What is the official website of Sobeys ?

The official website of Sobeys is http://www.sobeyscareers.com.

What is Sobeys's cybersecurity risk score?

Sobeys has an AI-generated cybersecurity risk score of 742 out of 1000, indicating a Moderate security posture according to Rankiteo's assessment.

How many security incidents has Sobeys experienced?

According to Rankiteo, Sobeys currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Sobeys been affected by any supply chain cyber incidents ?

According to Rankiteo, Sobeys has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Sobeys have SOC 2 Type 1 certification ?

According to Rankiteo, Sobeys is not certified under SOC 2 Type 1.

Does Sobeys have SOC 2 Type 2 certification ?

According to Rankiteo, Sobeys does not hold a SOC 2 Type 2 certification.

Does Sobeys comply with GDPR ?

According to Rankiteo, Sobeys is not listed as GDPR compliant.

Does Sobeys have PCI DSS certification ?

According to Rankiteo, Sobeys does not currently maintain PCI DSS compliance.

Does Sobeys comply with HIPAA ?

According to Rankiteo, Sobeys is not compliant with HIPAA regulations.

Does Sobeys have ISO 27001 certification ?

According to Rankiteo,Sobeys is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Sobeys operate in ?

Sobeys operates primarily in the Retail industry.

How many employees does Sobeys have ?

Sobeys employs approximately 17,217 people worldwide.

Does Sobeys own any subsidiaries ?

Sobeys presently has no subsidiaries across any sectors.

How many LinkedIn followers does Sobeys have ?

Sobeys's official LinkedIn profile has approximately 154,791 followers.

What is the NAICS classification code for Sobeys ?

Sobeys is classified under the NAICS code 43, which corresponds to Retail Trade.

Does Sobeys have a Crunchbase profile ?

No, Sobeys does not have a profile on Crunchbase.

Does Sobeys have a LinkedIn profile ?

Yes, Sobeys maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sobeys.

How many cybersecurity incidents has Sobeys experienced ?

As of June 7, 2026, Rankiteo reports that Sobeys has experienced 1 cybersecurity incidents.

How many peer or competitor companies does Sobeys have ?

Sobeys has an estimated 15,825 peer or competitor companies worldwide.

What types of cybersecurity incidents has Sobeys faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Ransomware.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Sobeys

Boost Score +25 with badge (5 left)

742

/1000

Moderate

767

/1000

Fair

Sobeys Vendor Cyber Rating & Cyber Score

sobeyscareers.com

Add Your Compliance Badge

As one of only two national grocery retailers in Canada, Sobeys Inc. serves the food shopping needs of Canadians with more than 1,500 stores in 10 provinces with retail banners that include Sobeys, Safeway, IGA, Foodland, FreshCo, Price Chopper, Thrifty Foods and Lawtons Drugs, as well as more than 330 retail fuel locations. Our five core retail food formats are designed to ensure that we have the right offering in the right-sized stores for each individual market we serve — from our full service format to the convenience format, each tailored to satisfy the unique occasion-based food shopping needs of our customers. Our 134,000 employees and franchise affiliates are committed to building sustainable worth for each of our customers,

Sobeys A.I CyberSecurity Scoring

Scoring History

Sobeys

Sobeys CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Sobeys

Ransomware

100

11/2022

SOB2053121122

Loading…

A.I.

Sobeys Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Sobeys

Incidents vs Retail Industry Avg (This Year)

No incidents recorded for Sobeys in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Sobeys in 2026.

Incident Types Sobeys vs Retail Industry Avg (This Year)

No incidents recorded for Sobeys in 2026.

Incident History - Sobeys (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Sobeys Subsidiaries

Parent Company

Sobeys

Retail

Website: http://www.sobeyscareers.com

Company Size: 10,000+ employees

No subsidiary data available for this company.

Loading…

Sobeys Similar Companies

Skechers

skechers.com

Skechers is a Fortune 500® company — a growth-oriented brand that designs, develops, and markets a diverse product portfolio of lifestyle and performance footwear, apparel and accessories for men, women and children around the globe. Skechers is focused on designing products that deliver style, comfort, innovation, and quality at a reasonable price.

Apparel Group

apparelgroup.com

Apparel Group is a multi-award-winning global fashion and lifestyle retail conglomerate based in Dubai, UAE, with operations across the GCC. Today, Apparel Group caters to millions of eager shoppers through its 2,300+ retail stores and 85+ brands on all platforms while employing over 27,000 multicultural staff. Apparel Group is set to cross new barriers and create fresh benchmarks in the retail industry to become the topmost global retailer. The company has achieved mercurial growth in the last 26 years by introducing world-class labels from around the globe, including Nine West, Tommy Hilfiger, ALDO, Charles & Keith, Jamie’s Italian and Tim Hortons, to name a few.

