What is the official website of Zoho Notebook ?

The official website of Zoho Notebook is https://www.zoho.com/notebook/.

What is Zoho Notebook's cybersecurity risk score?

Zoho Notebook has an AI-generated cybersecurity risk score of 752 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Zoho Notebook experienced?

According to Rankiteo, Zoho Notebook currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Zoho Notebook been affected by any supply chain cyber incidents ?

According to Rankiteo, Zoho Notebook has been affected by a supply chain cyber incident involving Wondershare Technology, with the incident ID ZOHWON1776076134.

Does Zoho Notebook have SOC 2 Type 1 certification ?

According to Rankiteo, Zoho Notebook is not certified under SOC 2 Type 1.

Does Zoho Notebook have SOC 2 Type 2 certification ?

According to Rankiteo, Zoho Notebook does not hold a SOC 2 Type 2 certification.

Does Zoho Notebook comply with GDPR ?

According to Rankiteo, Zoho Notebook is not listed as GDPR compliant.

Does Zoho Notebook have PCI DSS certification ?

According to Rankiteo, Zoho Notebook does not currently maintain PCI DSS compliance.

Does Zoho Notebook comply with HIPAA ?

According to Rankiteo, Zoho Notebook is not compliant with HIPAA regulations.

Does Zoho Notebook have ISO 27001 certification ?

According to Rankiteo,Zoho Notebook is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Zoho Notebook operate in ?

Zoho Notebook operates primarily in the IT Services and IT Consulting industry.

How many employees does Zoho Notebook have ?

Zoho Notebook employs approximately None employees people worldwide.

Does Zoho Notebook own any subsidiaries ?

Zoho Notebook presently has no subsidiaries across any sectors.

How many LinkedIn followers does Zoho Notebook have ?

Zoho Notebook's official LinkedIn profile has approximately 1,243 followers.

What is the NAICS classification code for Zoho Notebook ?

Zoho Notebook is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.

Does Zoho Notebook have a Crunchbase profile ?

No, Zoho Notebook does not have a profile on Crunchbase.

Does Zoho Notebook have a LinkedIn profile ?

Yes, Zoho Notebook maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/zoho-notebook-official.

How many cybersecurity incidents has Zoho Notebook experienced ?

As of June 14, 2026, Rankiteo reports that Zoho Notebook has experienced 3 cybersecurity incidents.

How many peer or competitor companies does Zoho Notebook have ?

Zoho Notebook has an estimated 40,681 peer or competitor companies worldwide.

What types of cybersecurity incidents has Zoho Notebook faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Vulnerability and Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

Zoho Notebook

Boost Score +25 with badge (5 left)

752

/1000

Fair

777

/1000

Fair

Zoho Notebook Vendor Cyber Rating & Cyber Score

zoho.com

Add Your Compliance Badge

Welcome to Zoho Notebook, the elegantly designed and intuitive productivity app that revolutionizes the way you take notes. Experience the seamless harmony of creativity and functionality as you bring your ideas to life through note cards, file cards, to-do cards, sketch cards, audio and video cards, and more. Notebook's seamless syncing ensures that your note cards are effortlessly accessible across devices, empowering you to stay productive on the go. Join the community of note-takers who rely on Notebook's exquisite simplicity and extraordinary functionality to streamline their workflow and achieve their goals.

Zoho Notebook A.I CyberSecurity Scoring

Scoring History

Zoho Notebook

Zoho Notebook CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

Zoho

Cyber Attack

100

12/2025

Wondershare Tec...

ZOHWON177607613...

Zoho

Cyber Attack

10/2025

ZOH1776249079

Zoho Notebook

Vulnerability

3/2025

ZOH411030525

Loading…

A.I.

Zoho Notebook Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for Zoho Notebook

Incidents vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for Zoho Notebook in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Zoho Notebook in 2026.

Incident Types Zoho Notebook vs IT Services and IT Consulting Industry Avg (This Year)

No incidents recorded for Zoho Notebook in 2026.

