ZEISS Group
Company Details
Linkedin ID:
zeiss
Website:
Employees number:
23,632
Number of followers:
392,138
NAICS:
333
Industry Type:
Homepage:
zeiss.com
IP Addresses:
0
Company ID:
ZEI_2173529
Scan Status:
In-progress
ZEISS Group Company CyberSecurity Posture
zeiss.com
ZEISS is an internationally leading technology enterprise operating in the fields of optics and optoelectronics. In the previous fiscal year, the ZEISS Group generated annual revenue around 11 billion euros in its four segments Semiconductor Manufacturing Technology, Industrial Quality & Research, Medical Technology and Consumer Markets (30 September 2024). With over 46,000 employees, ZEISS is active globally in around 50 countries with more than 60 sales and service locations, around 40 research and development facilities, and 35 production facilities worldwide (30 September 2024). Founded in 1846 in Jena, the company is headquartered in Oberkochen, Germany. The Carl Zeiss Foundation, one of the largest foundations in Germany committed to the promotion of science, is the sole owner of the holding company, Carl Zeiss AG. Data privacy: www.zeiss.com/data-protection Imprint: http://zeiss.com/publisher This is ZEISS's official LinkedIn account. It follows the ZEISS Netiquette: www.zeiss.com/netiquette
ZEISS Group A.I CyberSecurity Scoring
ZEISS Group Risk Score (AI oriented)Between 750 and 799
ZEISS Group
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
ZEISS Group Global Score (TPRM)XXXX
ZEISS Group
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
ZEISS Group Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
ZEISS Group Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for ZEISS Group
Incidents vs Machinery Manufacturing Industry Average (This Year)
No incidents recorded for ZEISS Group in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for ZEISS Group in 2025.
Incident Types ZEISS Group vs Machinery Manufacturing Industry Avg (This Year)
No incidents recorded for ZEISS Group in 2025.
Incident History — ZEISS Group (X = Date, Y = Severity)
ZEISS Group cyber incidents detection timeline including parent company and subsidiaries
ZEISS Group Company Subsidiaries
ZEISS is an internationally leading technology enterprise operating in the fields of optics and optoelectronics. In the previous fiscal year, the ZEISS Group generated annual revenue around 11 billion euros in its four segments Semiconductor Manufacturing Technology, Industrial Quality & Research, Medical Technology and Consumer Markets (30 September 2024). With over 46,000 employees, ZEISS is active globally in around 50 countries with more than 60 sales and service locations, around 40 research and development facilities, and 35 production facilities worldwide (30 September 2024). Founded in 1846 in Jena, the company is headquartered in Oberkochen, Germany. The Carl Zeiss Foundation, one of the largest foundations in Germany committed to the promotion of science, is the sole owner of the holding company, Carl Zeiss AG. Data privacy: www.zeiss.com/data-protection Imprint: http://zeiss.com/publisher This is ZEISS's official LinkedIn account. It follows the ZEISS Netiquette: www.zeiss.com/netiquette
Loading...
ZEISS Group Similar Companies
CNH
CNH ( NYSE: CNH ) is a world-class equipment, technology and services company. The Company operates commercially through its brand portfolio which includes Case IH, New Holland Agriculture, New Holland Construction, and CASE Construction Equipment. CNH has over 35,000 employees, 40 manufacturing p
Zoomlion
Founded in 1992, ZOOMLION Heavy Industry Science & Technology Co., Ltd. is mainly engaged in developing and manufacturing major high-tech equipment in the areas of engineering industry and agricultural industry. With more than 20 years of innovation and development, the company is now a global enter
Atlas Copco
Atlas Copco delivers innovative products and solutions that help businesses grow and drive progress. Our portfolio spans compressed air and gas systems and treatment, vacuum solutions, industrial power tools, assembly systems, and power and flow solutions. We bring a commitment to long-term succes
Caterpillar Inc.
For 100 years, we’ve been helping customers build a better, more sustainable world. Our innovative products and services, backed by our global dealer network, provide exceptional value that helps customers succeed. With 2024 sales and revenues of $64.8 billion, Caterpillar Inc. is the world’s lead
AGCO is a global leader in the design, manufacture and distribution of smart solutions for sustainable agriculture. Our portfolio is the most comprehensive in the ag industry, including a full line of tractors, combine harvesters, hay and forage equipment, seeding and tillage implements, grain stora
John Deere
It doesn’t matter if you’ve never driven a tractor, mowed a lawn, or operated a dozer. With John Deere’s role in helping produce food, fiber, fuel, and infrastructure, we work for every single person on the planet. It all started nearly 200 years ago with a steel plow. Today, John Deere drives inn
DMG MORI EMEA
DMG MORI is a leading global manufacturer of machine tools and is driving holistic process integration based on technology integration, automation and digitization for greater sustainability. In the "Global One Company", more than 12,000 employees work together to be a total solution provider for ou
Finning
Finning is the world's largest Caterpillar dealer delivering unrivalled service for over 90 years. We sell, rent and provide parts and service for equipment and engines to customers in various industries, including mining, construction, petroleum, forestry and a wide range of power systems applicati
Voith Group
The Voith Group is a global technology company. With its broad portfolio of systems, products, services and digital applications, Voith sets standards in the markets of energy, paper, raw materials and transport. Founded in 1867, Voith today has around 22,000 employees, sales of € 5.2 billion and lo
.png)
ZEISS Group CyberSecurity News
October 31, 2025 07:00 AM
Our FOSS community drives open source adoption within the group: Zeiss' Anupam Chaturvedi
Zeiss, a German technology company known for its precision optics and optoelectronics. Founded in 1846, Zeiss, today operates across four...
