What is the official website of SOK ?

The official website of SOK is https://s-ryhma.fi/tyopaikat/asiantuntijatyo.

What is SOK's cybersecurity risk score?

SOK has an AI-generated cybersecurity risk score of 780 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has SOK experienced?

According to Rankiteo, SOK currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has SOK been affected by any supply chain cyber incidents ?

According to Rankiteo, SOK has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does SOK have SOC 2 Type 1 certification ?

According to Rankiteo, SOK is not certified under SOC 2 Type 1.

Does SOK have SOC 2 Type 2 certification ?

According to Rankiteo, SOK does not hold a SOC 2 Type 2 certification.

Does SOK comply with GDPR ?

According to Rankiteo, SOK is not listed as GDPR compliant.

Does SOK have PCI DSS certification ?

According to Rankiteo, SOK does not currently maintain PCI DSS compliance.

Does SOK comply with HIPAA ?

According to Rankiteo, SOK is not compliant with HIPAA regulations.

Does SOK have ISO 27001 certification ?

According to Rankiteo,SOK is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does SOK operate in ?

SOK operates primarily in the Retail industry.

How many employees does SOK have ?

SOK employs approximately 3,027 people worldwide.

Does SOK own any subsidiaries ?

SOK presently has no subsidiaries across any sectors.

How many LinkedIn followers does SOK have ?

SOK's official LinkedIn profile has approximately 63,193 followers.

What is the NAICS classification code for SOK ?

SOK is classified under the NAICS code 43, which corresponds to Retail Trade.

Does SOK have a Crunchbase profile ?

No, SOK does not have a profile on Crunchbase.

Does SOK have a LinkedIn profile ?

Yes, SOK maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sok.

How many cybersecurity incidents has SOK experienced ?

As of June 24, 2026, Rankiteo reports that SOK has not experienced any cybersecurity incidents.

How many peer or competitor companies does SOK have ?

SOK has an estimated 15,867 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

SOK

Boost Score +25 with badge (5 left)

780

/1000

Fair

805

/1000

Good

SOK Vendor Cyber Rating & Cyber Score

s-ryhma.fi

Add Your Compliance Badge

SOK on osa S-ryhmää SOK (Suomen Osuuskauppojen Keskuskunta) on keskusliike, jossa tuotetaan S-ryhmään kuuluville osuuskaupoille asiantuntija- ja tukipalveluita, kuten esimerkiksi ketjuohjaus-, valikoima-, hankinta- ja markkinointipalveluita. SOK vastaa myös S-ryhmän strategisesta ohjauksesta ja liiketoimintaketjujen kehittämisestä. SOK (Suomen Osuuskauppojen Keskuskunta) ja sen tytäryhtiöt yhdessä muodostavat SOK-yhtymän. SOK harjoittaa tytäryhtiöidensä kautta matkailu- ja ravitsemiskauppaa Suomessa ja Virossa sekä marketkauppaa Virossa. In English SOK Corporation comprises Suomen Osuuskauppojen Keskuskunta (SOK) and its subsidiaries. SOK is a central cooperative which produces expert and support services – such as chain management,

SOK A.I CyberSecurity Scoring

Scoring History

SOK

SOK CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

SOK Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for SOK

Incidents vs Retail Industry Avg (This Year)

No incidents recorded for SOK in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for SOK in 2026.

Incident Types SOK vs Retail Industry Avg (This Year)

No incidents recorded for SOK in 2026.

Incident History - SOK (X = Date, Y = Severity)

Loading…

SUBSIDIARY

SOK Subsidiaries

Parent Company

SOK

Retail

Website: https://s-ryhma.fi/tyopaikat/asiantuntijatyo

Company Size: 3,027

No subsidiary data available for this company.

Loading…

SOK Similar Companies

Grupo Carrefour Brasil

grupocarrefourbrasil.com.br

Reunimos uma equipe com mais de 70.000 colaboradores que representam a diversidade deste país. Hoje, somos um dos maiores empregadores do Brasil. Junto com os nossos fornecedores e parceiros, estamos comprometidos em satisfazer e encantar os consumidores todos os dias, construindo a nossa história com a sociedade. Nas mais de 200 lojas e nos diferentes pontos de contato do Grupo Carrefour (Carrefour Hipermercado, Carrefour Bairro, Carrefour Market, Carrefour Express, Postos, Drogarias e E-commerce), nos relacionamos com mais de um milhão de pessoas todos os dias. As pessoas estão no centro do nosso negócio e, por isso, estamos abertos ao aprendizado constante e à busca de uma melhor maneira em tudo que fazemos.