Incident History - Zoho Notebook (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Zoho Notebook Subsidiaries

Zoho Notebook

IT Services and IT Consulting

Website: https://www.zoho.com/notebook/

Company Size: 10,001+ employees

ZohoSoftware Development

Zoho RecruitSoftware Development

Zoho CreatorSoftware Development

Zoho FranceSoftware Development

Zoho PayrollSoftware Development

Zoho RetailIQTechnology, Information and Media

Loading…

Zoho Notebook Similar Companies

FPT Software

cb fptsoftware.com

FPT Software, a subsidiary of FPT Corporation, is a global technology and IT services provider headquartered in Vietnam, with USD 1.22 billion in revenue (2024) and over 33,000 employees in 30 countries. Embracing an AI-first approach, FPT Software enables breakthrough speed, scalability and quality through AI-powered services and solutions and an AI-augmented workforce. It has partnered with over 1,100 clients worldwide, more than 130 of which are Fortune Global 500 companies in Aviation, Automotive, Banking, Financial Services and Insurance, Healthcare, Logistics, Manufacturing, Utilities, and more. For more information, please visit https://fptsoftware.com/.

Tech Mahindra

techmahindra.com

Tech Mahindra offers technology consulting and digital solutions to global enterprises across industries, enabling transformative scale at unparalleled speed. With 149k+ professionals across 90+ countries helping 1100+ clients, TechM provides a full spectrum of services including consulting, information technology, enterprise applications, business process services, engineering services, network services, customer experience & design services, AI & analytics, and cloud & infrastructure services. It is the first Indian company in the world to have been awarded the Sustainable Markets Initiative’s Terra Carta Seal, in recognition of actively leading the charge to create a climate and nature-positive future. Tech Mahindra (NSE: TECHM) is part of the Mahindra Group, founded in 1945, one of the largest and most admired multinational federations of companies. Visit www.techmahindra.com to #ScaleAtSpeed

Mastercard

mastercard.com

Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we’re building a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential.

LTIMindtree

ltimindtree.com

LTIMindtree is a global technology consulting and digital solutions company that partners with enterprises across industries to reimagine business models, accelerate innovation, and drive AI-centric growth. Trusted by more than 700 clients worldwide, we use advanced technologies to enable operational excellence, elevated customer experiences, and long-term value creation. With a workforce of more than 86,000 talented and entrepreneurial professionals across over 40 countries, LTIMindtree — a Larsen & Toubro Group company — is dedicated to solving complex business challenges and delivering transformation at scale. LTIMindtree is proud to be an equal opportunity employer. We are committed to providing equal employment opportunities regardless of race, ethnicity, nationality, gender, gender identity, gender expression, language, age, sexual orientation, religion, marital status, veteran status, socio-economic status, disability, or any other characteristic protected by applicable law. Please note that neither LTIMindtree nor any of its authorized recruitment agencies/partners charge candidates any registration fees or other fees for appearing in interviews or securing employment/internships. Candidates are solely responsible for verifying the credentials of any agency or consultant claiming to work with LTIMindtree for recruitment purposes. Please note that anyone relying on representations made by fraudulent employment agencies/consultant does so at their own risk. LTIMindtree disclaims any liability for loss or damage suffered as a result of such actions. For more info, please visit www.ltimindtree.com.

Atos

cb atos.net

Atos Group is a global leader in digital transformation with c. 67,000 employees and annual revenue of c. €10 billion, operating in 61 countries under two brands — Atos for services and Eviden for products. European number one in cybersecurity, cloud and high performance computing, Atos Group is committed to a secure and decarbonized future and provides tailored AI-powered, end-to-end solutions for all industries. Atos Group is the brand under which Atos SE (Societas Europaea) operates. Atos SE is listed on Euronext Paris. The purpose of Atos Group is to help design the future of the information space. Its expertise and services support the development of knowledge, education and research in a multicultural approach and contribute to the development of scientific and technological excellence. Across the world, the Group enables its customers and employees, and members of societies at large to live, work and develop sustainably, in a safe and secure information space.

Dimension Data

cb dimensiondata.com

Dimension Data is a leading African born technology provider operating in the Middle East and Africa, offering a portfolio of services including systems integration, managed services infrastructure, cloud solutions, business applications, customer experience, and intelligent security solutions. We provide innovative solutions that optimise today’s evolving technology environments, enabling clients to leverage data in a digital age. Founded in 1983, and headquartered in Johannesburg, Dimension Data is a proud member of the NTT Group, one of the world’s leading information communication technology (ICT) companies, comprising a group of global technology companies. In 2020, Dimension Data completed its transition to operate as one entity consolidating all its subsidiaries under a single Dimension Data brand employing over 10 000 employees across 15 countries. We continue to invest heavily in innovation bringing together the world’s best technologies, from consulting, technical and support services to a fully managed service. Dimension Data is currently a level 2 BBBEE contributor after successfully concluding a significant BBBEE transaction in 2019. Dimension Data will continue to implement strategies to ensure it contributes meaningfully to transformation towards an inclusive society.