September 19, 2025 07:00 AM
ZEISS: Building capacity at the right place, time, and market
How ZEISS India evolved from a research center to a unified GCC driving healthcare innovation.
August 21, 2025 07:00 AM
ZEISS announces CE mark for CIRRUS PathFinder AI tool with automated OCT assessment
PRNewswire/ -- ZEISS Medical Technology today announced CE mark approval for CIRRUS® PathFinder™, an innovative clinical support tool with...
August 14, 2025 07:00 AM
ZEISS’s Chief Transformation Officer on Why Cybersecurity Is a Board-Level Topic
The ZEISS Group, a leading manufacturer of optics technology, has embarked on a journey to strengthen their strategies for managing cyber...
July 15, 2025 07:00 AM
Cybersecurity jobs available right now: July 15, 2025
As a Cyber Security Analyst, you will help develop and implement security policies, standards, and training programs.
June 24, 2025 07:00 AM
Cybersecurity jobs available right now: June 24, 2025
Here are the worldwide cybersecurity job openings available as of June 24, 2025, including on-site, hybrid, and remote roles.
June 19, 2025 07:00 AM
Hexagon AB, Carl Zeiss AG, Keyence Corporation Lead the Industrial Metrology Industry: 2025 Company Evaluation Report Featuring 100+ Players
Dublin, June 19, 2025 (GLOBE NEWSWIRE) -- The "Industrial Metrology - Company Evaluation Report, 2025" has been added to...
April 30, 2025 02:00 AM
Optical Coherence Tomography Market Size & Share Report, 2032
The global optical coherence tomography market size is projected to grow from $1.46 billion in 2025 to $3.32 billion by 2032, exhibiting a CAGR of 12.4%
November 28, 2024 08:00 AM
Chinese companies poach staff from ASML and Zeiss with three times higher pay — employees needed to design and build chipmaking tools amid sanctions
Huawei approached employees at Germany's Zeiss SMT, which produces optics for ASML's lithography tools, offering up to triple their salaries.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
ZEISS Group CyberSecurity History Information
Official Website of ZEISS Group
The official website of ZEISS Group is http://www.zeiss.com/publisher.
ZEISS Group’s AI-Generated Cybersecurity Score
According to Rankiteo, ZEISS Group’s AI-generated cybersecurity score is 781, reflecting their Fair security posture.
How many security badges does ZEISS Group’ have ?
According to Rankiteo, ZEISS Group currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does ZEISS Group have SOC 2 Type 1 certification ?
According to Rankiteo, ZEISS Group is not certified under SOC 2 Type 1.
Does ZEISS Group have SOC 2 Type 2 certification ?
According to Rankiteo, ZEISS Group does not hold a SOC 2 Type 2 certification.
Does ZEISS Group comply with GDPR ?
According to Rankiteo, ZEISS Group is not listed as GDPR compliant.
Does ZEISS Group have PCI DSS certification ?
According to Rankiteo, ZEISS Group does not currently maintain PCI DSS compliance.
Does ZEISS Group comply with HIPAA ?
According to Rankiteo, ZEISS Group is not compliant with HIPAA regulations.
Does ZEISS Group have ISO 27001 certification ?
According to Rankiteo,ZEISS Group is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of ZEISS Group
ZEISS Group operates primarily in the Machinery Manufacturing industry.
Number of Employees at ZEISS Group
ZEISS Group employs approximately 23,632 people worldwide.
Subsidiaries Owned by ZEISS Group
ZEISS Group presently has no subsidiaries across any sectors.
ZEISS Group’s LinkedIn Followers
ZEISS Group’s official LinkedIn profile has approximately 392,138 followers.
NAICS Classification of ZEISS Group
ZEISS Group is classified under the NAICS code 333, which corresponds to Machinery Manufacturing.
ZEISS Group’s Presence on Crunchbase
No, ZEISS Group does not have a profile on Crunchbase.
ZEISS Group’s Presence on LinkedIn
Yes, ZEISS Group maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/zeiss.
Cybersecurity Incidents Involving ZEISS Group
As of November 27, 2025, Rankiteo reports that ZEISS Group has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
ZEISS Group has an estimated 8,049 peer or competitor companies worldwide.
ZEISS Group CyberSecurity History Information
How many cyber incidents has ZEISS Group faced ?
Total Incidents: According to Rankiteo, ZEISS Group has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at ZEISS Group ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=zeiss' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
