Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
The Coca-Cola Company

The Coca-Cola Company Vendor Cyber Rating & Cyber Score

coca-colacompany.com

From our roots at the counter of a local Atlanta pharmacy, to our current portfolio of more than 200 beverages, The Coca-Cola Company is one of the most globally-recognized brands in the world. Today, our lineup features beloved beverage brands, including ​ Coca-Cola, Sprite, Fanta, smartwater, Dasani, Topo Chico, BODYARMOR, Powerade, Costa, Georgia, Goldpeak, Minute Maid, Simply, fairlife and more. ​ The Coca-Cola Company is committed to bringing about real change – to our industry, to our local economies, and to the world around us. Through constant evolution, we continue to reimagine the way we refresh the world and make a difference.​ We're innovating our portfolio with products that give people more varieties that meet our consumers


CC A.I CyberSecurity Scoring

CC
Company Information
Website:http://www.coca-colacompany.com
Employees number:53,568
Number of followers:8,666,822
NAICS:722
Industry Type:Food and Beverage Services
Homepage:coca-colacompany.com
CC Risk Score (AI oriented)
Between 750 and 799
logo
CCFood and Beverage Services
Updated:
16/07/2026
778/1000
Fair
Baa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
CC Global Score (TPRM)
xxxx
logo
CCFood and Beverage Services
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

CC
CCFair
Current Score
778Baa (FAIR)
01000
5 incidents
-24 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
819Before Incident
Ransomware
16 Jul 2026CC
The Coca-Cola Company and Fairlife: Coca-Cola says Fairlife ransomware attack halts US dairy production

Coca-Cola’s Fairlife Subsidiary Hit by Ransomware Attack, Disrupting U.S. Production

778After Incident
CRITICAL-41
FAITHE1784240634
Coca-Cola’s Fairlife Subsidiary Hit by Ransomware Attack, Disrupting U.S. Production The Coca-Cola Company revealed today that its Fairlife dairy subsidiary suffered a ransomware attack, leading to temporary production halts across U.S. facilities. The incident was disclosed in an SEC Form 8-K filing, where Coca-Cola stated that Fairlife detected unauthorized access to its systems, including production-related infrastructure. Upon discovery, the company activated incident response and business continuity protocols, engaging external cybersecurity experts and notifying law enforcement. While the investigation remains ongoing, Coca-Cola confirmed that product quality and safety have not been compromised. However, production at Fairlife’s U.S. sites has been suspended as systems are restored, with Canadian operations unaffected. Fairlife, a Coca-Cola-owned brand specializing in ultra-filtered milk, protein shakes, and nutrition drinks, distributes products like Core Power and Fairlife Ultra-Filtered Milk nationwide. The company has not disclosed whether data was exfiltrated, if a ransom demand was made, or which ransomware group is responsible. No threat actor has claimed the attack, though if data was stolen, extortion attempts may follow. Coca-Cola is working to resume operations but has not yet determined whether the incident will have a material financial impact. The company declined to provide further details beyond its public statement.
INCIDENT DETAILS -
TYPE
ransomware
IMPACT
Systems Affected: production-related infrastructureDowntime: temporary production haltsOperational Impact: production suspended at U.S. facilities
JUNE 2026
818Before Incident
MAY 2026
818Before Incident
APRIL 2026
817Before Incident
MARCH 2026
817Before Incident
FEBRUARY 2026
823Before Incident
Cyber Attack
01 Feb 2026CC
Adobe, Netflix, Coca-Cola, OpenAI, PepsiCo, Adidas, FIFA and Delta: Phishing poses as big-brand job interview to steal Google accounts

Phishing Campaign Targets Marketing Professionals with Fake Job Offers from Major Brands