Kyndryl

cb kyndryl.com

We have the world’s best talent that design, run, and manage the most advanced and reliable technology infrastructure each day. Together, we think holistically about the health of these vital technology ecosystems. We are a focused, independent company that builds on our foundation of excellence by creating systems in new ways. Bringing in the right partners, investing in our business, and working side-by-side with our customers to unlock potential. We're raising the bar. Our experience speaks for itself: We have tens of thousands of highly skilled employees around the world serving most of the Fortune 100 companies. But our purpose is what drives us: Advancing the vital systems that power human progress. Because when a digital ecosystem is healthy, it can more readily adapt and support continuous growth and that opens up a world of possibility for everyone. Together, we are the heart of progress.

CGI

cgi.com

Insights you can act on. Founded in 1976, CGI is among the largest IT and business consulting services firms in the world. We are insights-driven and outcomes-focused to help accelerate returns on your investments. Across hundreds of locations worldwide, we provide comprehensive, scalable and sustainable IT and business consulting services that are informed globally and delivered locally. We value your opinions and welcome your comments and questions on our posts here on LinkedIn. Please keep a polite, professional and constructive tone. We remove comments containing objectionable language and derogatory views. We do not allow content that is unrelated to the subject, and we remove discriminatory and racist comments as well as spam and advertising. Note that content on this page contains general information regarding CGI’s services and initiatives and should not be considered direct business advice. To engage in a discussion with one of our experts, please make a request through https://www.cgi.com/en/contact-us

Capita

capita.com

Capita is an outsourcer, helping clients across the public and private sectors run complex business processes more efficiently, creating better consumer experiences. Operating across eight countries, Capita’s 34,000 colleagues support primarily UK and European clients with people-based services underpinned by market-leading technology. We’re a vital support service for our clients, enabling the everyday interactions that we expect to run seamlessly, to run seamlessly. A publicly listed business with adjusted revenue of £2.4bn, Capita’s areas of focus are Central Government, Local Public Service, Defence, Learning, Fire & Security, Contact Centres and Pensions Solutions. We’re embracing change to respond to the ever-changing needs of society, creating better outcomes for all our stakeholders.

Loading…

NEWS

Zoho Notebook CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

November 27, 2025 08:00 AM

Best note taking app for iPad of 2025

We list the best note taking apps for iPad, to make it simple and easy to note-take grocery lists, creative ideas and personal journaling on...

Read Article

November 05, 2025 08:00 AM

Zoho adds AI to Notebook student edition and powers up application -

Zoho has announced enhancements to Zoho Notebook. Zoho Notebook is an all-in-one productivity tool that enables students, employees,...

Read Article

November 05, 2025 08:00 AM

Zoho brings AI features with support for Hindi, English, Bengali and 77 other global and Indian languages...

Zoho has launched new AI-powered features in Zoho Notebook, including multilingual voice search and translation, supporting 80 languages...

Read Article

November 04, 2025 08:00 AM

Zoho Notebook AI app brings smart note-taking to students and teams

Tech News News: Zoho Notebook unveils advanced AI features, including an intelligent Q&A assistant, meeting transcription,...

Read Article

November 04, 2025 08:00 AM

Zoho Notebook gets smarter with new AI features, now free for students too

Zoho has upgraded its Notebook app with powerful AI tools like voice transcription, smart summaries, multilingual translation,...

Read Article

September 04, 2025 07:00 AM

Zoho doubles down on US Startups with application updates -

Zoho builds on 40% yoy small business customer growth and announces expansion and feature updates for several SMB tools.

Read Article

July 22, 2025 07:00 AM

The best note-taking apps for iPad of 2026: Expert tested

We took copious notes while testing the best note-taking apps available on iPad--feel free to sneak a peek at our answer key.

Read Article

May 11, 2025 07:00 AM

Best Note-Taking App Options in 2026: Top Paid and Free Tools

Evernote is our top pick out of the eight note-taking apps on our list. It provides many useful features, including the ability to search for notes and...

