What is the official website of Zoho Directory ?

The official website of Zoho Directory is https://zurl.to/jylv.

What is Zoho Directory's cybersecurity risk score?

Zoho Directory has an AI-generated cybersecurity risk score of 752 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Zoho Directory experienced?

According to Rankiteo, Zoho Directory currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Zoho Directory been affected by any supply chain cyber incidents ?

According to Rankiteo, Zoho Directory has been affected by multiple supply chain cyber incidents. The affected supply chain sources and their corresponding incident IDs are: Gravity SMTP (Incident ID: RESZOHSMTMAIGRA1781785979) Wondershare Technology (Incident ID: ZOHWON1776076134)

Does Zoho Directory have SOC 2 Type 1 certification ?

According to Rankiteo, Zoho Directory is not certified under SOC 2 Type 1.

Does Zoho Directory have SOC 2 Type 2 certification ?

According to Rankiteo, Zoho Directory does not hold a SOC 2 Type 2 certification.

Does Zoho Directory comply with GDPR ?

According to Rankiteo, Zoho Directory is not listed as GDPR compliant.

Does Zoho Directory have PCI DSS certification ?

According to Rankiteo, Zoho Directory does not currently maintain PCI DSS compliance.

Does Zoho Directory comply with HIPAA ?

According to Rankiteo, Zoho Directory is not compliant with HIPAA regulations.

Does Zoho Directory have ISO 27001 certification ?

According to Rankiteo,Zoho Directory is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Zoho Directory operate in ?

Zoho Directory operates primarily in the IT Services and IT Consulting industry.

How many employees does Zoho Directory have ?

Zoho Directory employs approximately None employees people worldwide.

Does Zoho Directory own any subsidiaries ?

Zoho Directory presently has no subsidiaries across any sectors.

How many LinkedIn followers does Zoho Directory have ?

Zoho Directory's official LinkedIn profile has approximately 1,839 followers.

What is the NAICS classification code for Zoho Directory ?

Zoho Directory is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.

Does Zoho Directory have a Crunchbase profile ?

No, Zoho Directory does not have a profile on Crunchbase.

Does Zoho Directory have a LinkedIn profile ?

Yes, Zoho Directory maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/zoho-directory.

How many cybersecurity incidents has Zoho Directory experienced ?

As of June 21, 2026, Rankiteo reports that Zoho Directory has experienced 4 cybersecurity incidents.

How many peer or competitor companies does Zoho Directory have ?

Zoho Directory has an estimated 40,757 peer or competitor companies worldwide.

What types of cybersecurity incidents has Zoho Directory faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability and Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Zoho Directory

Boost Score +25 with badge (5 left)

752

/1000

Fair

777

/1000

Fair

Zoho Directory Vendor Cyber Rating & Cyber Score

zurl.to

Add Your Compliance Badge

Zoho Directory (ZD) is a complete workforce identity solution helping your business centralize the management of identities, apps, and devices in a single space. Through ZD, your organization can: • Access 500+ business applications seamlessly, including popular integrations like Dropbox, Slack, GitHub, and Trello, ensuring employees have a one-click app access experience with Single Sign-On (SSO). • Enforce Multi-factor Authentication (MFA) for secure logins. Employees can authenticate through QR codes, time-based OTPs, or go passwordless with biometric verification using Zoho OneAuth. • Sync with your current directories, such as Microsoft Active Directory (AD) and HRMS tools with Directory Stores. • Gain insights with customizable

Zoho Directory A.I CyberSecurity Scoring

Scoring History

Zoho Directory

Zoho Directory CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Zoho

Vulnerability

6/2026

Gravity SMTP

RESZOHSMTMAIGRA...

Zoho

Cyber Attack

100

12/2025

Wondershare Tec...

ZOHWON177607613...

Zoho

Cyber Attack

10/2025

ZOH1776249079

Zoho Directory

Vulnerability

3/2025

ZOH411030525

Loading…

A.I.

