Bayer
Company Details
Linkedin ID:
bayer
Website:
Employees number:
87,546
Number of followers:
6,411,032
NAICS:
325
Industry Type:
Homepage:
bayer.com
IP Addresses:
182
Company ID:
BAY_3113266
Scan Status:
Completed
Bayer Company CyberSecurity Posture
bayer.com
Bayer is a global enterprise with core competencies in the life science fields of healthcare and nutrition. We design our products and services to serve the most essential human needs of health and nutrition. At the same time, we strive to address some of the world’s biggest challenges presented by a growing and aging global population. At Bayer, we’re committed to driving sustainable development and generate a positive impact with our businesses. Through the power of science, we’re pioneering new possibilities that advance life for all of us. That means reimagining how we care for ourselves and one another by empowering everyday health, improving approaches to patient care, and finding better ways to nourish our communities around the world. Data Privacy Statement & Imprint: https://www.bayer.com/en/glob-li-bayer-en-dps-imprint
Bayer A.I CyberSecurity Scoring
Bayer Risk Score (AI oriented)Between 750 and 799
Bayer
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Bayer Global Score (TPRM)XXXX
Bayer
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Bayer Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Bayer (via third-party business associates)
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: In August 2025, **12 data breaches** linked to **third-party vendors (business associates)**—including AI developers and cloud service providers—compromised the sensitive patient data of **88,141 individuals** under Bayer’s healthcare ecosystem. The breaches exploited fragmented compliance practices, semantic incompatibilities in IT infrastructure, and weak governance across cross-border data-sharing frameworks (e.g., HIPAA, GDPR). The exposed data likely included **electronic health records (EHRs), diagnostic imaging (e.g., radiology reports), and AI-processed patient analytics**, heightening risks of identity theft, fraud, or unauthorized clinical use. The incident underscored vulnerabilities introduced by **external AI tools and cloud storage systems**, where disparate vendors lacked unified security protocols. While no direct harm (e.g., altered treatments) was confirmed, the breach eroded **patient trust**, triggered **regulatory scrutiny**, and exposed Bayer to potential **legal penalties** under HIPAA/GDPR for inadequate third-party oversight. The attack surface expanded due to AI-driven data volume growth and interoperability gaps between healthcare providers and tech partners.
Bayer Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Bayer
Incidents vs Chemical Manufacturing Industry Average (This Year)
Bayer has 0.0% fewer incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs All-Companies Average (This Year)
Bayer has 29.87% more incidents than the average of all companies with at least one recorded incident.
Incident Types Bayer vs Chemical Manufacturing Industry Avg (This Year)
Bayer reported 1 incidents this year: 0 cyber attacks, 0 ransomware, 0 vulnerabilities, 1 data breaches, compared to industry peers with at least 1 incident.
Incident History — Bayer (X = Date, Y = Severity)
Bayer cyber incidents detection timeline including parent company and subsidiaries
Bayer Company Subsidiaries
Bayer is a global enterprise with core competencies in the life science fields of healthcare and nutrition. We design our products and services to serve the most essential human needs of health and nutrition. At the same time, we strive to address some of the world’s biggest challenges presented by a growing and aging global population. At Bayer, we’re committed to driving sustainable development and generate a positive impact with our businesses. Through the power of science, we’re pioneering new possibilities that advance life for all of us. That means reimagining how we care for ourselves and one another by empowering everyday health, improving approaches to patient care, and finding better ways to nourish our communities around the world. Data Privacy Statement & Imprint: https://www.bayer.com/en/glob-li-bayer-en-dps-imprint
Loading...
Bayer Similar Companies
We’re one of the world’s leading materials science companies, serving customers in high-growth markets such as packaging, infrastructure, mobility and consumer applications. Our global breadth, asset integration and scale, focused innovation, leading business positions and commitment to sustainabi
Air Liquide is a world leader in gases, technologies and services for industry and healthcare. Present in 72 countries with 67,800 employees, the Group serves more than 4 million customers and patients. Oxygen, nitrogen and hydrogen are essential small molecules for life, matter and energy. They emb
Ecolab
A trusted partner for millions of customers, Ecolab (NYSE:ECL) is a global sustainability leader offering water, hygiene and infection prevention solutions and services that protect people and the resources vital to life. Building on more than a century of innovation, Ecolab has annual sales of $16
Givaudan
Givaudan is a global leader in Fragrance & Beauty and Taste & Wellbeing. We celebrate the beauty of human experience by creating for happier, healthier lives with love for nature. Together with our customers we deliver food experiences, craft inspired fragrances, and develop beauty and wellbeing sol
LyondellBasell
We are LyondellBasell (NYSE: LYB) – a leader in the global chemical industry creating solutions for everyday sustainable living. Through advanced technology and focused investments, we are enabling a circular and low carbon economy. Across all we do, we aim to unlock value for our customers, investo
We are a global manufacturer of raw materials and a producer of energy used in everyday life. From medicines to mobile phones, agriculture to automotive, our products enhance standards of living for everyone around the world. We understand the challenge the world is facing, and we are working hard
dsm-firmenich
We are dsm-firmenich – innovators in nutrition, health, and beauty. We bring progress to life by combining the essential, the desirable, and the sustainable. From our master perfumers and flavorists to our expert nutritionists and scientists, our trailblazing teams work closely with customers, sup
Evonik is one of the world’s leading specialty chemicals companies. While we don’t produce electric cars, aircraft, medications or 3D printers, Evonik is part and parcel of these and many other end products. That’s because we contribute the small things that make a big difference. We make electric c
Eastman
Founded in 1920, Eastman is a global specialty materials company that produces a broad range of products found in items people use every day. With the purpose of enhancing the quality of life in a material way, Eastman works with customers to deliver innovative products and solutions while maintaini
.png)
Bayer CyberSecurity News
November 25, 2025 07:48 AM
Manchester City vs Bayer Leverkusen streaming guide: Champions League Coverage, TV Guide and free streams
Manchester City host Bayer Leverkusen on 25 November 2025 in a key Champions League match. Find out how to watch Man City vs Leverkusen live...