Read Article

May 11, 2025 07:00 AM

5 Best Note-Taking Apps for Windows in 2026: Paid & Free Note-Taking Apps

Find the best note-taking apps for Windows in our article, ensuring fast and reliable performance on your PC.

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12175

SUMMARY

A vulnerability was detected in CodeAstro Student Attendance Management System 1.0. Impacted is an unknown function of the file /attendance-php/Admin/createStudents.php. Performing a manipulation of the argument admissionNumber results in sql injection. Remote exploitation of the attack is possible. The exploit is now public and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 4.7)

cvss2

Base Score: 5.8

Complexity: LOW

AV:N/AC:L/Au:M/C:P/I:P/A:P

cvss3

Base Score: 4.7

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.0

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.2

REFERENCES

CVE-2026-12174

SUMMARY

A security vulnerability has been detected in D-Link DCS-935L 1.10.01. This issue affects the function snprintf of the file /web/cgi-bin/greece/rhea of the component HTTP Handler. Such manipulation of the argument data leads to format string. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

CVE-2026-12183

SUMMARY

Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerability (CWE-287) in the system configuration module. The /php/ajax-login.php endpoint returns userid=1 (administrator) in response to any HTTP POST request that supplies arbitrary credentials (e.g., action=dologin&login=<any_value>&pwd=<any_value>), and subsequent privileged endpoints under /php/ajax-main.php and /modules/* do not validate a server-side session. A remote unauthenticated attacker can invoke any administrative action exposed by the configuration module, including reading and modifying user rules, fuel tank gauges, fuel dispensers, relays, cash registers, bank terminals, fuel cards, price and customer displays, cash collection, and pricing rules.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 9.8)

cvss3

Base Score: 9.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 9.3

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

3.9

REFERENCES

CVE-2026-6428

SUMMARY

SQL Injection in reports/catalogue_out.pl in Koha Community Koha through 22.11.37, 23.x, 24.x before 24.11.16, 25.05.x before 25.05.11, 25.11.x before 25.11.05, 26.05.x before 26.05.01, and 26.11.x before 26.11.00 allows an authenticated staff user with the Reports module flag to read arbitrary data from the Koha application database via the Filter URL parameter when the Criteria parameter matches /branchcode/. The vulnerable sink in sub calculate concatenates the unmodified Filter request parameter directly into a LIKE clause of the auxiliary $strsth2 statement and executes it via DBI without bound parameters: my $f = @$filters[0]; $f =~ s/\*/%/g; $strsth2 .= " AND $column LIKE '$f' "; This enables error-based SQL injection (e.g., via EXTRACTVALUE) and full read access to sensitive tables including borrowers (password hashes, 2FA secrets, PII), borrower_password_recovery, api_keys, and sessions. Proof of concept (error-based, single request): GET /cgi-bin/koha/reports/catalogue_out.pl?do_it=1&output=screen&Limit=10&Criteria=branchcode&Filter=x'+AND+EXTRACTVALUE(1,CONCAT(0x7e,VERSION(),0x7c,USER(),0x7c,DATABASE(),0x7e))--+- Cookie: CGISESSID=<LIBRARIAN_SESSION> The response body contains the DBI exception leaking the MariaDB version, database user, client IP, and database name, after which arbitrary data can be paged out using LIMIT n,1 / SUBSTRING(...). The vulnerable sink was introduced in commit 6bb77ae3e4 (2008-07-09); CVE-2015-4633 patched the same class in sibling files but did not generalise the fix to reports/catalogue_out.pl. Fixed in Koha 22.11.38, 24.11.16, 25.05.11, 25.11.05, 26.05.01, and 26.11.00 by replacing the raw concatenation with a parameterised placeholder.

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.6)

cvss2

Base Score: 7.5

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:N/A:P

cvss3

Base Score: 7.6

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

cvss4

Base Score: 5.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:C/RE:X/U:Amber

Impact Score

4.7

Exploitability

2.8

REFERENCES

CVE-2026-5513

SUMMARY

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bookly-customer-full-name' cookie in versions up to, and including, 27.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. Exploitation requires 'Remember personal information in cookies' setting to be enabled (disabled by default).

Published

Date2026-06-13

Updated

Date2026-06-13

RISK INFORMATION (Score: 7.2)

cvss3

Base Score: 7.2

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Impact Score

2.7

Exploitability

3.9

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…