What is the official website of Zoho Books ?

The official website of Zoho Books is https://www.zoho.com/books/.

What is Zoho Books's cybersecurity risk score?

Zoho Books has an AI-generated cybersecurity risk score of 758 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Zoho Books experienced?

According to Rankiteo, Zoho Books currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Zoho Books been affected by any supply chain cyber incidents ?

According to Rankiteo, Zoho Books has been affected by a supply chain cyber incident involving Wondershare Technology, with the incident ID ZOHWON1776076134.

Does Zoho Books have SOC 2 Type 1 certification ?

According to Rankiteo, Zoho Books is not certified under SOC 2 Type 1.

Does Zoho Books have SOC 2 Type 2 certification ?

According to Rankiteo, Zoho Books does not hold a SOC 2 Type 2 certification.

Does Zoho Books comply with GDPR ?

According to Rankiteo, Zoho Books is not listed as GDPR compliant.

Does Zoho Books have PCI DSS certification ?

According to Rankiteo, Zoho Books does not currently maintain PCI DSS compliance.

Does Zoho Books comply with HIPAA ?

According to Rankiteo, Zoho Books is not compliant with HIPAA regulations.

Does Zoho Books have ISO 27001 certification ?

According to Rankiteo,Zoho Books is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Zoho Books operate in ?

Zoho Books operates primarily in the Software Development industry.

How many employees does Zoho Books have ?

Zoho Books employs approximately None employees people worldwide.

Does Zoho Books own any subsidiaries ?

Zoho Books presently has no subsidiaries across any sectors.

How many LinkedIn followers does Zoho Books have ?

Zoho Books's official LinkedIn profile has approximately 22,642 followers.

What is the NAICS classification code for Zoho Books ?

Zoho Books is classified under the NAICS code 5112, which corresponds to Software Publishers.

Does Zoho Books have a Crunchbase profile ?

No, Zoho Books does not have a profile on Crunchbase.

Does Zoho Books have a LinkedIn profile ?

Yes, Zoho Books maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/zoho-books.

How many cybersecurity incidents has Zoho Books experienced ?

As of June 14, 2026, Rankiteo reports that Zoho Books has experienced 3 cybersecurity incidents.

How many peer or competitor companies does Zoho Books have ?

Zoho Books has an estimated 30,071 peer or competitor companies worldwide.

What types of cybersecurity incidents has Zoho Books faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability and Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Zoho Books

Boost Score +25 with badge (5 left)

758

/1000

Fair

783

/1000

Fair

Zoho Books Vendor Cyber Rating & Cyber Score

zoho.com

Add Your Compliance Badge

Zoho Books is a comprehensive, cloud-based accounting platform that streamlines your day-to-day business accounting, simplifies reconciliation and automates business workflows. With an innovation-driven approach, Zoho Books offers an interface that is packed with insights and functionality without being difficult to use. Zoho Books has editions for all major countries in the world, mobile compatibility with iOS and Android, and 24X5 support. We're just an email away.

Zoho Books A.I CyberSecurity Scoring

Scoring History

Zoho Books

Zoho Books CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Zoho

Cyber Attack

100

12/2025

Wondershare Tec...

ZOHWON177607613...

Zoho

Cyber Attack

10/2025

ZOH1776249079

Zoho Books

Vulnerability

3/2025

ZOH411030525

Loading…

A.I.

Zoho Books Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Zoho Books

Incidents vs Software Development Industry Avg (This Year)

No incidents recorded for Zoho Books in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Zoho Books in 2026.

Incident Types Zoho Books vs Software Development Industry Avg (This Year)

No incidents recorded for Zoho Books in 2026.