November 25, 2025 12:03 AM
Full Fed. Circ. Rejects Bayer Petition In Xarelto Patent Case
The full Federal Circuit on Monday declined a petition from German pharmaceutical giant Bayer asking the appeals court to take a look at...
November 17, 2025 12:00 PM
Signal Advance (OTC: SIGL) Analog Guard Enables Quantum-Resistant Encryption
Analog Guard uses physics-based encryption called quantum safe by design, with AI resistance tests and Q1 2026 validation of its quantum...
November 12, 2025 08:00 AM
Rockwell Automation (NYSE: ROK) unveils SecureOT aligned to NIS2 and IEC 62443
SecureOT bundles an OT-focused platform, professional services and 24/7 managed monitoring via OT SOC/NOC, adding asset visibility and...
November 03, 2025 08:00 AM
Qualys (NASDAQ: QLYS) appoints Bradford L. Brooks to board; former Censys and OneLogin CEO
Qualys appoints Bradford L. Brooks to the Board and nominating & governance committee. Former Censys and OneLogin CEO brings SaaS and...
October 28, 2025 07:00 AM
Jefferson Wells (NYSE: MAN) 2025 CFO Survey: 96% engage AI; 73% in cyber strategy
2025 CFO Priorities Report: profitability at 34%; 45% plan finance hires next quarter, 65% over 12–24 months, and 59% plan external AI...
October 01, 2025 07:00 AM
3,000+ Cyber Attacks: NETGEAR Unveils Enterprise Security Shield for Vulnerable Small Businesses
Cybersecurity awareness month, kicking off October 1, keeps evolving threats top of mind. SAN JOSE, Calif. --(BUSINESS WIRE)-- NETGEAR® Inc.
September 22, 2025 07:00 AM
Lending a hacking hand: ambitious students create real-world cybersecurity RSO
KALAMAZOO, Mich.—A Western Michigan University residence hall was the birthplace of several ideas for cybersecurity students Lochlan McElroy...
September 21, 2025 07:00 AM
Bayer India expert: Freshers jobs now more about skills than degrees; AI, ML rarely taught effectively
While hospitality, healthcare sectors boom for freshers, outdated college curriculum fail to impart AI, ML skills; startups fuel jobs for...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Bayer CyberSecurity History Information
Official Website of Bayer
The official website of Bayer is https://www.bayer.com/.
Bayer’s AI-Generated Cybersecurity Score
According to Rankiteo, Bayer’s AI-generated cybersecurity score is 757, reflecting their Fair security posture.
How many security badges does Bayer’ have ?
According to Rankiteo, Bayer currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Bayer have SOC 2 Type 1 certification ?
According to Rankiteo, Bayer is not certified under SOC 2 Type 1.
Does Bayer have SOC 2 Type 2 certification ?
According to Rankiteo, Bayer does not hold a SOC 2 Type 2 certification.
Does Bayer comply with GDPR ?
According to Rankiteo, Bayer is not listed as GDPR compliant.
Does Bayer have PCI DSS certification ?
According to Rankiteo, Bayer does not currently maintain PCI DSS compliance.
Does Bayer comply with HIPAA ?
According to Rankiteo, Bayer is not compliant with HIPAA regulations.
Does Bayer have ISO 27001 certification ?
According to Rankiteo,Bayer is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Bayer
Bayer operates primarily in the Chemical Manufacturing industry.
Number of Employees at Bayer
Bayer employs approximately 87,546 people worldwide.
Subsidiaries Owned by Bayer
Bayer presently has no subsidiaries across any sectors.
Bayer’s LinkedIn Followers
Bayer’s official LinkedIn profile has approximately 6,411,032 followers.
NAICS Classification of Bayer
Bayer is classified under the NAICS code 325, which corresponds to Chemical Manufacturing.
Bayer’s Presence on Crunchbase
No, Bayer does not have a profile on Crunchbase.
Bayer’s Presence on LinkedIn
Yes, Bayer maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/bayer.
Cybersecurity Incidents Involving Bayer
As of December 11, 2025, Rankiteo reports that Bayer has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Bayer has an estimated 4,203 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Bayer ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=bayer' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
