Globant
Company Details
Linkedin ID:
globant
Website:
Employees number:
28,438
Number of followers:
1,294,033
NAICS:
5415
Industry Type:
Homepage:
globant.link
IP Addresses:
0
Company ID:
GLO_3315623
Scan Status:
In-progress
Globant Company CyberSecurity Posture
globant.link
At Globant, we create the digitally-native products that people love. We bridge the gap between businesses and consumers through technology and creativity, leveraging our experience as an AI powerhouse. We dare to digitally transform organizations and strive to delight their customers. - We have more than 30,000 employees and are present in 33 countries across 5 continents, working for companies like Google, Electronic Arts, and Santander, among others. - We were named a Worldwide Leader in AI Services (2023) and a Worldwide Leader in CX Improvement Services (2020) by IDC MarketScape report. - We are the fastest-growing IT brand and the 5th strongest IT brand globally (2024), according to Brand Finance. - We were featured as a business case study at Harvard, MIT, and Stanford. - We are active members of The Green Software Foundation (GSF) and the Cybersecurity Tech Accord. For more information, visit https://bit.ly/globant_com Follow us: http://www.twitter.com/globant http://www.youtube.com/Globant http://www.facebook.com/Globant https://instagram.com/Globant https://www.tiktok.com/@globant
Globant A.I CyberSecurity Scoring
Globant Risk Score (AI oriented)Between 700 and 749
Globant
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Globant Global Score (TPRM)XXXX
Globant
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Globant Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Globant
Breach
Rankiteo Explanation
Attack threatening the organization's existence
Description: The technology services company Globant was targeted in a cyber incident recently by the Lapsus$ hacker group. The hackers compromised its systems and stole and made public about 70 Gb of data of its data. They also shared usernames and passwords that they used to access various development platforms used by Globant, including GitHub, Jira, Crucible, and Confluence.
Globant Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Globant
Incidents vs IT Services and IT Consulting Industry Average (This Year)
No incidents recorded for Globant in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Globant in 2025.
Incident Types Globant vs IT Services and IT Consulting Industry Avg (This Year)
No incidents recorded for Globant in 2025.
Incident History — Globant (X = Date, Y = Severity)
Globant cyber incidents detection timeline including parent company and subsidiaries
Globant Company Subsidiaries
At Globant, we create the digitally-native products that people love. We bridge the gap between businesses and consumers through technology and creativity, leveraging our experience as an AI powerhouse. We dare to digitally transform organizations and strive to delight their customers. - We have more than 30,000 employees and are present in 33 countries across 5 continents, working for companies like Google, Electronic Arts, and Santander, among others. - We were named a Worldwide Leader in AI Services (2023) and a Worldwide Leader in CX Improvement Services (2020) by IDC MarketScape report. - We are the fastest-growing IT brand and the 5th strongest IT brand globally (2024), according to Brand Finance. - We were featured as a business case study at Harvard, MIT, and Stanford. - We are active members of The Green Software Foundation (GSF) and the Cybersecurity Tech Accord. For more information, visit https://bit.ly/globant_com Follow us: http://www.twitter.com/globant http://www.youtube.com/Globant http://www.facebook.com/Globant https://instagram.com/Globant https://www.tiktok.com/@globant
Loading...
Globant Similar Companies
NCS Group
NCS, a subsidiary of Singtel Group, is a leading technology services firm with presence in Asia Pacific and partners with governments and enterprises to advance communities through technology. Combining the experience and expertise of its 13,000-strong team across 57 specialisations, NCS provides di
As No. 1, we inspire people in the connected world. With the latest technologies and innovations, together we have the opportunity to shape the future. To do this, we are and act trustworthy, committed and curious. Are you with us? Join us on this exciting journey and work with us or in one of the
IBM
We don’t just imagine the future — we create it. We collaborate with technologists, developers and engineers to turn bold ideas into real-world impact. We partner with iconic brands like Ferrari and global events like the US Open, Wimbledon and The Masters to bring innovation to the world’s bigge
FPT Software, a subsidiary of FPT Corporation, is a global technology and IT services provider headquartered in Vietnam, with USD 1.22 billion in revenue (2024) and over 33,000 employees in 30 countries. The company champions complex business opportunities and challenges with its world-class servic
ITC Infotech
ITC Infotech is a global technology solution and services leader providing business-friendly solutions, that enable future-readiness for clients. We seamlessly bring together digital expertise, strong industry-specific alliances, and deep domain expertise from ITC Group businesses. Our solutions and
Algar Tech
Somos a Algar Tech CX. Com 26 anos de mercado, atuamos como parceira de negócio para a transformação digital de grandes corporações. Nosso portfólio possui serviços de Relacionamento com o Cliente, que visam melhorar a experiência dos consumidores. Somos mais de 7 mil associados que trabalham com o
Infosys BPM
Infosys BPM Ltd., the business process management subsidiary of Infosys Ltd. (NYSE: INFY), was set up in April 2002. Infosys BPM focuses on integrated end-to-end outsourcing and delivers transformational benefits to its clients through reduced costs, ongoing productivity improvements, and process re
As a global leader in information and analytics, Elsevier helps researchers and healthcare professionals advance science and improve health outcomes for the benefit of society. We do this by facilitating insights and critical decision-making for customers across the global research and health ecosys
We automate, digitize and transform the way people bank and shop. We offer proven expertise and comprehensive portfolios in cutting-edge product technology, multi-vendor software and service excellence for financial and retail customers. Consumer behavior is changing rapidly; people are empowered a
.png)
Globant CyberSecurity News
November 26, 2025 11:48 PM
Top Cybersecurity Stocks To Add to Your Watchlist - November 26th
CrowdStrike, Palo Alto Networks, Fortinet, SentinelOne, Globant, BlackBerry, and Rapid7 are the seven Cybersecurity stocks to watch today,...