Alshaya Group

alshaya.com

Alshaya Group is a dynamic family-owned enterprise, first established in Kuwait in 1890. With a consistent record of growth and innovation, Alshaya Group is one of the world’s leading brand franchise operators, offering an unparalleled choice of well-loved international brands to customers. Alshaya Group’s portfolio extends across MENA, Russia, Turkey and Europe, with thousands of stores, cafes, restaurants and leisure destinations, as well as a growing online and digital business. Operating in multiple sectors including Fashion, Food, Health & Beauty, Pharmacy and Leisure & Entertainment, Alshaya Group colleagues are united by a commitment to authentically deliver great customer service and brand experiences. Fresh, modern and relevant, Alshaya’s constantly evolving portfolio reflects the choices and lifestyle of its customers. From flagship stores and restaurants in prestige malls, through to local coffee shops, drive-thrus and online, Alshaya Group brings customers the brands they love in the places they want to be. Brands such as Starbucks, H&M, Mothercare, Debenhams, American Eagle Outfitters, P.F. Chang’s, The Cheesecake Factory, The Body Shop, M.A.C, Victoria’s Secret, Boots, and KidZania.

QuikTrip

quiktrip.com

QuikTrip Corporation is a privately held company headquartered in Tulsa, Oklahoma. Founded in 1958, QuikTrip has grown to a more than $11 billion company with 800+ stores in eleven states. Those revenues place QuikTrip #29 on the Forbes listing of largest privately held companies. QuikTrip’s strategy is to be the dominant convenience/gasoline retailer in each market and to reach that level not through sheer numbers of stores, but through key, high-volume locations. With over 21,000 employees, QuikTrip's purpose is to provide employees opportunity to grow and succeed. QuikTrip also gives back to the communities it serves, donating 5% of net profits to charitable organizations. Everyone in the QT family possesses a certain intangible quality. Of course, they possess the many other qualities we expect in our employees, like dependability and work ethic, but they have something else, too. It’s the QT culture, and it’s what attracts everyone who works with us. Our employees are the reason people love the QT experience. Our store teams and corporate employees work hard, have fun, and genuinely love providing great service. In return, we give them great pay, great benefits, and all the fountain drinks they can consume!

The Home Depot

cb homedepot.com

The Home Depot, the world’s largest home improvement specialty retailer, values and rewards dedicated, knowledgeable, and experienced professionals. We operate more than 2,300 retail stores in all 50 states, the District of Columbia, Puerto Rico, the U.S. Virgin Islands, Guam, Canada, and Mexico. All of our associates have one thing in mind — helping our customers build and improve their homes. Join The Home Depot team today and see for yourself why we are consistently ranked as a top Fortune 500 company.

Toys"R"Us

toysrus.com

Toys“R”Us is a beloved brand known all around the world—and we know how to have fun! For over 70 years we've been the toy authority and ambassadors of all things play. Our new vision looks beyond traditional retail for a re-imagined, immersive experience for kids of all ages. We've got a whole new way to play, and we can't wait to share it with you!

