprite’s total revenue growth
Shoprite's non-restated revenue growth has slowed from 16.9% in 2023 to 4.3% in 2025. However, there were big positives associated with this...
August 13, 2025 07:00 AM
Absa and Shoprite team up with new cash-back rewards
Absa and the Shoprite Group have a new rewards partnership, with Absa customers potentially getting up to 60% back until October.
May 16, 2025 07:00 AM
Woolworths Food versus Checkers
Woolworths Food operates in the high-end food retail space and is expected to have a higher profit margin than Shoprite, which includes budget stores.
April 10, 2025 07:00 AM
South African telecom provider serving 7.7 million confirms data leak following cyberattack
South Africa's fourth-largest mobile network operator, Cell C, has confirmed that its data was leaked on the dark web following a cyberattack last year.
April 09, 2025 07:00 AM
RansomHouse hackers disclose data stolen from Cell C
The telco confirms the data compromised in the recent cyber security incident has been unlawfully disclosed by RansomHouse.
March 13, 2025 07:00 AM
Shoprite Checkers taking over many Pick n Pay stores across South Africa
Checkers is taking over yet another retail store previously home to a Pick n Pay, with the Shoprite-owned company continuing to benefit from...
March 04, 2025 08:00 AM
Major retailers closing stores in South Africa – but not Shoprite
While major retail groups like Pick n Pay, SPAR and even Italtile are closing down non-performing or hard-hit stores in South Africa, the Shoprite Group is...
January 27, 2025 08:00 AM
Shoprite Checkers selling its shopping centres across South Africa
Shoprite Checkers, South Africa's largest and most successful retailer, is selling its shopping centres across the country.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
SGC CyberSecurity History Information
Official Website of The Shoprite Group of Companies
The official website of The Shoprite Group of Companies is https://www.shopriteholdings.co.za.
The Shoprite Group of Companies’s AI-Generated Cybersecurity Score
According to Rankiteo, The Shoprite Group of Companies’s AI-generated cybersecurity score is 772, reflecting their Fair security posture.
How many security badges does The Shoprite Group of Companies’ have ?
According to Rankiteo, The Shoprite Group of Companies currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has The Shoprite Group of Companies been affected by any supply chain cyber incidents ?
According to Rankiteo, The Shoprite Group of Companies has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does The Shoprite Group of Companies have SOC 2 Type 1 certification ?
According to Rankiteo, The Shoprite Group of Companies is not certified under SOC 2 Type 1.
Does The Shoprite Group of Companies have SOC 2 Type 2 certification ?
According to Rankiteo, The Shoprite Group of Companies does not hold a SOC 2 Type 2 certification.
Does The Shoprite Group of Companies comply with GDPR ?
According to Rankiteo, The Shoprite Group of Companies is not listed as GDPR compliant.
Does The Shoprite Group of Companies have PCI DSS certification ?
According to Rankiteo, The Shoprite Group of Companies does not currently maintain PCI DSS compliance.
Does The Shoprite Group of Companies comply with HIPAA ?
According to Rankiteo, The Shoprite Group of Companies is not compliant with HIPAA regulations.
Does The Shoprite Group of Companies have ISO 27001 certification ?
According to Rankiteo,The Shoprite Group of Companies is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of The Shoprite Group of Companies
The Shoprite Group of Companies operates primarily in the Retail industry.
Number of Employees at The Shoprite Group of Companies
The Shoprite Group of Companies employs approximately 43,031 people worldwide.
Subsidiaries Owned by The Shoprite Group of Companies
The Shoprite Group of Companies presently has no subsidiaries across any sectors.
The Shoprite Group of Companies’s LinkedIn Followers
The Shoprite Group of Companies’s official LinkedIn profile has approximately 572,054 followers.
NAICS Classification of The Shoprite Group of Companies
The Shoprite Group of Companies is classified under the NAICS code 43, which corresponds to Retail Trade.
The Shoprite Group of Companies’s Presence on Crunchbase
Yes, The Shoprite Group of Companies has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/shoprite-holdings.
The Shoprite Group of Companies’s Presence on LinkedIn
Yes, The Shoprite Group of Companies maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/shopritegroup.
Cybersecurity Incidents Involving The Shoprite Group of Companies
As of January 24, 2026, Rankiteo reports that The Shoprite Group of Companies has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
The Shoprite Group of Companies has an estimated 15,595 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at The Shoprite Group of Companies ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
How does The Shoprite Group of Companies detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with forensic experts, third party assistance with data security professionals..
Incident Details
Can you provide details on each incident ?
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach THE233928722
Data Compromised: Names, Id numbers
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Id Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach THE233928722
Entity Name: Shoprite Group
Entity Type: Retail
Industry: Retail
Location: EswatiniNamibiaZambia
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach THE233928722
Incident Response Plan Activated: True
Third Party Assistance: Forensic Experts, Data Security Professionals.
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Forensic experts, Data security professionals, .
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach THE233928722
Type of Data Compromised: Names, Id numbers
Investigation Status
What is the current status of the investigation for each incident ?
Incident : Data Breach THE233928722
Investigation Status: Ongoing
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Forensic Experts, Data Security Professionals, .
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, ID numbers and .
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was forensic experts, data security professionals, .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Names and ID numbers.
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is Ongoing.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Typemill is a flat-file, Markdown-based CMS designed for informational documentation websites. A reflected Cross-Site Scripting (XSS) exists in the login error view template `login.twig` of versions 2.19.1 and below. The `username` value can be echoed back without proper contextual encoding when authentication fails. An attacker can execute script in the login page context. This issue has been fixed in version 2.19.2.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Description
A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sourcecodester Domain Availability Checker v1.0. The vulnerability occurs because the application improperly handles user-supplied data in the createResultElement method by using the unsafe innerHTML property to render domain search results.
Description
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/upload.php component. The application fails to properly validate uploaded file contents. Additionally, the application preserves the user-supplied file extension during the save process. This allows an unauthenticated attacker to upload arbitrary PHP code by spoofing the MIME type as an image, leading to full system compromise.
Description
A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at jailer startup, if the jailer is executed with root privileges. To mitigate this issue, users should upgrade to version v1.13.2 or 1.14.1 or above.
Risk Information
cvss3
Base: 6.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
cvss4
Base: 6.0
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description
An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Aptsys gemscms backend platform thru 2025-05-28. This unauthenticated endpoint returns a list of cashier accounts, including names, email addresses, usernames, and passwords hashed using MD5. As MD5 is a broken cryptographic function, the hashes can be easily reversed using public tools, exposing user credentials in plaintext. This allows remote attackers to perform unauthorized logins and potentially gain access to sensitive POS operations or backend functions.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=shopritegroup' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