November 24, 2025 08:00 AM
Cybersecurity Stocks To Watch Today - November 22nd
CrowdStrike, Palo Alto Networks, Fortinet, SentinelOne, and Globant are the five Cybersecurity stocks to watch today, according to...
November 19, 2025 07:35 AM
Best Cybersecurity Stocks To Watch Now – November 17th
Palo Alto Networks, CrowdStrike, Fortinet, Globant, and SentinelOne are the five Cybersecurity stocks to watch today, according to...
November 16, 2025 08:04 AM
Top Cybersecurity Stocks Worth Watching – November 14th
CrowdStrike, Palo Alto Networks, Fortinet, Globant, SentinelOne, BlackBerry, and Arqit Quantum are the seven Cybersecurity stocks to watch...
November 14, 2025 08:00 AM
Top Cybersecurity Stocks Worth Watching - November 14th
CrowdStrike, Palo Alto Networks, Fortinet, Globant, SentinelOne, BlackBerry, and Arqit Quantum are the seven Cybersecurity stocks to watch...
November 02, 2025 07:00 AM
Cybersecurity Stocks To Watch Now - November 2nd
CrowdStrike, Palo Alto Networks, Fortinet, SentinelOne, Globant, WISeKey International, and BlackBerry are the seven Cybersecurity stocks to...
October 30, 2025 07:00 AM
Globant to Announce Third Quarter 2025 Financial Results on November 13th
PR Newswire. LUXEMBOURG, Oct. 30, 2025. LUXEMBOURG , Oct. 30, 2025 /PRNewswire/ -- Globant (NYSE: GLOB), a digitally native company focused...
October 24, 2025 07:00 AM
Globant (NYSE:GLOB) Expands Digital Solutions in Russell 1000 ETF
The company provides solutions in artificial intelligence, cloud computing, cybersecurity, blockchain, and digital experiences.
October 23, 2025 07:00 AM
Globant (NYSE:GLOB) Powers Tech Growth in NYSE Composite Today
Explore Globant's (NYSE:GLOB) role in AI, cloud, and digital innovation impacting Technology Stocks and NYSE Composite today.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Globant CyberSecurity History Information
Official Website of Globant
The official website of Globant is https://globant.link/3YqJVI4.
Globant’s AI-Generated Cybersecurity Score
According to Rankiteo, Globant’s AI-generated cybersecurity score is 741, reflecting their Moderate security posture.
How many security badges does Globant’ have ?
According to Rankiteo, Globant currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Globant have SOC 2 Type 1 certification ?
According to Rankiteo, Globant is not certified under SOC 2 Type 1.
Does Globant have SOC 2 Type 2 certification ?
According to Rankiteo, Globant does not hold a SOC 2 Type 2 certification.
Does Globant comply with GDPR ?
According to Rankiteo, Globant is not listed as GDPR compliant.
Does Globant have PCI DSS certification ?
According to Rankiteo, Globant does not currently maintain PCI DSS compliance.
Does Globant comply with HIPAA ?
According to Rankiteo, Globant is not compliant with HIPAA regulations.
Does Globant have ISO 27001 certification ?
According to Rankiteo,Globant is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Globant
Globant operates primarily in the IT Services and IT Consulting industry.
Number of Employees at Globant
Globant employs approximately 28,438 people worldwide.
Subsidiaries Owned by Globant
Globant presently has no subsidiaries across any sectors.
Globant’s LinkedIn Followers
Globant’s official LinkedIn profile has approximately 1,294,033 followers.
NAICS Classification of Globant
Globant is classified under the NAICS code 5415, which corresponds to Computer Systems Design and Related Services.
Globant’s Presence on Crunchbase
Yes, Globant has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/globant.
Globant’s Presence on LinkedIn
Yes, Globant maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/globant.
Cybersecurity Incidents Involving Globant
As of December 11, 2025, Rankiteo reports that Globant has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Globant has an estimated 37,490 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Globant ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Lapsus$ Hacker Group Attack on Globant
Description: The technology services company Globant was targeted in a cyber incident recently by the Lapsus$ hacker group. The hackers compromised its systems and stole and made public about 70 Gb of data. They also shared usernames and passwords that they used to access various development platforms used by Globant, including GitHub, Jira, Crucible, and Confluence.
Type: Data Breach
Attack Vector: Compromised CredentialsUnauthorized Access
Threat Actor: Lapsus$
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach GLO25631322
Data Compromised: 70 Gb
Systems Affected: GitHubJiraCrucibleConfluence
Which entities were affected by each incident ?
Incident : Data Breach GLO25631322
Entity Name: Globant
Entity Type: Technology Services Company
Industry: Technology
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach GLO25631322
Data Exfiltration: 70 Gb
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident was an Lapsus$.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident was 70 Gb.
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was GitHubJiraCrucibleConfluence.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach was 70 Gb.
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=globant' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