Trader Joe's

traderjoes.com

Trader Joe’s is a national chain of neighborhood grocery stores. We are committed to providing our customers outstanding value in the form of the best quality products at the best everyday prices. Through our rewarding products and knowledgeable, friendly Crew Members, we have been transforming grocery shopping into a welcoming journey full of discovery and fun since 1967. At Trader Joe's, you won’t find a lot of branded items. Instead, you’ll discover a store full of unique and interesting products, along with everyday basics, in the Trader Joe's label. Our buyers travel the world searching for products we think are exceptional and will find a following among our customers. To earn a spot on our shelves, each product is submitted to a rigorous tasting panel process, in which every aspect of quality is investigated in context of the price we can offer. If a product is assessed as an outstanding value, it becomes an essential part of the Trader Joe's shopping adventure. We know that maintaining our everyday focus on value is vital, which is why we don’t have sales, we don’t offer coupons, and there are no loyalty programs or membership cards to swipe at our stores. Trader Joe’s believes every customer should have access to the best prices on the best products every day.

S-ryhmä / S Group

s-ryhma.fi

S-ryhmä on suomalainen vähittäiskaupan ja palvelualan yritysverkosto, jolla on Suomessa yli 1 800 toimipaikkaa. S-ryhmä muodostuu 19 itsenäisestä alueosuuskaupasta ja niiden omistamasta Suomen Osuuskauppojen Keskuskunnasta (SOK) tytäryhtiöineen. Alueellisten ja valtakunnallisten tytäryhtiöidensä lisäksi SOK harjoittaa Baltian alueella marketkauppaa sekä matkailu- ja ravitsemiskauppaa. Lisäksi S-ryhmään kuuluu kuusi paikallisosuuskauppaa. S-ryhmä tarjoaa marketkaupan, tavaratalo- ja erikoisliikekaupan, liikennemyymälä- ja polttonestekaupan, matkailu- ja ravitsemiskaupan sekä rautakaupan palveluita. Lisäksi autokaupan ja maatalouskaupan toimipaikkoja löytyy joidenkin osuuskauppojen alueelta, ja S-Pankki tarjoaa kaikille asiakasomistajille kattavat pankkipalvelut. Osuuskaupat ovat osuustoiminnallisia yrityksiä. Niiden omistajat ovat myös asiakkaita, S-ryhmän kielellä asiakasomistajia. S-ryhmän toiminnan tarkoituksena on tuottaa kilpailukykyisiä palveluja ja etuja asiakasomistajille kannattavasti. ----- S Group is a Finnish network of companies operating in the retail and service sectors. It has more than 1,800 outlets in Finland. S Group consists of nineteen independent regional and six local cooperatives and SOK Corporation, which is owned by the cooperatives, and its subsidiaries. Cooperatives are enterprises operating in accordance with the principles of cooperative activities. Their owners are also their customers. The owners of S Group are called co-op members.

Target

cb target.com

Target is one of the world’s most recognized brands — and one of America’s leading retailers — known for bringing joy to everyday life. We create meaningful experiences for our guests by combining value, inspiration and innovation in ways no one else can. Beyond our stores and digital experiences, we’re committed to making a difference through responsible business practices, environmental care and community giving. Since 1946, Target has donated 5% of our profits (in cash, product and work with the Target Foundation) to strengthen the communities where we live and work. Together, we act as one team to deliver on our purpose — helping all families discover the joy of everyday life. For more information, visit corporate.target.com. Beware of Hiring Scams: Target will never ask you to submit personal information via a text message for a position. Target will only ask you to apply for positions through corporate.target.com/careers, or Workday, our applicant tracking system.

H&M Group

hmgroup.com

Founded in 1947, H&M Group is a global design company with ~4,702 stores in 76 markets and 56 online markets. At H&M Group, we believe in making great design available to everyone. It’s essential in everything we do. Our family of brands and business ventures offer customers around the world a wealth of fashion, beauty, accessories and homeware, as well as modern menus with fresh and local produce at some of the brands’ in-store eateries. But design is so much more than just products; it’s about clever design processes, efficient product flows, creating experiences that enrich, and smart solutions that benefit all our customers. Sustainability is always at the core of our business. Not only because we like to do what’s right — but it’s also beneficial for our business. We will continue to push for change and lead the way towards a more inclusive and sustainable fashion future. Do you want to join us? We will trust you with great responsibility right from the start, reward a passionate mindset and encourage an entrepreneurial spirit. When you start a career with H&M Group, there’s no limit to where it can take you. H&M Group's Moderation Policy: Welcome to H&M Group’s official LinkedIn page. Ask questions, exchange ideas and meet members and employees from all over the world. This page is moderated daily and we always do our best to answer each one of you in a timely manner. Please remember to keep a friendly tone and in line with LinkedIn’s legal terms at https://www.linkedin.com/legal/user-agreement Comments and posts that contain foul language, are off-topic or unnecessarily rude will be deleted. We also encourage you to report any inappropriate content. We use an external tool to handle the comments on our page, so please note that your comments can be stored. For questions, please contact our team at [email protected].

