Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
The Clorox Company

The Clorox Company Vendor Cyber Rating & Cyber Score

TheCloroxCompany.com

The Clorox Company (NYSE: CLX) champions people to be well and thrive every single day. Its trusted brands include Brita®, Burt's Bees®, Clorox®, Fresh Step®, Glad®, Hidden Valley®, Kingsford®, Liquid-Plumr® and Pine-Sol® as well as international brands such as Clorinda®, Chux® and Poett®. Headquartered in Oakland, California, since 1913, Clorox was one of the first in the U.S. to integrate ESG into its business reporting. In 2024 the company was ranked No. 1 on Barron's 100 Most Sustainable Companies list for the second consecutive year.


CC A.I CyberSecurity Scoring

CC
Company Information
Website:http://www.TheCloroxCompany.com
Employees number:7,729
Number of followers:376,014
NAICS:30
Industry Type:Manufacturing
Homepage:TheCloroxCompany.com
CC Risk Score (AI oriented)
Between 550 and 599
logo
CCManufacturing
Updated:
04/04/2026
578/1000
Very Poor
Ca
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
CC Global Score (TPRM)
xxxx
logo
CCManufacturing
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

CC
CCVery Poor
Current Score
578Ca (VERY POOR)
01000
3 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
591Before Incident
JUNE 2026
587Before Incident
MAY 2026
577Before Incident
APRIL 2026
579Before Incident
MARCH 2026
582Before Incident
FEBRUARY 2026
580Before Incident
JANUARY 2026
575Before Incident
DECEMBER 2025
569Before Incident
NOVEMBER 2025
567Before Incident
OCTOBER 2025
561Before Incident
SEPTEMBER 2025
555Before Incident
AUGUST 2025
549Before Incident
JUNE 2024
633Before Incident
Ransomware
14 Jun 2024CC
Clorox: Ransomware attacks hit manufacturing hard in 2023

Ransomware Attacks on Manufacturing Surge to Five-Year High in 2023

435After Incident
CRITICAL-198
THE1770530370
Ransomware Attacks on Manufacturing Surge to Five-Year High in 2023 Ransomware attacks against manufacturing and production organizations reached a five-year peak in 2023, with two-thirds of companies in the sector reporting incidents, according to a Sophos report. Of those targeted, over 60% paid a ransom nearly double the 34% rate in 2022 making manufacturing one of the top-paying industries alongside energy and oil and gas. Sophos Field CTO John Shier noted that manufacturing firms face higher success rates for attacks due to perceived vulnerabilities, encouraging threat actors to target the sector. The average ransom payment surged 88% to nearly $2.4 million, with 60% of initial demands exceeding $1 million. Recovery costs also climbed, averaging $1.7 million a 55% increase from 2022. The impact of such attacks was demonstrated by Clorox, which suffered severe operational disruptions and $49 million in recovery expenses following an August 2023 cyberattack. The report, based on a survey of 585 IT and cybersecurity leaders across the Americas, EMEA, and Asia-Pacific, underscores the growing financial and operational risks ransomware poses to the manufacturing sector.
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Financial gain
IMPACT
$2.4 million (average ransom payment)$1.7 million (average recovery cost)$49 million (Clorox recovery expenses)Operational Impact: Severe operational disruptions
AUGUST 2023
609Before Incident
Cyber Attack
01 Aug 2023CC
Clorox

Clorox Cyberattack via Social Engineering on Cognizant Service Desk

587After Incident
CRITICAL-22
THE2392423091025
In August 2023, Clorox fell victim to a social engineering attack executed by the Scattered Spider group. Attackers impersonated locked-out employees via repeated calls to Cognizant’s outsourced service desk, exploiting weak verification processes to reset passwords and multi-factor authentication (MFA). This granted them domain-admin access, enabling lateral movement across Clorox’s systems. The breach led to operational paralysis, including offline production systems, paused manufacturing, manual order processing, and shipment delays, causing $380 million in damages—comprising $49 million in remediation costs and hundreds of millions in business-interruption losses. The incident underscored vulnerabilities in third-party help desk security, particularly outsourced high-privilege access, and highlighted the cascading impact of a single compromised identity on enterprise-wide operations. Clorox’s lawsuit alleged contractual violations by Cognizant, citing failure to enforce mandatory authentication procedures before credential resets.
INCIDENT DETAILS -
TYPE
Social EngineeringCredential StuffingUnauthorized AccessLateral Movement
MOTIVATION
Financial GainDisruption
IMPACT
Financial Loss: $380 million (including $49 million in remediation costs)Production SystemsManufacturing SystemsOrder Processing SystemsActive DirectoryProlonged (weeks)Manufacturing HaltedShipment DelaysManual Order ProcessingSupply Chain DisruptionsDepressed Sales VolumesRevenue Loss: Hundreds of millions (business-interruption losses)Significant (publicized breach)Supply Chain Trust ErosionLawsuit against Cognizant for contractual violations
JUNE 2023
792Before Incident
Ransomware
16 Jun 2023CC
Clorox

Clorox Ransomware Attack

604After Incident
CRITICAL-188
THE943072325
The Clorox company filed a lawsuit against Cognizant, a third-party technology provider, for a 2023 ransomware attack that cost the bleach maker $380 million. The hack, carried out by the Scattered Spider ransomware group, caused widespread disruption to Clorox's operations and devastated its IT infrastructure. The lawsuit alleges that Cognizant employees handed over their login credentials to the hackers, leading to the breach. The attack resulted in significant supply chain disruptions and restoration costs.
INCIDENT DETAILS -
TYPE
Ransomware
MOTIVATION
Financial Gain
IMPACT
Financial Loss: $380 millionSystems Affected: IT infrastructureOperational Impact: Widespread disruption to operationsLegal Liabilities: Lawsuit filed against Cognizant

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for CC ?
?
What was CC's A.I Rankiteo Cyber Score in June 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in May 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in April 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in March 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in February 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in January 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in December 2025 ?
?
What was CC's A.I Rankiteo Cyber Score in November 2025 ?
?
What was CC's A.I Rankiteo Cyber Score in October 2025 ?
?
What was CC's A.I Rankiteo Cyber Score in September 2025 ?
?
What was CC's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on CC's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with CC ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view CC's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?