816After Incident
CRITICAL-7
PEPDELADOFIFTHEADINETOPE1783376814
Phishing Campaign Targets Marketing Professionals with Fake Job Offers from Major Brands A sophisticated phishing campaign is impersonating over 30 high-profile brands including Adobe, Netflix, Coca-Cola, and OpenAI to steal Google account credentials from marketing professionals under the guise of fake job interviews. The operation leverages legitimate cloud-based platforms, including PeopleForce (an HR service) and Salesforce Marketing Cloud, to lend credibility to its attacks before redirecting victims to malicious landing pages. The threat actor enhances trust by using real recruiters’ names and photos from the impersonated companies. Researcher Will Thomas of Team Cymru identified at least 34 domains mimicking brands across multiple sectors, such as airlines (American Airlines, Delta), food and beverage (Coca-Cola, PepsiCo), tech (Adobe, OpenAI), and entertainment (Netflix, FIFA). The campaign employs nested redirects, routing victims through multiple legitimate services before reaching the phishing page. For example, links in phishing emails initially resolve to exct[.]net (a Salesforce-operated domain) before redirecting to Wise Agent, a real estate CRM, and finally to the fraudulent site. The operation has been active for at least five months, initially using Outlook email addresses branded with the impersonated companies’ names. One phishing email, posing as an Adidas recruiter, invited recipients to schedule a meeting via a link that led to adidas-hiring[.]com. Victims were prompted to sign in with their Google accounts, triggering a fake Google authentication popup a browser-in-the-browser (BitB) technique that mimics a legitimate login window using HTML and CSS. While the exact method of access to the legitimate platforms remains unclear, the abuse does not indicate a compromise of PeopleForce or Salesforce. The attacker may have created genuine accounts or used stolen credentials to configure the redirect chain. A full list of the malicious domains is available in Thomas’ GitHub analysis.
INCIDENT DETAILS -
TYPE
Phishing
MOTIVATION
Credential Theft
IMPACT
Data Compromised: Google account credentialsBrand Reputation Impact: Potential reputational damage to impersonated brandsIdentity Theft Risk: High
DATA BREACH
Type Of Data Compromised: Google account credentialsSensitivity Of Data: HighPersonally Identifiable Information: Potentially (if credentials include PII)
JANUARY 2026
823Before Incident
DECEMBER 2025
822Before Incident
NOVEMBER 2025
821Before Incident
OCTOBER 2025
821Before Incident
SEPTEMBER 2025
821Before Incident
AUGUST 2025
820Before Incident
APRIL 2022
824Before Incident
Breach
01 Apr 2022CC
The Coca-Cola Company

Data Breach Incident at Coca-Cola Co

799After Incident
CRITICAL-25
THE182330422
Coca-Cola Co was targeted by the Stormous group in a data breach incident recently in April 2022. Stormous group accessed a tranche of Coca-Cola’s confidential data and offered it for $64,000 in bitcoin. The attack was initiated by the Russian group after the firm decided to pull out of Russia amid war situation.
INCIDENT DETAILS -
TYPE
Data Breach
MOTIVATION
Retaliation for pulling out of Russia
IMPACT
Data Compromised: Confidential data
DATA BREACH
Type Of Data Compromised: Confidential data
MAY 2018
829Before Incident
Breach
01 May 2018CC
The Coca-Cola Company

Data Breach Incident at Coca-Cola

803After Incident
CRITICAL-26
THE2144722
The Coca-Cola Company faced a data breach incident. A former employee was found in possession of worker data on a personal hard drive. A former employee at a Coca-Cola subsidiary was found in possession of an external hard drive containing information that appeared to have been misappropriated from Coca-Cola. Coca-Cola worked with law enforcement to investigate the data's origin and validity and determined that some documents contained the personal information of some of its workers. Data breach notices are issued to about 8,000 individuals whose personal information was The type of stolen and exposed data varies per employee. Coca-Cola is offering free identity monitoring for one year to affected employees through a third-party provider.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Personal Information of Employees
DATA BREACH
Type Of Data Compromised: Personal InformationNumber Of Records Exposed: About 8,000
DECEMBER 2013
846Before Incident
Breach
10 Dec 2013CC
The Coca-Cola Company

Data Breach at The Coca-Cola Company

813After Incident
HIGH-33
THE835080425
The California Office of the Attorney General reported that The Coca-Cola Company experienced a data breach involving the theft of several laptops assigned to its users. The breach was discovered on December 10, 2013, and reported on January 24, 2014. The specific details of the personnel information compromised are unknown.
INCIDENT DETAILS -
TYPE
Data Breach
IMPACT
Data Compromised: Personnel InformationSystems Affected: Laptops
DATA BREACH
Type Of Data Compromised: Personnel Information

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for CC ?
?
What was CC's A.I Rankiteo Cyber Score in June 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in May 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in April 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in March 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in February 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in January 2026 ?
?
What was CC's A.I Rankiteo Cyber Score in December 2025 ?
?
What was CC's A.I Rankiteo Cyber Score in November 2025 ?
?
What was CC's A.I Rankiteo Cyber Score in October 2025 ?
?
What was CC's A.I Rankiteo Cyber Score in September 2025 ?
?
What was CC's A.I Rankiteo Cyber Score in August 2025 ?
?
What is the average per-incident point impact on CC's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with CC ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view CC's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?