Incident History - Zoho Books (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Zoho Books Subsidiaries

Zoho Books

Software Development

Website: https://www.zoho.com/books/

Company Size: 10,001+ employees

Zoho RecruitSoftware Development

ZohoSoftware Development

Zoho Middle East & North AfricaSoftware Development

Zoho CreatorSoftware Development

Zoho FranceSoftware Development

Loading…

Zoho Books Similar Companies

Bolt

cb bolt.eu

At Bolt, we're building a future where people don’t need to own personal cars to move around safely and conveniently. A future where people have the freedom to use transport on demand, choosing whatever vehicle's best for each occasion — be it a car, scooter, or e-bike. We're helping over 200 million customers move around in more than 600 cities globally while also supporting more than 4.5 million drivers and couriers to earn a living. The best bit? We're only just getting started. Read more at bolt.eu

PedidosYa

pedidosya.com

We’re the delivery market leader in Latin America. Our platform connects over 77.000 restaurants, supermarkets, pharmacies and stores with millions of users. Nowadays we operate in more than 500 cities in Latinamerica. And we are now over 3.400 employees. PedidosYa is available for iOS, Android and Windows Phone operating systems and downloads are now over 20 million.

Wolters Kluwer

cb wolterskluwer.com

Wolters Kluwer (EURONEXT: WKL) is a global leader in information, software solutions, and services for professionals in healthcare; tax and accounting; financial and corporate compliance; legal and regulatory; corporate performance and ESG. We help our customers make critical decisions every day by providing expert solutions that combine deep domain knowledge with technology. Wolters Kluwer reported 2024 annual revenues of €5.9 billion. The group serves customers in over 180 countries, maintains operations in over 40 countries, and employs approximately 21,000 people worldwide. The company is headquartered in Alphen aan den Rijn, the Netherlands. Equal Opportunity Employer To ensure we continue to drive innovation that enables us to develop products and services to best serve our customers, we cultivate a workplace culture rooted in mutual respect, bringing forward insights from a wide range of backgrounds, perspectives, and experiences. We are also committed to complying with laws requiring equal opportunity in hiring, promotion, and other employment decisions. All qualified applicants will receive consideration without regard to race, color, religion, sex (including pregnancy, gender identity, transgender status, and sexual orientation), national origin, disability, age, genetic information, veteran status, or any other characteristic protected by applicable law, and we do not tolerate discrimination on any of these bases. Beware of Recruitment Fraud! 🔒 Scammers may pose as Wolters Kluwer, offering fake job opportunities and requesting personal info or payments. Protect yourself: - Apply only via our secure Workday hub on our Careers page. - Our recruiters never ask for banking info or payments. - We don't use public email accounts (e.g., Hotmail, Yahoo, Gmail). Report suspected fraud: [email protected]. If you've made a payment, contact local authorities. Read more here - https://careers.wolterskluwer.com/en/recruitment-fraud-alert

Infor

infor.com

Infor is a global leader in business cloud software products for companies in industry specific markets. Infor builds complete industry suites in the cloud and efficiently deploys technology that puts the user experience first, leverages data science, and integrates easily into existing systems. Over 60,000 organizations worldwide rely on Infor to help overcome market disruptions and achieve business-wide digital transformation. Here are some key insights: • 60,000+ customers • 100+ offices • 1,700+ support experts • 2,000+ partners • 17,000+ employees • 175+ countries where customers are located • 15,000+ cloud customers • 40+ countries with Infor offices

Atlassian

atlassian.com

Atlassian powers the collaboration that helps teams accomplish what would otherwise be impossible alone. From space missions and motor racing to bugs in code and IT requests, no task is too large or too small with the right team, the right tools, and the right practices. Over 300,000 global companies and 80% of the Fortune 500 rely on Atlassian’s software, like Jira, Confluence, Loom, and Trello, to help their teams work better together and deliver quality results on time. With our 300,000+ customers and team of 10,000+ Atlassians, we are building the next generation of team collaboration and productivity software. We believe the power of teams has the potential to change the world — one that is more open, authentic, and inclusive.

GoTo Group

cb gotocompany.com

GoTo is the largest technology group in Indonesia, combining on-demand and financial services through the Gojek and GoTo Financial brands. It is the first platform in Southeast Asia to host these two essential use cases in one ecosystem, capturing a majority of Indonesian consumer household expenditure. GoTo’s mission is to “Empower Progress” by offering an unparalleled selection of goods and services through a comprehensive merchant and partner network and promoting financial inclusion through its leading payments and financial services business.