Zoho Directory Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Zoho Directory

Incidents vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for Zoho Directory in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Zoho Directory in 2026.

Incident Types Zoho Directory vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for Zoho Directory in 2026.

Incident History - Zoho Directory (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Zoho Directory Subsidiaries

Zoho Directory

IT Services and IT Consulting

Website: https://zurl.to/jylv

Company Size: 10,001+ employees

ZohoSoftware Development

Zoho OneIT Services and IT Consulting

Zoho CreatorSoftware Development

Zoho DeskIT Services and IT Consulting

Zoho Australia & New ZealandIT Services and IT Consulting

Loading…

Zoho Directory Similar Companies

ITC Infotech

itcinfotech.com

ITC Infotech is a global technology solution and services leader providing business-friendly solutions, that enable future-readiness for clients. We seamlessly bring together digital expertise, strong industry-specific alliances, and deep domain expertise from ITC Group businesses. Our solutions and services are focused on Banking and financial Services, Healthcare, Manufacturing, Consumer Goods, Travel and Hospitality. ITC Infotech is a wholly-owned subsidiary of ITC Ltd, one of India’s most admired companies.

FIS

fisglobal.com

Unlocking financial technology. Bringing the world’s money into harmony. At FIS, we advance the way the world pays, banks, and invests. With decades of expertise, we provide financial technology solutions to financial institutions, businesses, and developers. Headquartered in Jacksonville, Florida, we’re a proud member of the Fortune 500® and the Standard & Poor’s 500® Index. Let's innovate together.

LTIMindtree

ltimindtree.com

LTIMindtree is a global technology consulting and digital solutions company that partners with enterprises across industries to reimagine business models, accelerate innovation, and drive AI-centric growth. Trusted by more than 700 clients worldwide, we use advanced technologies to enable operational excellence, elevated customer experiences, and long-term value creation. With a workforce of more than 86,000 talented and entrepreneurial professionals across over 40 countries, LTIMindtree — a Larsen & Toubro Group company — is dedicated to solving complex business challenges and delivering transformation at scale. LTIMindtree is proud to be an equal opportunity employer. We are committed to providing equal employment opportunities regardless of race, ethnicity, nationality, gender, gender identity, gender expression, language, age, sexual orientation, religion, marital status, veteran status, socio-economic status, disability, or any other characteristic protected by applicable law. Please note that neither LTIMindtree nor any of its authorized recruitment agencies/partners charge candidates any registration fees or other fees for appearing in interviews or securing employment/internships. Candidates are solely responsible for verifying the credentials of any agency or consultant claiming to work with LTIMindtree for recruitment purposes. Please note that anyone relying on representations made by fraudulent employment agencies/consultant does so at their own risk. LTIMindtree disclaims any liability for loss or damage suffered as a result of such actions. For more info, please visit www.ltimindtree.com.

AeC

aec.com.br

A AeC é apontada consistentemente como a líder brasileira na entrega de soluções de experiência do cliente e gestão de processos terceirizados. Servindo as principais marcas do mercado nacional, conquistou nos três últimos anos a posição de Empresa do Ano de BPO pela conceituada Frost and Sullivan. Líder também nas práticas de ESG, recebe há oito anos consecutivos o título de Melhor Empresa de Serviços pelo Prêmio Época Negócios 360°. Com um olhar inovador, o seu diferencial está no modo como integra o cuidado com as pessoas e aplica tecnologia de ponta em seus processos, como inteligência artificial, robotic process automation, serviços em nuvem e ferramentas de analytics e segurança. Atualmente, a AeC conta com mais de 52 mil colaboradores em 20 unidades distribuídas por sete estados do país. É certificada pelo instituto Great Place to Work como uma das melhores empresas para se trabalhar. Com uma combinação única de Tecnologia e Calor Humano, a mais de 30 anos de história conquistando, apenas no último ano, 27 importantes prêmios e reconhecimentos do mercado. Venha evoluir conosco! Entre em contato com a gente através do e-mail: [email protected]

Asurion

cb asurion.com

As the world’s leading tech care company, Asurion eliminates the fears and frustrations associated with technology, to ensure our 300 million customers get the most out of their devices, appliances and connections. We provide insurance, repair, replacement, installation and 24/7 support for everything from cellphones to laptops and household appliances. Our experts are available online, on the phone, at one of our more than 800 stores, or can even come to you.