DICK'S Sporting Goods

dickssportinggoods.jobs

YOU LIVE AND BREATHE SPORTS. SO DO WE. In work and in life. On the field, the court or the ice. Nothing wins like a commitment to excellence; to your team and your goals. At DICK’S Sporting Goods, it’s this kind of thinking that inspires our mission. Our culture is the result of people who give their all and always have their head in the game. People who are Passionate, Committed, Skilled and Driven to help athletes – and one another – achieve their personal best. That includes sharing our success to fund local teams, coaches and mentors. Sports can shape who we are and who we’re becoming. They can build character, transform communities and change lives. Our recognition of the power of sports creates a sense of purpose that empowers us to perform at the highest level for the athletes and communities we serve. If you love sports as much as we do, join us now. Opportunities exist at our 800+ Retail Stores, 5 Distribution Centers, and Corporate/Customer Support Center in Pittsburgh. Apply online at: DicksSportingGoods.jobs Headquartered in Pittsburgh, DICK'S also owns and operates Golf Galaxy and House of Sport stores, as well as GameChanger, a youth sports mobile app for scheduling, communications, live scorekeeping and video streaming. DICK'S offers its products through a dynamic eCommerce platform that is integrated with its store network and provides athletes with the convenience and expertise of a 24-hour storefront. To learn more about DICK'S visit our: Investor Relations Page: investors.dicks.com Check Out Our Sideline Report: investors.dicks.com/news/sideline-report Search & Apply for Jobs: dicks.com/jobs

Lojas Renner S.A.

lojasrennersa.com.br

We are a fashion and lifestyle ecosystem connected to our customers through digital channels and more than 600 stores in Brazil, Argentina and Uruguay. From the beginning, everything we do is to enchant. This is how our story began, in 1965, conquering important milestones, and today we are the leader in omnichannel fashion retail in the country. All this history based on solid values, built by our more than 24 thousand employees from the Renner, Camicado, Youcom, Realize CFI and Repassa businesses. We are creating a sustainability journey, with commitments to an increasingly responsible fashion. Through our businesses, we enchant employees, customers and everyone who is part of this network, always with a lot of collaboration and care for people. We are Lojas Renner S.A.

RD Saúde

rdsaude.com.br

Somos a RD Saúde, um ecossistema de saúde integral, com mais de 3 mil farmácias em todo o Brasil e negócios em saúde que dividem o mesmo propósito: contribuir para uma sociedade mais saudável. Nossa jornada começou em novembro de 2011, fruto da união entre Droga Raia e Drogasil, crescendo até se tornar a maior rede de farmácias do Brasil e expandindo para além do varejo farmacêutico, integrando soluções B2B e plataformas digitais. Com mais de um milhão de vidas atendidas diariamente em todo o país, temos vocação de cuidar dos nossos clientes e das nossas pessoas. Somos um grupo comprometido em construir o futuro da saúde com tecnologia e calor humano, por meio de um ecossistema aberto de soluções em saúde. Temos a sustentabilidade no centro da nossa estratégia, dividindo nossa ambição em três pilares: pessoas, negócio e planeta mais saudáveis.

TFG (The Foschini Group)

tfgcareers.co.za

TFG holds a diversified portfolio of speciality retail assets across various product categories and consumer segments. The Group has a portfolio of 35 leading retail brands, with over 4600 outlets in 23 countries on five continents, offering customers a variety of speciality products including fashion apparel, jewellery, cosmetics, sporting apparel, electronics, homeware and furniture. TFG has the largest speciality fashion and lifestyle retail footprint in South Africa and a growing presence in the UK and Australia. With its vision to create the most remarkable omnichannel experiences for its customers, TFG has launched Bash, a lifestyle e-commerce offering, where the Group’s sought-after retail brands and loyal customers come together seamlessly in one virtual platform. Visit us at www.tfglimited.co.za

Loading…

NEWS

SOK CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

November 23, 2025 12:07 AM

DPM Sok Chenda Sophea takes part in the milestone EU Indo-Pacific Forum in Brussels

At the invitation of the High Representative of the European Union for Foreign Affairs and Security Policy and European Commission Vice...

Read Article

October 09, 2025 07:00 AM

The 18th ASEAN–Japan Cybersecurity Policy Meeting – Ministry of Post and Telecommunications

Tokyo, Japan: From October 7–10, 2025, H.E. Sam Sethserey, Director General of the General Department of Information and Communications...

Read Article

September 26, 2025 07:00 AM

North Korea, China vow to deepen bilateral ties

Senior officials from North Korea and China have held a meeting and pledged to deepen bilateral ties, according to the North's state media...

Read Article

August 28, 2025 07:00 AM

Secretary of State Khov Makara Presided Over the 3rd Joint Coordinating Committee Meeting on the Cybersecurity Resilience Improvement Project

Phnom Penh— On August 28, 2025, His Excellency Khov Makara, Secretary of State of the Ministry of Post and Telecommunications, presided over...

