SQUARE
Company Details
Linkedin ID:
square
Website:
Employees number:
56
Number of followers:
355
NAICS:
541613
Industry Type:
Homepage:
square.co
IP Addresses:
0
Company ID:
SQU_6347126
Scan Status:
In-progress
SQUARE Company CyberSecurity Posture
square.co
SQUARE™ is offering custom and standard products for promotion and merchandising. Our full-service solutions range from creative concepts and design, to production and logistics. Based on your idea or specific needs, we deliver unique products that stand out.
SQUARE A.I CyberSecurity Scoring
SQUARE Risk Score (AI oriented)Between 800 and 849
SQUARE
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
SQUARE Global Score (TPRM)XXXX
SQUARE
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
SQUARE Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Cash App Investing
Cyber Attack
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: In December 2021, Block, Inc., the parent company of Cash App, disclosed a significant cybersecurity incident affecting their Cash App Investing service. A former employee managed to download internal reports containing information about more than 8 million current and former Cash App Investing customers. The breach raised serious concerns about the management of sensitive data and the measures in place to restrict access to such data once an employee's tenure has ended. The reports stolen did not include personally identifiable information such as usernames, passwords, or Social Security Numbers, which mitigated the potential fallout. However, the incident highlighted the risks associated with insider threats and the importance of robust access controls and monitoring to safeguard against unauthorized access to sensitive information.
SQUARE Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for SQUARE
Incidents vs Advertising Services Industry Average (This Year)
No incidents recorded for SQUARE in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for SQUARE in 2025.
Incident Types SQUARE vs Advertising Services Industry Avg (This Year)
No incidents recorded for SQUARE in 2025.
Incident History — SQUARE (X = Date, Y = Severity)
SQUARE cyber incidents detection timeline including parent company and subsidiaries
SQUARE Company Subsidiaries
SQUARE™ is offering custom and standard products for promotion and merchandising. Our full-service solutions range from creative concepts and design, to production and logistics. Based on your idea or specific needs, we deliver unique products that stand out.
Loading...
SQUARE Similar Companies
dentsu
We are dentsu. We team together to help brands predict and plan for disruptive future opportunities and create new paths to growth in the sustainable economy. We know people better than anyone else and we use those insights to connect brand, content, commerce and experience, underpinned by modern cr
IPG Mediabrands
IPG Mediabrands is the media and marketing solutions division of Interpublic Group (NYSE: IPG). IPG Mediabrands manages over $47 billion in marketing investment globally on behalf of its clients across its full-service agency networks UM, Initiative and Mediahub and through its award-winning special
Quad (NYSE: QUAD) is a global marketing experience company that helps brands make direct consumer connections, from household to in-store to online. Supported by state-of-the-art technology and data-driven intelligence, Quad uses its suite of media, creative and production solutions to streamline th
Clear Channel Europe
Clear Channel Europe is a division of leading global Out of Home media company, Clear Channel Outdoor Holdings, Inc. (NYSE: CCO). The Clear Channel Europe portfolio spans 14 markets with 260,000 advertising panels. Clear Channel Europe has 2,600 dedicated employees. Our Mission is To Create the fu
Founded in 1926 by Marcel Bleustein-Blanchet, today Publicis Groupe is the largest communications group in the world and a leader in marketing, communication, and digital business transformation, led by Arthur Sadoun, the third CEO in its history. Publicis Groupe is positioned at every step of the
dentsu
We are dentsu. We team together to help brands predict and plan for disruptive future opportunities and create new paths to growth in the sustainable economy. We know people better than anyone else and we use those insights to connect brand, content, commerce and experience, underpinned by modern cr
Havas
TO MAKE A MEANINGFUL DIFFERENCE TO BRANDS, TO BUSINESSES AND TO PEOPLE Founded in 1835 in Paris, Havas is one of the world’s largest global communications networks, with more than 23,000 people in over 100 markets sharing one single mission: to make a meaningful difference to brands, businesses, a
Ogilvy
Ogilvy has been creating impact for brands through iconic, culture-changing, value-driving ideas since the company was founded by David Ogilvy 75 years ago. We build on that rich legacy through Borderless Creativity – innovating at the intersections of its advertising, public relations, relationship
Interpublic Group (IPG)
Interpublic (NYSE: IPG) is a values-based, data-fueled, and creatively-driven provider of marketing solutions. Home to some of the world’s best-known and most innovative communications specialists, IPG global brands include Acxiom, Craft, FCB, FutureBrand, Golin, Initiative, IPG Health, IPG Mediabra
.png)
SQUARE CyberSecurity News
December 09, 2025 11:30 AM
Cybersecurity firm takes 12,000 sq. ft. at SJP’s Waterfront Corporate Center in Hoboken
By Joshua Burd. A cybersecurity firm is coming to SJP Properties' Waterfront Corporate Center in Hoboken, having leased more than 12,000...