AlmavivA Experience

almavivaexperience.com.br

Líder em transformação digital nos mercados de Customer Experience e Debt Collection na América Latina. Combinamos tecnologia, inteligência e excelência operacional para entregar soluções completas que antecipam as necessidades dos nossos Clientes. São mais de 530 milhões de interações anuais, metade em canais digitais, para um portfólio de 60+ clientes. Siga-nos e acompanhe como transformamos experiências em resultados.

VOIS

vodafone.com

VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation. As the largest shared services organisation in the global telco industry, our portfolio of next-generation solutions and services are designed in partnership with customers across Vodafone Group, local markets, and partner markets to simplify and drive growth. We are pioneering a new Partnership model for the Telco industry, where the sharing of ideas, innovation, platforms and services will unlock opportunities for our people and value for our customers. With our strategic partner Accenture, we work alongside our Vodafone customers, other Telco and tech companies to drive transformation, meet the challenges of our industry and ensure we stay relevant and resilient. This partnership is a unique, industry-first model which brings together the best of in-house and 3rd party capability. We deliver value and results at scale by leveraging technology, data and our talented international team of 30K professionals in the following services: Technology, Business, B2B, Corporate Services, Customer Care. Our commercial model creates clear, benchmarked and competitively-priced services so that we can offer guaranteed outcomes for customers with flexibility and optionality. Bringing together our combined strengths with our strategic partner Accenture our strategy is to: Commercialise: Create cost transparency and foster trust and growth for our customers Re-platform: To simplify, streamline and scale our business Extend beyond our borders: deepening our relationships, growing our services and expanding our customer base across new customers & new geographies We work with customers across 28 countries from 10 VOIS locations: Albania, Egypt, Hungary, India, Romania, Spain, Turkey, UK, Germany, Ireland, and with a network of teams in Czech Republic, Italy, Greece, and Portugal.

CenturyLink

centurylink.com

CenturyLink (NYSE: CTL) is a technology leader delivering hybrid networking, cloud connectivity, and security solutions to customers around the world. Through its extensive global fiber network, CenturyLink provides secure and reliable services to meet the growing digital demands of businesses and consumers. CenturyLink strives to be the trusted connection to the networked world and is focused on delivering technology that enhances the customer experience. Learn more at http://news.centurylink.com/.

ASGN Incorporated

asgn.com

ASGN Incorporated (NYSE: ASGN) is a leading provider of IT services and solutions across the commercial and government sectors. ASGN helps corporate enterprises and government organizations develop, implement and operate critical IT and business solutions through its integrated offerings. For more information, please visit asgn.com. *Please note: Our company does not use the Telegram app, Google Hangouts, or communicate using non-corporate email account addresses. For more about what we do and do not ask for in the hiring process, please visit: https://www.asgn.com/fraud-alert

Loading…

NEWS

Zoho Directory CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

February 27, 2026 08:00 AM

ScarCruft Uses Zoho WorkDrive and USB Malware to Breach Air-Gapped Networks

The North Korean threat actor known as ScarCruft has been attributed to a fresh set of tools, including a backdoor that uses Zoho WorkDrive...

Read Article

February 27, 2026 08:00 AM

North Korean APT37 Hackers Leverages Zoho WorkDrive to Infect Air‑Gapped Systems

APT37 launches Ruby Jumper malware to breach air-gapped systems, showing North Korean hackers can bypass physical security.

Read Article

February 09, 2026 08:00 AM

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers

Microsoft links SolarWinds WHD exploits to RCE, lateral movement, and domain compromise in multi-stage attacks.

Read Article

January 22, 2026 08:00 AM

Zoho Workplace vs Google Workspace Comparison 2026

This Zoho Workplace vs Google Workspace comparison sheds light on the differences in pricing, support and integrations between the services.