OpenText

opentext.com

OpenText is a leading Cloud and AI company that provides organizations around the world with a comprehensive suite of Business AI, Business Clouds, and Business Technology. We help organizations grow, innovate, become more efficient and effective, and do so in a trusted and secure way—through Information Management. OpenText (NASDAQ/TSX: OTEX), founded in 1991 in Waterloo, has a rich history of helping customers manage their most important asset—information. Originating from a collaboration to digitize the Oxford English Dictionary, OpenText has grown into a global leader in information management. With over 120,000 enterprise customers across 180 countries, OpenText supports 98 of the top 100 global companies. A wide breadth of offerings uniquely positions OpenText to help customers unlock the value of that information using Al, cloud, and security innovations. At OpenText, our culture is at the heart of everything we do—and today, that includes being proudly AI-first. We’re creating a workplace where everyone can thrive, with artificial intelligence integrated into how we work, solve problems, and innovate together. By fostering a collaborative and inclusive environment, we empower digital knowledge workers and drive forward-thinking solutions that shape the future of information management. We believe our success comes from the strength of our team—talent that AI can’t replace—and we’re committed to attracting and supporting those who bring unique insight, adaptability, and creativity. Because at OpenText, people aren’t just our greatest asset—they’re the reason we shine in an AI-powered world. Join us at OpenText and become part of a team where your talents and ideas are truly valued.

Shopify

cb shopify.com

Shopify is a leading global commerce company, providing trusted tools to start, grow, market, and manage a retail business of any size. Shopify makes commerce better for everyone with a platform and services that are engineered for reliability, while delivering a better shopping experience for consumers everywhere. Shopify powers millions of businesses in more than 175 countries and is trusted by brands such as Allbirds, Gymshark, PepsiCo, Staples, and many more. Find all our jobs here: www.shopify.com/careers

Epic

epic.com

Join us in our mission to help the world get well, help the world stay well, and help future generations be healthier. We hire smart and motivated people from all academic majors to code, test, and implement healthcare software that hundreds of millions of patients and doctors rely on to improve care and ultimately save lives around the globe. No healthcare experience is necessary; we'll train you to be an expert in health IT and we'll provide you with personal development classes to grow as a professional. Our expectations for you are high, but in healthcare so are the stakes.

Loading…

NEWS

Zoho Books CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 25, 2026 07:00 AM

Best 6 FREE Accounting Software For Small Businesses in 2026

We look at our top choice for FREE accounting software: Zoho Books. We take you through all the pros and cons, as well as alternative...

Read Article

February 10, 2026 08:00 AM

HubSpot vs Zoho Comparison 2026

HubSpot and Zoho are two leading CRM providers for small businesses. Here's how their systems stack up against each other.

Read Article

February 10, 2026 08:00 AM

Salesforce vs Zoho Comparison 2026

Salesforce CRM and Zoho CRM are excellent customer relationship management platforms for sales, marketing and communication.

Read Article

February 05, 2026 08:00 AM

10 Best Small Business CRM Software Of 2026

To find the best small business CRMs, we evaluated 41 providers and ranked 33 features and tools that have the biggest impact on SMBs.

Read Article

February 05, 2026 08:00 AM

10 Best CRM Software Of 2026

Forbes Advisor reviewed dozens of CRM software options on the market to help you find the best possible solution for your business.

Read Article

January 30, 2026 08:00 AM

HubSpot Vs. Zoho CRM (2026 Comparison)

If you're having a hard time choosing between HubSpot and Zoho CRM for your next customer relationship management software, this comparison...

Read Article

January 15, 2026 08:00 AM

Zoho Opens First UAE Data Centres for Local Cloud Hosting

Zoho Corporation expands with new data centres in Dubai and Abu Dhabi to support UAE data sovereignty and cloud adoption for business and...

Read Article

January 15, 2026 08:00 AM

Software Gaint Zoho Launches UAE Data Centres in AED 100M Investment

Zoho Corporation, an India-based enterprise software company headquartered in Chennai, has launched new data centres in Dubai and Abu Dhabi...

Read Article

January 15, 2026 08:00 AM

Zoho opens first UAE data centres, will host over 100 cloud services

The new facilities in Dubai and Abu Dhabi will host more than 100 cloud‑based solutions from Zoho's two main brands.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…