December 09, 2025 09:50 AM
News | Cybersecurity set to drive 3.3 million square feet of office demand by 2030
Savills predicts Manchester, Leeds, Bristol and Glasgow will lead the charge.
November 25, 2025 08:00 AM
Cybersecurity in Cryptocurrency Statistics 2025: Smart Data to Stay Protected
Uncover the latest Cybersecurity in Cryptocurrency Statistics to protect your assets, avoid scams, and make smarter, data-driven decisions.
November 12, 2025 08:00 AM
Bricklayer AI Raises $5M Seed Round to Advance Agentic Cybersecurity Platform
Bricklayer AI, an Arlington, Virginia-based cybersecurity startup, has raised $5 million in an oversubscribed seed round led by Tech Square...
October 30, 2025 07:00 AM
Arctic Wolf Opens 29,000 Sq Ft AI-Driven Cybersecurity R&D Centre in Bengaluru
Cybersecurity firm Arctic Wolf has significantly bolstered its global innovation footprint with the inauguration of a 29000-square-foot.....
October 27, 2025 07:00 AM
$3.8 million Tandon project makes cybersecurity accessible
$3.8 million Tandon project makes cybersecurity accessible. The “Cryptolets” platform creates an open library where scientists can share and...
October 24, 2025 07:00 AM
Secureplex, an SQ Group company, receives ‘Cyber Security Company of the Year 2025’ award from CyberSecurity Malaysia and Ministry of Digital
The “Cyber Security Company of the Year 2025” award highlights Malaysia's rising status as a trusted regional hub for digital security and...
October 23, 2025 07:00 AM
Bricklayer AI Raises $5M Seed to Boost AI Cybersecurity Tools
In a significant boost for the cybersecurity sector, Bricklayer AI has secured $5 million in seed funding to advance its AI-driven platform...
October 22, 2025 07:00 AM
Bricklayer AI Raises $5 Million Seed Round Led by Tech Square Ventures to Transform Security Operations with Agentic AI
PRNewswire/ -- Bricklayer AI, the agentic cybersecurity platform empowering Security Operations Centers (SOCs) with AI agents,...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
SQUARE CyberSecurity History Information
Official Website of SQUARE
The official website of SQUARE is http://www.square.co.
SQUARE’s AI-Generated Cybersecurity Score
According to Rankiteo, SQUARE’s AI-generated cybersecurity score is 805, reflecting their Good security posture.
How many security badges does SQUARE’ have ?
According to Rankiteo, SQUARE currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does SQUARE have SOC 2 Type 1 certification ?
According to Rankiteo, SQUARE is not certified under SOC 2 Type 1.
Does SQUARE have SOC 2 Type 2 certification ?
According to Rankiteo, SQUARE does not hold a SOC 2 Type 2 certification.
Does SQUARE comply with GDPR ?
According to Rankiteo, SQUARE is not listed as GDPR compliant.
Does SQUARE have PCI DSS certification ?
According to Rankiteo, SQUARE does not currently maintain PCI DSS compliance.
Does SQUARE comply with HIPAA ?
According to Rankiteo, SQUARE is not compliant with HIPAA regulations.
Does SQUARE have ISO 27001 certification ?
According to Rankiteo,SQUARE is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of SQUARE
SQUARE operates primarily in the Advertising Services industry.
