What is the official website of Suzano ?

The official website of Suzano is http://www.suzano.com.br.

What is Suzano's cybersecurity risk score?

Suzano has an AI-generated cybersecurity risk score of 786 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Suzano experienced?

According to Rankiteo, Suzano currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Suzano been affected by any supply chain cyber incidents ?

According to Rankiteo, Suzano has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Suzano have SOC 2 Type 1 certification ?

According to Rankiteo, Suzano is not certified under SOC 2 Type 1.

Does Suzano have SOC 2 Type 2 certification ?

According to Rankiteo, Suzano does not hold a SOC 2 Type 2 certification.

Does Suzano comply with GDPR ?

According to Rankiteo, Suzano is not listed as GDPR compliant.

Does Suzano have PCI DSS certification ?

According to Rankiteo, Suzano does not currently maintain PCI DSS compliance.

Does Suzano comply with HIPAA ?

According to Rankiteo, Suzano is not compliant with HIPAA regulations.

Does Suzano have ISO 27001 certification ?

According to Rankiteo,Suzano is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Suzano operate in ?

Suzano operates primarily in the Paper and Forest Product Manufacturing industry.

How many employees does Suzano have ?

Suzano employs approximately 22,992 people worldwide.

Does Suzano own any subsidiaries ?

Suzano presently has no subsidiaries across any sectors.

How many LinkedIn followers does Suzano have ?

Suzano's official LinkedIn profile has approximately 1,174,368 followers.

What is the NAICS classification code for Suzano ?

Suzano is classified under the NAICS code 322, which corresponds to Paper Manufacturing.

Does Suzano have a Crunchbase profile ?

No, Suzano does not have a profile on Crunchbase.

Does Suzano have a LinkedIn profile ?

Yes, Suzano maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/suzano.

How many cybersecurity incidents has Suzano experienced ?

As of June 23, 2026, Rankiteo reports that Suzano has not experienced any cybersecurity incidents.

How many peer or competitor companies does Suzano have ?

Suzano has an estimated 692 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Suzano

Boost Score +25 with badge (5 left)

786

/1000

Fair

811

/1000

Good

Suzano Vendor Cyber Rating & Cyber Score

suzano.com.br

Add Your Compliance Badge

Suzano, the company resulting from the merger of Suzano Pulp & Paper and Fibria, is committed to being a global reference in the sustainable use of natural resources. The world's leading producer of eucalyptus pulp and one of Latin America’s largest paper producers, Suzano exports to more than 80 countries and, through its products, plays a part in the lives of over two billion people. With ten mills and the joint operation Veracel, Suzano has annual installed capacity of 10,9 million tons of market pulp and 1.4 million tons of paper. Suzano has more than 35,000 direct and indirect employees and for over 90 years has invested in innovative solutions based on eucalyptus cultivation that enable it to substitute the use of fossil-based

Suzano A.I CyberSecurity Scoring

Scoring History

Suzano

Suzano CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

Suzano Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Suzano

Incidents vs Paper and Forest Product Manufacturing Industry Avg (This Year)

No incidents recorded for Suzano in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Suzano in 2026.

Incident Types Suzano vs Paper and Forest Product Manufacturing Industry Avg (This Year)

No incidents recorded for Suzano in 2026.

Incident History - Suzano (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Suzano Subsidiaries

Parent Company

Suzano

Paper and Forest Product Manufacturing

Website: http://www.suzano.com.br

Company Size: 10,000+ employees

No subsidiary data available for this company.

Loading…

Suzano Similar Companies

International Paper

internationalpaper.com

International Paper (NYSE: IP; LSE: IPC) is the global leader in sustainable packaging solutions. With company headquarters in Memphis, Tennessee, USA, and EMEA (Europe, Middle East and Africa) headquarters in London, UK, we employ more than 65,000 team members and serve customers around the world with operations in more than 30 countries. Together with our customers, we make the world safer and more productive, one sustainable packaging solution at a time. Learn more at internationalpaper.com.

Klabin

klabin.com.br

Somos a maior produtora e exportadora de papéis para embalagens do Brasil, líderes nos mercados de embalagens de papelão ondulado, sacos industriais e papel-cartão e a única indústria do País a oferecer soluções em celuloses de fibra curta, fibra longa e fluff. Com mais de 120 anos de história, temos 22 unidades industriais no Brasil e uma na Argentina e uma capacidade produtiva anual de 4,5 milhões de toneladas de celulose de mercado e papéis. Toda a gestão da Klabin está orientada para o desenvolvimento sustentável e buscamos crescimento integrado e responsável, que une rentabilidade, desenvolvimento social e compromisso ambiental. Desde 2014 integramos o Índice de Sustentabilidade Empresarial (ISE) da B3 e, desde 2020, o Índice Dow Jones Best-in-Class, com participação na carteira Global e de Mercados Emergentes. Saiba mais sobre a nossa atuação em klabin.com.br. ⚠️ Atenção! A Klabin e seus parceiros de recrutamento não cobram qualquer valor dos candidatos em seus processos seletivos.

