Sobeys
Company Details
Linkedin ID:
sobeys
Website:
Employees number:
16,871
Number of followers:
150,150
NAICS:
43
Industry Type:
Homepage:
sobeyscareers.com
IP Addresses:
0
Company ID:
SOB_3699648
Scan Status:
In-progress
Sobeys Company CyberSecurity Posture
sobeyscareers.com
As one of only two national grocery retailers in Canada, Sobeys Inc. serves the food shopping needs of Canadians with more than 1,500 stores in 10 provinces with retail banners that include Sobeys, Safeway, IGA, Foodland, FreshCo, Price Chopper, Thrifty Foods and Lawtons Drugs, as well as more than 330 retail fuel locations. Our five core retail food formats are designed to ensure that we have the right offering in the right-sized stores for each individual market we serve — from our full service format to the convenience format, each tailored to satisfy the unique occasion-based food shopping needs of our customers. Our 134,000 employees and franchise affiliates are committed to building sustainable worth for each of our customers, employees, suppliers and shareholders through our focus on food, innovation and superior customer service. __________________ En tant que l'un des deux seuls détaillants alimentaires présents dans tout le Canada, Sobeys Inc. répond aux besoins en épicerie de sa clientèle par le biais de ses quelque 1 500 magasins. Répartis dans chacune des dix provinces, ceux-ci arborent diverses bannières de détail dont Sobeys, Safeway, IGA, Foodland, FreshCo, Price Chopper, Thrifty Foods et Lawtons Drugs, ainsi que plus de 330 stations d'essence. Nos magasins d'alimentation sont conçus en fonction de cinq concepts de base afin que l'offre aux consommateurs et la taille des magasins conviennent le mieux à chacun des marchés que nous desservons. Du magasin à gamme complète de services jusqu'au dépanneur, chacun est adapté de façon à combler les besoins particuliers de notre clientèle en fonction de l'occasion d'achat. En raison de l'importance qu'ils accordent à l'alimentation, à l'innovation et à l'excellence du service à la clientèle, nos quelque 125 000 employés et marchands affiliés se montrent soucieux de créer de la valeur de façon durable pour chacun de nos partenaires, qu'ils soient clients, employés, fournisseurs ou actionnaires.
Sobeys A.I CyberSecurity Scoring
Sobeys Risk Score (AI oriented)Between 700 and 749
Sobeys
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Sobeys Global Score (TPRM)XXXX
Sobeys
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Sobeys Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Sobeys
Ransomware
Rankiteo Explanation
Attack threatening the economy of a geographical region
Description: Canadian food retail giant Sobey was targeted in a ransomware attack by the Black Basta ransomware group. While the attack did not affect its grocery stores, some services were impacted by this company-wide IT issue, however, some in-store services are functioning intermittently or with a delay. Certain of the company's pharmacies were also experiencing technical difficulties in fulfilling prescriptions. Theouh the company did not reveal any further details about the attack, but according to the reports the attackers deployed Black Basta ransomware payloads to encrypt systems on Sobeys' network.
Sobeys Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Sobeys
Incidents vs Retail Industry Average (This Year)
No incidents recorded for Sobeys in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Sobeys in 2026.
Incident Types Sobeys vs Retail Industry Avg (This Year)
No incidents recorded for Sobeys in 2026.
Incident History — Sobeys (X = Date, Y = Severity)
Sobeys cyber incidents detection timeline including parent company and subsidiaries
Sobeys Company Subsidiaries
As one of only two national grocery retailers in Canada, Sobeys Inc. serves the food shopping needs of Canadians with more than 1,500 stores in 10 provinces with retail banners that include Sobeys, Safeway, IGA, Foodland, FreshCo, Price Chopper, Thrifty Foods and Lawtons Drugs, as well as more than 330 retail fuel locations. Our five core retail food formats are designed to ensure that we have the right offering in the right-sized stores for each individual market we serve — from our full service format to the convenience format, each tailored to satisfy the unique occasion-based food shopping needs of our customers. Our 134,000 employees and franchise affiliates are committed to building sustainable worth for each of our customers, employees, suppliers and shareholders through our focus on food, innovation and superior customer service. __________________ En tant que l'un des deux seuls détaillants alimentaires présents dans tout le Canada, Sobeys Inc. répond aux besoins en épicerie de sa clientèle par le biais de ses quelque 1 500 magasins. Répartis dans chacune des dix provinces, ceux-ci arborent diverses bannières de détail dont Sobeys, Safeway, IGA, Foodland, FreshCo, Price Chopper, Thrifty Foods et Lawtons Drugs, ainsi que plus de 330 stations d'essence. Nos magasins d'alimentation sont conçus en fonction de cinq concepts de base afin que l'offre aux consommateurs et la taille des magasins conviennent le mieux à chacun des marchés que nous desservons. Du magasin à gamme complète de services jusqu'au dépanneur, chacun est adapté de façon à combler les besoins particuliers de notre clientèle en fonction de l'occasion d'achat. En raison de l'importance qu'ils accordent à l'alimentation, à l'innovation et à l'excellence du service à la clientèle, nos quelque 125 000 employés et marchands affiliés se montrent soucieux de créer de la valeur de façon durable pour chacun de nos partenaires, qu'ils soient clients, employés, fournisseurs ou actionnaires.