Number of Employees at SQUARE
SQUARE employs approximately 56 people worldwide.
Subsidiaries Owned by SQUARE
SQUARE presently has no subsidiaries across any sectors.
SQUARE’s LinkedIn Followers
SQUARE’s official LinkedIn profile has approximately 355 followers.
NAICS Classification of SQUARE
SQUARE is classified under the NAICS code 541613, which corresponds to Marketing Consulting Services.
SQUARE’s Presence on Crunchbase
No, SQUARE does not have a profile on Crunchbase.
SQUARE’s Presence on LinkedIn
Yes, SQUARE maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/square.
Cybersecurity Incidents Involving SQUARE
As of December 17, 2025, Rankiteo reports that SQUARE has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
SQUARE has an estimated 32,672 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at SQUARE ?
Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.
Incident Details
Can you provide details on each incident ?
Title: Block, Inc. Cash App Investing Data Breach
Description: A former employee of Block, Inc. downloaded internal reports containing information about more than 8 million current and former Cash App Investing customers.
Date Detected: 2021-12
Date Publicly Disclosed: 2021-12
Type: Data Breach
Attack Vector: Insider Threat
Vulnerability Exploited: Unauthorized Access to Sensitive Data
Threat Actor: Former Employee
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Cyber Attack.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach SQU409050824
Data Compromised: Internal Reports
Brand Reputation Impact: Significant
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Internal Reports.
Which entities were affected by each incident ?
Incident : Data Breach SQU409050824
Entity Name: Block, Inc.
Entity Type: Company
Industry: Financial Services
Customers Affected: More than 8 million
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach SQU409050824
Type of Data Compromised: Internal Reports
Number of Records Exposed: More than 8 million
Sensitivity of Data: High
Data Exfiltration: Yes
Personally Identifiable Information: No
Lessons Learned and Recommendations
What lessons were learned from each incident ?
Incident : Data Breach SQU409050824
Lessons Learned: Importance of robust access controls and monitoring to safeguard against unauthorized access to sensitive information.
What are the key lessons learned from past incidents ?
Key Lessons Learned: The key lessons learned from past incidents are Importance of robust access controls and monitoring to safeguard against unauthorized access to sensitive information.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Former Employee.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2021-12.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2021-12.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident was Internal Reports.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was Internal Reports.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 8.0M.
Lessons Learned and Recommendations
What was the most significant lesson learned from past incidents ?
Most Significant Lesson Learned: The most significant lesson learned from past incidents was Importance of robust access controls and monitoring to safeguard against unauthorized access to sensitive information.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Nagios XI versions prior to 2026R1.1 are vulnerable to local privilege escalation due to an unsafe interaction between sudo permissions and application file permissions. A user‑accessible maintenance script may be executed as root via sudo and includes an application file that is writable by a lower‑privileged user. A local attacker with access to the application account can modify this file to introduce malicious code, which is then executed with elevated privileges when the script is run. Successful exploitation results in arbitrary code execution as the root user.
Risk Information
cvss4
Base: 8.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Out of bounds read and write in V8 in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Description
Use after free in WebGPU in Google Chrome prior to 143.0.7499.147 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
Description
SIPGO is a library for writing SIP services in the GO language. Starting in version 0.3.0 and prior to version 1.0.0-alpha-1, a nil pointer dereference vulnerability is in the SIPGO library's `NewResponseFromRequest` function that affects all normal SIP operations. The vulnerability allows remote attackers to crash any SIP application by sending a single malformed SIP request without a To header. The vulnerability occurs when SIP message parsing succeeds for a request missing the To header, but the response creation code assumes the To header exists without proper nil checks. This affects routine operations like call setup, authentication, and message handling - not just error cases. This vulnerability affects all SIP applications using the sipgo library, not just specific configurations or edge cases, as long as they make use of the `NewResponseFromRequest` function. Version 1.0.0-alpha-1 contains a patch for the issue.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
GLPI is a free asset and IT management software package. Starting in version 9.1.0 and prior to version 10.0.21, an unauthorized user with an API access can read all knowledge base entries. Users should upgrade to 10.0.21 to receive a patch.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=square' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