APP Group

app.co.id

APP serves as the holding company for multiple Indonesia pulp and paper manufacturing as well as forestry entities, catering to the increasing global need for high-quality tissue, packaging, and paper. Our products reach over 150 countries spanning six continents. APP Group serves as group name of pulp, paper and forestry entities under APP and its affiliates including the pulp and paper and forestry operation in China. Driven by a dedication to sustainability and ethical practices, we prioritize the well-being of our employees, society, and environment. Our approach involves harnessing technological advancements and fostering innovation, collaborating closely with communities, and upholding internationally recognized business and operational standards throughout our production and supply chain. Aligned with the Environmental, Social, and Governance (ESG) principles, our Sustainability Roadmap Vision 2030 steers our actions toward safeguarding environment, bolstering local communities, preserving biodiversity, and striving for carbon neutrality in all our endeavors.

RGE

rgei.com

Headquartered in Singapore, RGE is a global group of companies in the bio-based resources and energy sectors, serving over 100 markets worldwide. With more than US$40 billion in assets and a workforce of 80,000 employees, our operations span across Indonesia, China, Brazil, Canada, Spain, and Malaysia. As a global leader in sustainable natural fibres, edible oils, green packaging, and cleaner energy solutions, we play a vital role in feeding, clothing, and improving the lives of billions every day. We build lasting businesses by integrating sustainability as an enabler of growth, while advancing a nature-positive, greener future. Established in 1973, we have remained committed to sustainable development, conservation, and community empowerment, guided by our 5Cs philosophy of doing what is good for the Community, Country, Climate, Customer, and only then will it be good for the Company.

Loading…

NEWS

Suzano CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

January 13, 2025 08:00 AM

Spinnova Speeds Production with Siemens Technology

At the Woodspin factory, a joint venture with Brazilian pulp producer Suzano, Spinnova implementing its technology on an industrial scale...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-54236

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, the fix for CVE-2026-22778, which introduced a sanitize_message helper that strips object-repr memory addresses from error messages before they reach the client, is incomplete: several response paths echo str(exc) directly to clients without calling sanitize_message. The unsanitized sites include the Anthropic API router in vllm/entrypoints/anthropic/api_router.py (the POST /v1/messages and POST /v1/messages/count_tokens handlers), the Server-Sent Events streaming converter in vllm/entrypoints/anthropic/serving.py, and the realtime speech-to-text WebSocket in vllm/entrypoints/speech_to_text/realtime/connection.py. These paths catch the exception inside the route coroutine and construct the JSONResponse themselves, bypassing the sanitizing global FastAPI exception handler, and WebSocket frames do not traverse that handler chain at all. Using the same primitive as the parent issue, an unauthenticated attacker can send malformed image bytes through the Anthropic Messages API image content parts so that PIL.Image.open raises an UnidentifiedImageError whose message contains the BytesIO object repr, leaking the heap memory address verbatim in the error.message field of the response body. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: 5.3)

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

3.9

REFERENCES

CVE-2026-54235

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, ll temperature validation gates use comparison operators (<, >), which silently evaluate to False for NaN and for positive Infinity in Python's IEEE 754 float semantics. Both values pass every guard and propagate to GPU sampling kernels, where they produce undefined behavior or CUDA errors that can crash the inference worker. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: )

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-54233

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.23.1rc0, vLLM's /v1/audio/transcriptions endpoint limits compressed upload size but not decoded PCM output. A 25MB OPUS file expands to ~14.9GB of float32 PCM at decode time. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact Score

3.6

Exploitability

2.8

REFERENCES

CVE-2026-54232

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.22.1, the vLLM Dockerfile is vulnerable to a dependency confusion attack through the flashinfer-jit-cache package. The package is installed from a custom index (flashinfer.ai/whl/) using --extra-index-url, but the package name was not registered on PyPI, and UV_INDEX_STRATEGY="unsafe-best-match" is set globally. An attacker who registers flashinfer-jit-cache on PyPI with version 0.6.11.post2 can execute arbitrary code as root during the Docker build and backdoor every resulting container image, enabling exfiltration of all user prompts, API credentials, and model data from production vLLM deployments This vulnerability is fixed in 0.22.1.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: 8.8)

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

2.8

REFERENCES

https://github.com/vllm-project/vllm/security/advisories/GHSA-jrf6-vqxq-pjv2

CVE-2026-53923

SUMMARY

vLLM is an inference and serving engine for large language models (LLMs). From 0.5.5 until 0.23.1rc0, integer truncation of tensor dimensions in vLLM's GGUF dequantize kernels (csrc/quantization/gguf/gguf_kernel.cu) causes partial tensor processing. The output tensor is allocated at full size via torch::empty (uninitialized memory), but the dequantize CUDA kernel processes only a truncated number of elements. The unfilled portion of the output tensor retains whatever was previously in GPU memory. In multi-tenant inference deployments, this residual GPU memory may contain tensor data from other users' inference requests, constituting information disclosure. This vulnerability is fixed in 0.23.1rc0.

Published

Date2026-06-22

Updated

Date2026-06-22

RISK INFORMATION (Score: )

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…