Read Article

November 25, 2025 08:00 AM

Zoho One Introduces a Unified & Intelligent Platform Experience for Modern Workplaces

Zoho Corporation today announced numerous enhancements to Zoho One, its all-in-one business software platform. The latest update introduces...

Read Article

November 19, 2025 08:00 AM

Zoho expands AI, security features in bid to streamline enterprise workflows

Zoho Corporation is stepping up its bid to position itself as an alternative to sprawling enterprise software stacks.

Read Article

November 18, 2025 08:00 AM

Zoho One Update Strengthens Security and Streamlines App Integration

Zoho One's latest update adds stronger security, native integrations, and streamlined workflows, offering small businesses a more unified...

Read Article

September 18, 2025 07:00 AM

The best identity and access management tools: 5 detailed enterprise IAM solutions

Access and identity management is something that SMEs can no longer afford to overlook. Ensuring that each user has the necessary...

Read Article

March 05, 2025 08:00 AM

Zoho ADSelfService Plus Flaw Allows Hackers to Gain Unauthorized Access

A critical security flaw in Zoho's widely used identity management solution, ADSelfService Plus, has been patched after researchers...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-56355

SUMMARY

GNU Savannah Administration Savane through 3.17 uses untrusted data as part of authorization.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 3.7)

cvss3

Base Score: 3.7

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Impact Score

1.4

Exploitability

2.2

REFERENCES

CVE-2026-56347

SUMMARY

AVideo TopMenu plugin through version 26.0 contains a stored cross-site scripting vulnerability in menu item rendering due to missing output encoding of icon classes, URLs, and text labels. Attackers can inject malicious JavaScript through unescaped menu item fields that execute for all site visitors, potentially stealing session cookies or performing unauthorized actions.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.1)

cvss3

Base Score: 6.1

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

cvss4

Base Score: 5.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.7

Exploitability

2.8

REFERENCES

CVE-2026-56346

SUMMARY

AVideo through version 25.0 contains an authentication bypass vulnerability in the decryptMessage.json.php endpoint that allows unauthenticated users to decrypt PGP messages. Remote attackers can submit private keys, ciphertext, and passphrases to perform server-side decryption without credentials, exposing key material to logs and enabling resource exhaustion attacks.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.5)

cvss3

Base Score: 6.5

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

cvss4

Base Score: 6.9

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

2.5

Exploitability

3.9

REFERENCES

CVE-2026-56345

SUMMARY

AVideo through 29.0 contains an authorization bypass vulnerability in the Meet plugin's uploadRecordedVideo.json.php endpoint that derives the target users_id from the uploaded filename without verification. An attacker with knowledge of the Meet shared secret can craft a malicious file upload with a filename containing an arbitrary users_id to invoke passwordless User->login() and establish an authenticated session as any user including admin. Attackers can obtain the Meet shared secret through path-traversal vulnerabilities or timing attacks against checkToken.json.php, then POST a crafted file to uploadRecordedVideo.json.php with a filename like '1-anything.mp4' to hijack admin sessions and gain full account takeover.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 8.1)

cvss3

Base Score: 8.1

Complexity: HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.2

Complexity: HIGH

CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.2

REFERENCES

CVE-2026-56342

SUMMARY

AVideo through version 27.0 contains a server-side request forgery vulnerability in plugin/Live/test.php that allows authenticated administrators to read arbitrary URLs via the statsURL parameter, which lacks isSSRFSafeURL() validation and accepts requests to private IP ranges and cloud metadata endpoints. Attackers can exploit this by crafting requests to internal services, cloud metadata endpoints like 169.254.169.254, and localhost to retrieve sensitive information including IAM credentials, internal service responses, and network configuration details.

Published

Date2026-06-20

Updated

Date2026-06-20

RISK INFORMATION (Score: 6.8)

cvss3

Base Score: 6.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N

cvss4

Base Score: 6.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

2.3

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…