Read Article

June 04, 2025 07:00 AM

MPTC, ADB discusses digital governance project

The Ministry of Post and Telecommunications (MPTC) and the Asian Development Bank (ADB) Tuesday held talks on a governance project aimed at...

Read Article

May 27, 2025 07:00 AM

ASEAN urged to fix digital divide

A Senior Minister and one of the leading Cambodian intellectuals has urged the ASEAN member nations to address the huge digital divide that...

Read Article

May 14, 2025 07:00 AM

Steelmaker Nucor experiences cybersecurity incident, shuts down some production

Nucor disclosed Wednesday that it had experienced a cybersecurity incident and temporarily shut down some of its production operations as a...

Read Article

April 14, 2025 07:00 AM

Does Transnational Repression Explain the Poor Turnout at Cambodian Grenade Attack Trial in Paris?

Very few French-Cambodians attended last month's trial of two bodyguards of ex-PM Hun Sen. It's probably no coincidence.

Read Article

March 13, 2025 07:00 AM

Research reveals 'major vulnerabilities' in deepfake detectors

A new study highlights major flaws in existing deepfake detectors and provides a framework for more reliable solutions.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-54236

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, the fix for CVE-2026-22778, which introduced a sanitize_message helper that strips object-repr memory addresses from error messages before they reach the client, is incomplete: several response paths echo str(exc) directly to clients without calling sanitize_message. The unsanitized sites include the Anthropic API router in vllm/entrypoints/anthropic/api_router.py (the POST /v1/messages and POST /v1/messages/count_tokens handlers), the Server-Sent Events streaming converter in vllm/entrypoints/anthropic/serving.py, and the realtime speech-to-text WebSocket in vllm/entrypoints/speech_to_text/realtime/connection.py. These paths catch the exception inside the route coroutine and construct the JSONResponse themselves, bypassing the sanitizing global FastAPI exception handler, and WebSocket frames do not traverse that handler chain at all. Using the same primitive as the parent issue, an unauthenticated attacker can send malformed image bytes through the Anthropic Messages API image content parts so that PIL.Image.open raises an UnidentifiedImageError whose message contains the BytesIO object repr, leaking the heap memory address verbatim in the error.message field of the response body. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: 5.3)

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

3.9

REFERENCES

CVE-2026-54235

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, ll temperature validation gates use comparison operators (<, >), which silently evaluate to False for NaN and for positive Infinity in Python's IEEE 754 float semantics. Both values pass every guard and propagate to GPU sampling kernels, where they produce undefined behavior or CUDA errors that can crash the inference worker. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-54233

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, vLLM's /v1/audio/transcriptions endpoint limits compressed upload size but not decoded PCM output. A 25MB OPUS file expands to ~14.9GB of float32 PCM at decode time. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.8

REFERENCES

CVE-2026-54232

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.22.1, the vLLM Dockerfile is vulnerable to a dependency confusion attack through the flashinfer-jit-cache package. The package is installed from a custom index (flashinfer.ai/whl/) using --extra-index-url, but the package name was not registered on PyPI, and UV_INDEX_STRATEGY="unsafe-best-match" is set globally. An attacker who registers flashinfer-jit-cache on PyPI with version 0.6.11.post2 can execute arbitrary code as root during the Docker build and backdoor every resulting container image, enabling exfiltration of all user prompts, API credentials, and model data from production vLLM deployments This vulnerability is fixed in 0.22.1.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

https://github.com/vllm-project/vllm/security/advisories/GHSA-jrf6-vqxq-pjv2

CVE-2026-53923

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). From 0.5.5 until 0.23.1rc0, integer truncation of tensor dimensions in vLLM's GGUF dequantize kernels (csrc/quantization/gguf/gguf_kernel.cu) causes partial tensor processing. The output tensor is allocated at full size via torch::empty (uninitialized memory), but the dequantize CUDA kernel processes only a truncated number of elements. The unfilled portion of the output tensor retains whatever was previously in GPU memory. In multi-tenant inference deployments, this residual GPU memory may contain tensor data from other users' inference requests, constituting information disclosure. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: )

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…