Loading...
Sobeys Similar Companies
Circle K
Our mission at Circle K is to make our customers' lives a little easier every day. We are part of communities across North America, Europe, Asia, and the Middle East, helping us grow into one of the world’s leading convenience and fuel retail businesses. Our parent company, Alimentation Couche-Tard
Somos Supermercados Peruanos S.A. (SPSA), la cadena más grande de supermercados en Perú, orgullosos de ser 100% capital peruano y pertenecer al Grupo Intercorp. Tenemos más de 400 tiendas a nivel nacional y 4 formatos: - PlazaVea, nuestra marca líder en recordación y participación de mercado. -
ALDI USA
Thank you for your interest in ALDI. We are aware of attempts to deceive applicants through fraudulent websites and email domains. Please know, ALDI recruiters will only contact you from an @aldi.us email address. As one of America’s favorite grocers, we believe in offering value and quality in
Pick n Pay
Welcome to Pick n Pay, where family values and customer-centricity converge to create an unparalleled shopping experience. Since 1967, when the visionary Raymond Ackerman championed the cause of consumers by acquiring the first few stores, the Ackerman family's dedication has steered our journey of
BJ's Wholesale Club
At BJ's, we’re focused on delivering unbeatable value and outstanding service to our members, and our culture is instrumental in fulfilling this mission. Our values reflect what is unique about BJ’s culture and are key factors in our past and future success. Explore career opportunities at BJ's and
Five Below
At Five Below our growth is a result of the people who embrace our purpose: We know life is way better when you are free to Let Go & Have Fun in an amazing experience, filled with unlimited possibilities, priced so low, you can always say yes to the newest, coolest stuff! Just ask any of our over 27
The UPS Store
With more than 5,500 locally owned locations across North America, The UPS Store is the nation’s largest retail network of shipping, postal, printing and business service centers. The UPS Store, Inc., franchisor for The UPS Store locations in the U.S., is a wholly owned subsidiary of UPS. The UPS
H&R Block
H&R Block’s purpose is simple: To provide help and inspire confidence in our clients and communities everywhere. We’ve been true to that purpose since brothers Henry and Richard Bloch founded our company in 1955. Since then, we’ve prepared approximately 800 million tax returns and grown to have appr
The Carrefour Group: one of the world’s leading retailers In 50 years, the Carrefour Group has become a world leader in the retail sector. The second largest retailer in the world and the largest in Europe, the Group now features four major grocery retail formats: hypermarkets, supermarkets, cash
.png)
Sobeys CyberSecurity News
September 06, 2024 03:56 AM
Sobeys parent Empire sizes up financial hit from cyberattack
Sobeys parent Empire said the “cybersecurity event” temporarily affected some retail operations, including pharmacy, self-checkout, gift cards and rewards.
August 10, 2024 07:00 AM
Is Canada's food supply under threat from Russian hackers?
The oldest piece of equipment on Chris McLaren's southern Ontario dairy farm is a W4 International, a four-cylinder tractor his grandfather...
May 06, 2024 07:00 AM
London Drugs reopens half its stores after cyberattack
The B.C.-based retailer expects the rest of its locations will reopen by end of day Tuesday.
March 18, 2024 07:00 AM
Why Canada has so many cyberattacks—and why we’re all at risk
Cybersecurity boss Sami Khoury tells us how crime plays out in the Cyber Wild West.
January 31, 2024 08:00 AM
Alamos Gold fell victim to cyberattack last year – report
The attack was reportedly carried out by the same ransomware group responsible for prior attacks on Sobeys and Yellow Pages Canada,...
December 21, 2023 08:00 AM
Pay rises at grocer Metro, but executives see cuts at Sobeys’ parent
Metro CEO Eric La Flèche saw his total compensation increase to $6.11-million while a cybersecurity breach at Empire reduced executive...
July 24, 2023 07:00 AM
Cybercrime costs Canadian companies millions even as awareness grows: report
The average cost to companies of a cybersecurity breach in Canada as of 2023, according to an IBM survey of 26 victimized organizations, is $6.94 million.
June 08, 2023 07:00 AM
Seneca Polytechnic, Microsoft Canada and Sobeys Inc. are preparing the next generation of cybersecurity analysts
"The global demand for cybersecurity skills continues to increase and has grown by an average of 35 per cent over the last year as individuals,...
April 24, 2023 07:00 AM
The Indigo Cyberattack Is a Warning of Things to Come
When the website for Indigo Books & Music went offline on February 8, the company called the occurrence a “cybersecurity incident.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Sobeys CyberSecurity History Information
Official Website of Sobeys
The official website of Sobeys is http://www.sobeyscareers.com.