Endeavour Group

endeavourgroup.com.au

At Endeavour Group we exist to bring people together in better, more enjoyable, and more meaningful ways. Because we believe that social communities are thriving communities, built through great experiences and positive, memorable moments. United behind a common purpose of ‘Creating a more sociable future together’, we are a 28,000+ strong team with more than 1600 stores and 330 hotels nationally, including leading brands such as Dan Murphy’s, BWS and ALH Hotels. Our portfolio of complementary brands and businesses allows us to curate our brand propositions to meet customer needs. Each of our businesses has its own distinct value proposition, built through shared capabilities in format, range, digital, data and analytics that form the foundations of Endeavour Group’s market leadership in retail drinks and hospitality. For more information, including to access our social media guidelines, visit https://www.endeavourgroup.com.au/social-media-community-guidelines

The UPS Store

theupsstore.com

With more than 5,500 locally owned locations across North America, The UPS Store is the nation’s largest retail network of shipping, postal, printing and business service centers. The UPS Store, Inc., franchisor for The UPS Store locations in the U.S., is a wholly owned subsidiary of UPS. The UPS Store franchise locations offer consumers and small businesses a wide range of products and services to meet all their needs in one convenient location, including printing, packaging, shipping, mailbox services, moving supplies and other in-center services. The UPS Store has been recognized as the No. 1 Postal & Business Services franchise for 31 years straight by Entrepreneur Magazine “Franchise 500.” USA Today, G.I. Jobs recognized The UPS Store franchise as one of the 50 Top Franchises for Military Veterans. Additionally, The UPS Store franchise was named American Brand Excellence Award Winner in the Retail category by City Business Journals. The UPS Store retail ownership opportunities are available to “qualifying entrepreneurs.” The UPS Store has opportunities throughout the U.S. and Canada. Through an association with Franchise America Finance and The Bancorp Bank, The UPS Store also offers the option of national funding for qualified franchisee candidates. Be your own boss by opening a The UPS Store retail location. Learn more at https://www.theupsstorefranchise.com/

Groupement Mousquetaires

mousquetaires.com

Avec près de 4000 points de vente en Europe et un chiffre d'affaires de 53,39 milliards d'euros en 2022, Le Groupement Les Mousquetaires est un acteur majeur de la grande distribution. Créé en France en 1969, le Groupement, fondé sur l'initiative privée, rassemble aujourd'hui plus de 3 000 chefs d'entreprise indépendants, 150 000 collaborateurs et 7 enseignes : Intermarché, Netto, Bricomarché, Brico Cash, Bricorama, Roady, Rapid Pare-Brise. Les Mousquetaires sont également présents au Portugal, en Belgique et en Pologne.

Loading…

NEWS

Sobeys CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 10, 2026 08:00 AM

Nova Scotia Power names board member Vivek Sood as new CEO amid scrutiny of cybersecurity, rates

Nova Scotia's private power company has named a new chief executive as the utility deals with fallout from last year's cyberattack and seeks...

Read Article

February 10, 2026 08:00 AM

Nova Scotia Power appoints new president and CEO

Nova Scotia Power has announced it is appointing a new president and CEO. In a news release Tuesday, the utility said current president and...

Read Article

March 11, 2025 07:00 AM

Is that grocery product really Canadian? Or is it 'maple-washing'? | CBC News

Grocery store shelves are full of maple leaf stickers and shelf talkers indicating products are, in some way, Canadian.

Read Article

September 07, 2024 07:47 AM

Empire Co. sees C$25 million cost from cybersecurity event

Empire Co., the Stellarton, Nova Scotia-based parent of Sobeys and other Canadian food retailing banners, said that a cybersecurity attack last month will have...

Read Article

September 06, 2024 03:56 AM

Sobeys parent Empire sizes up financial hit from cyberattack

Sobeys parent Empire said the “cybersecurity event” temporarily affected some retail operations, including pharmacy, self-checkout, gift cards and rewards.

Read Article

July 01, 2024 07:49 PM

Sobeys Inc. parent Empire Company says IT systems issue impacting stores, some pharmacies

Sobeys Inc. and Safeway parent company Empire Company Limited reported on Monday, November 7 that its stores and some of its pharmacies were impacted by an...

Read Article

March 18, 2024 07:00 AM

Cyber insurance claims of Sobeys owner not finalized yet

Food retailing company Empire, the name behind Sobeys, has issued an update on its cyber insurance claims as part of the firm's latest earnings report.

Read Article

March 18, 2024 07:00 AM

Why Canada has so many cyberattacks—and why we’re all at risk

Cybersecurity boss Sami Khoury tells us how crime plays out in the Cyber Wild West.

Read Article

March 14, 2024 07:00 AM

Sobeys parent sees comparable sales growth, declining adjusted profits as shoppers feel inflation

Empire Co. Ltd.'s same-store sales also grew by 1.9 per cent in the third quarter, excluding fuel sales.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-7654

SUMMARY

The Admin Columns plugin for WordPress is vulnerable to PHP Object Injection leading to Remote Code Execution in versions up to and including 7.0.18. This is due to the use of `unserialize()` without an `allowed_classes` restriction in the `IdsToCollection::get_ids_from_string()` function, which processes attacker-controlled post meta values without proper validation. This makes it possible for authenticated attackers with Contributor-level access and above to inject a serialized PHP object into a post's custom meta field and trigger arbitrary code execution by exploiting a bundled POP gadget chain, resulting in remote code execution as the web server user.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-7523

SUMMARY

The Alba Board plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.1.3. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for authenticated attackers, with subscriber-level access and above, to access arbitrary private alba_card post data, including title, description, assignee, due date, tags, and comments, that is intended to be restricted to Administrators and Editors. The handler is registered via the wp_ajax_nopriv_ hook and its nonce is exposed to all site visitors through wp_localize_script on pages containing the [alba_board] shortcode, making this exploitable by unauthenticated users who can access any such page.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: 4.3)

cvss3

Base Score: 4.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.8

REFERENCES

CVE-2026-45409

SUMMARY

Internationalized Domain Names in Applications (IDNA) for Python provides support for Internationalized Domain Names in Applications (IDNA) and Unicode IDNA Compatibility Processing. In versions prior to 3.15, payloads such as `"\u0660" * N` or `"\u30fb" * N + "\u6f22"` utilize the `valid_contexto` function prior to length rejection, and for high values of `N` will take a long time to process. This is the same issue as CVE-2024-3651, however the original remediation in 2024 was not a complete fix. A specially crafted argument to the `idna.encode()` function could consume significant resources. This may lead to a denial-of-service. Starting in version 3.14, the function rejects long inputs as soon as practicable prior to any further processing to minimize resource consumption. In version 3.15, this approach was extended to lesser used alternate functions (i.e. per-label conversions and codec support). A workaround is available. Domain names cannot exceed 253 characters in length. If this length limit is enforced prior to passing the domain to the `idna.encode()` function, it should no longer consume significant resources. This is triggered by arbitrarily large inputs that would not occur in normal usage, but may be passed to the library assuming there is no preliminary input validation by the higher-level application.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://github.com/kjd/idna/security/advisories/GHSA-65pc-fj4g-8rjx

CVE-2026-11431

SUMMARY

A path traversal vulnerability exists in the Projects Service download endpoint shared by Altium Enterprise Server and Altium 365. An authenticated user can supply a crafted path parameter that bypasses validation, allowing arbitrary files (including entire directories returned as archives) to be read from the server filesystem. Because the readable files include service configuration and credential material, exploitation can be used to gather information enabling further compromise. The issue can be combined with CVE-2026-11424 to reach the cloud-side endpoint. On multi-tenant Altium 365 deployments, the readable configuration could have exposed credentials shared across services. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 8.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

CVE-2026-11429

SUMMARY

A path traversal vulnerability exists in the Git Service component shared by Altium Enterprise Server and Altium 365. The service accepts a sequence of post-clone file-manipulation operations that use user-supplied paths without validation, allowing an authenticated user with basic git access to move arbitrary files outside the intended repository area. This file-move primitive can be used to place attacker-controlled script content into directories where it is later executed by the service, resulting in remote code execution under the Git Service account. On multi-tenant Altium 365 deployments, this could have allowed access to data belonging to other tenants on the same infrastructure node. Altium Enterprise Server is fixed in 8.1.1; the issue has been remediated in Altium 365 at the service level.

Published

Date2026-06-05

Updated

Date2026-06-05

RISK INFORMATION (Score: )

cvss4

Base Score: 9.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

https://www.altium.com/platform/security-compliance/security-advisories

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…