Sobeys’s AI-Generated Cybersecurity Score
According to Rankiteo, Sobeys’s AI-generated cybersecurity score is 740, reflecting their Moderate security posture.
How many security badges does Sobeys’ have ?
According to Rankiteo, Sobeys currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Sobeys been affected by any supply chain cyber incidents ?
According to Rankiteo, Sobeys has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Sobeys have SOC 2 Type 1 certification ?
According to Rankiteo, Sobeys is not certified under SOC 2 Type 1.
Does Sobeys have SOC 2 Type 2 certification ?
According to Rankiteo, Sobeys does not hold a SOC 2 Type 2 certification.
Does Sobeys comply with GDPR ?
According to Rankiteo, Sobeys is not listed as GDPR compliant.
Does Sobeys have PCI DSS certification ?
According to Rankiteo, Sobeys does not currently maintain PCI DSS compliance.
Does Sobeys comply with HIPAA ?
According to Rankiteo, Sobeys is not compliant with HIPAA regulations.
Does Sobeys have ISO 27001 certification ?
According to Rankiteo,Sobeys is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Sobeys
Sobeys operates primarily in the Retail industry.
Number of Employees at Sobeys
Sobeys employs approximately 16,871 people worldwide.
Subsidiaries Owned by Sobeys
Sobeys presently has no subsidiaries across any sectors.
Sobeys’s LinkedIn Followers
Sobeys’s official LinkedIn profile has approximately 150,150 followers.
NAICS Classification of Sobeys
Sobeys is classified under the NAICS code 43, which corresponds to Retail Trade.
Sobeys’s Presence on Crunchbase
No, Sobeys does not have a profile on Crunchbase.
Sobeys’s Presence on LinkedIn
Yes, Sobeys maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sobeys.
Cybersecurity Incidents Involving Sobeys
As of January 24, 2026, Rankiteo reports that Sobeys has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Sobeys has an estimated 15,596 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Sobeys ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.
Incident Details
Can you provide details on each incident ?
Title: Ransomware Attack on Sobey
Description: Canadian food retail giant Sobey was targeted in a ransomware attack by the Black Basta ransomware group. While the attack did not affect its grocery stores, some services were impacted by this company-wide IT issue, however, some in-store services are functioning intermittently or with a delay. Certain of the company's pharmacies were also experiencing technical difficulties in fulfilling prescriptions. The company did not reveal any further details about the attack, but according to the reports the attackers deployed Black Basta ransomware payloads to encrypt systems on Sobeys' network.
Type: Ransomware Attack
Threat Actor: Black Basta ransomware group
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Ransomware Attack SOB2053121122
Systems Affected: In-store servicesPharmacy services
Operational Impact: Intermittent or delayed in-store servicesTechnical difficulties in pharmacies
Which entities were affected by each incident ?
Incident : Ransomware Attack SOB2053121122
Entity Name: Sobey
Entity Type: Retail
Industry: Food Retail
Location: Canada
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : Ransomware Attack SOB2053121122
Ransomware Strain: Black Basta
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Black Basta ransomware group.
Impact of the Incidents
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was In-store servicesPharmacy services.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Typemill is a flat-file, Markdown-based CMS designed for informational documentation websites. A reflected Cross-Site Scripting (XSS) exists in the login error view template `login.twig` of versions 2.19.1 and below. The `username` value can be echoed back without proper contextual encoding when authentication fails. An attacker can execute script in the login page context. This issue has been fixed in version 2.19.2.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Description
A DOM-based Cross-Site Scripting (XSS) vulnerability exists in the DomainCheckerApp class within domain/script.js of Sourcecodester Domain Availability Checker v1.0. The vulnerability occurs because the application improperly handles user-supplied data in the createResultElement method by using the unsafe innerHTML property to render domain search results.
Description
A Remote Code Execution (RCE) vulnerability exists in Sourcecodester Modern Image Gallery App v1.0 within the gallery/upload.php component. The application fails to properly validate uploaded file contents. Additionally, the application preserves the user-supplied file extension during the save process. This allows an unauthenticated attacker to upload arbitrary PHP code by spoofing the MIME type as an image, leading to full system compromise.
Description
A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at jailer startup, if the jailer is executed with root privileges. To mitigate this issue, users should upgrade to version v1.13.2 or 1.14.1 or above.
Risk Information
cvss3
Base: 6.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H
cvss4
Base: 6.0
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:N/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description
An information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Aptsys gemscms backend platform thru 2025-05-28. This unauthenticated endpoint returns a list of cashier accounts, including names, email addresses, usernames, and passwords hashed using MD5. As MD5 is a broken cryptographic function, the hashes can be easily reversed using public tools, exposing user credentials in plaintext. This allows remote attackers to perform unauthorized logins and potentially gain access to sensitive POS operations or backend functions.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=sobeys' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
