Mercedes-Benz AG
Company Details
Linkedin ID:
mercedes-benz_ag
Website:
Employees number:
35,360
Number of followers:
2,246,561
NAICS:
3361
Industry Type:
Homepage:
mercedes-benz.com
IP Addresses:
0
Company ID:
MER_1045021
Scan Status:
In-progress
Mercedes-Benz AG Company CyberSecurity Posture
mercedes-benz.com
"Love of invention will never end." - Carl Benz Learn more about us as we continue to pioneer the future of driving excellence. Data privacy: mb4.me/provider_privacy Mercedes-Benz AG Mercedesstraße 120 70372 Stuttgart Germany Phone: +49 7 11 17-0 E-Mail: [email protected] For inquiries regarding the content on this website, please contact any of the provided contacts. You may address your concerns in English or your respective native language. Represented by the Board of Management: Ola Källenius, Chairman; Jörg Burzer, Mathias Geisen, Renata Jungo Brüngger, Markus Schäfer, Britta Seeger, Oliver Thöne, Harald Wilhelm Chairman of the Supervisory Board: Martin Brudermüller Court of Registry: Stuttgart; commercial register no. 76 2873 VAT ID: DE321281763
Mercedes-Benz AG A.I CyberSecurity Scoring
Mercedes-Benz AG Risk Score (AI oriented)Between 800 and 849
Mercedes-Benz AG
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Mercedes-Benz AG Global Score (TPRM)XXXX
Mercedes-Benz AG
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Mercedes-Benz AG Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Mercedes-Benz AG
Data Leak
Rankiteo Explanation
Attack without any consequences
Description: Owners of Mercedes-Benz vehicles have reported that the app they used to remotely find, unlock, and start their vehicles displayed information on other people's accounts and vehicles. Customers claimed that the Mercedes-Benz linked car app was accessing data from accounts other than their own and displaying names, recent activity, phone numbers, and other information for other car owners. The alleged security breach occurred late on Friday, and a few hours later the app was taken offline for site maintenance. The information shown was cached information; there was no real-time access to the account, no financial information could be viewed, and there was no way to interact with or locate the car connected to the account.
Mercedes-Benz AG Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Mercedes-Benz AG
Incidents vs Motor Vehicle Manufacturing Industry Average (This Year)
No incidents recorded for Mercedes-Benz AG in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Mercedes-Benz AG in 2025.
Incident Types Mercedes-Benz AG vs Motor Vehicle Manufacturing Industry Avg (This Year)
No incidents recorded for Mercedes-Benz AG in 2025.
Incident History — Mercedes-Benz AG (X = Date, Y = Severity)
Mercedes-Benz AG cyber incidents detection timeline including parent company and subsidiaries
Mercedes-Benz AG Company Subsidiaries
"Love of invention will never end." - Carl Benz Learn more about us as we continue to pioneer the future of driving excellence. Data privacy: mb4.me/provider_privacy Mercedes-Benz AG Mercedesstraße 120 70372 Stuttgart Germany Phone: +49 7 11 17-0 E-Mail: [email protected] For inquiries regarding the content on this website, please contact any of the provided contacts. You may address your concerns in English or your respective native language. Represented by the Board of Management: Ola Källenius, Chairman; Jörg Burzer, Mathias Geisen, Renata Jungo Brüngger, Markus Schäfer, Britta Seeger, Oliver Thöne, Harald Wilhelm Chairman of the Supervisory Board: Martin Brudermüller Court of Registry: Stuttgart; commercial register no. 76 2873 VAT ID: DE321281763
Loading...
Mercedes-Benz AG Similar Companies
As America’s most admired automotive retailer, AutoNation is transforming the automotive industry through its bold leadership, innovation, and comprehensive brand extensions. We are committed to hiring driven, diverse Associates and supporting them in growing their career within AutoNation. We offe
Scania Group
Scania is a world-leading provider of transport solutions committed to a better tomorrow. Our purpose is to drive the shift towards a sustainable transport system. In doing so, we are creating a world of mobility that’s better for business, society and our environment. Employing more than 50,000 pe
Delphi Auto Parts
Delphi Product & Service Solutions is Delphi’s aftermarket channel. In the aftermarket, our technologies cover every aspect of today’s vehicles, from brakes to steering, air conditioning to ignition, engine management to fuel systems — whether the vehicle is a hybrid, or powered by gasoline or diese
Volvo Trucks
Volvo Trucks supplies complete transport solutions for discerning professional customers with its full range of medium- and heavy-duty trucks. Customer support is provided via a global network of dealers with 2,200 service points in about 130 countries. Volvo trucks are assembled in 12 countries acr
Porsche AG
“In the beginning I looked around and could not find quite the car I dreamed of. So I decided to build it myself.“ This quote by Ferry Porsche sums up everything that makes Porsche what it is. It has been our guiding star for more than 75 years. Every day, we search for the best solution with commi
PACCAR
PACCAR is a global technology leader in the design, manufacture and customer support of premium light-, medium- and heavy-duty trucks under the Kenworth, Peterbilt and DAF nameplates. PACCAR also designs and manufactures advanced diesel engines, provides financial services, information technology, a
Bridgestone Americas, Inc. (BSAM), headquartered in Nashville, Tennessee, and Bridgestone Europe, Middle East and Africa (BSEMEA), headquartered in Brussels, Belgium, operate collectively as a “Bridgestone West” strategic region. This region services the strategic business needs of teams across the
Ashok Leyland
Ashok Leyland vehicles have built a reputation for reliability and ruggedness. The 5,00,000 vehicles we have put on the roads have considerably eased the additional pressure placed on road transportation in independent India. In the populous Indian metros, four out of the five State Transport Und
Volkswagen do Brasil
A gente sabe que o nome “Volkswagen” com certeza deve fazer parte da sua história. Porque a gente também sabe que não é à toa que estamos na vida, no coração e na garagem dos brasileiros. O segredo? Construímos os carros mais inovadores, tornamos as tecnologias acessíveis e dizemos sempre que estamo
.png)
Mercedes-Benz AG CyberSecurity News
December 01, 2025 02:48 AM
Hackers Allegedly Claim Breach of Mercedes-Benz USA Legal and Customer Data
A threat actor known as "zestix" has claimed responsibility for a significant data breach affecting Mercedes-Benz USA (MBUSA),...
November 20, 2025 08:00 AM
George Kurtz Becomes Co-Owner of Mercedes-AMG PETRONAS F1 Team Through Minority Acquisition in Toto Wolff Ownership Entity, Appointed Technology Advisor
The Mercedes-AMG PETRONAS F1 Team and George Kurtz, CEO and Founder of CrowdStrike, today announced that Kurtz has become a co-owner of the...
November 20, 2025 08:00 AM
Kurtz Becomes Co-Owner of Mercedes-AMG F1 Team
George Kurtz has become a minority owner of the Mercedes-AMG Formula 1 team, with the CrowdStrike co-founder and CEO personally purchasing a...
November 20, 2025 08:00 AM
F1: Crowdstrike Co-Founder George Kurtz Buys Toto Wolff's Stake in Mercedes' F1 Team
George Kurtz has brought Toto Wolff's 15% stake in Mercedes' Formula 1 team however the Austrian's role in the team will be unchanged.
November 19, 2025 08:00 AM
George Kurtz Appointed Technology Advisor and Joins the Team’s Long-Term Ownership Group
Business innovator and 24 Hours of Le Mans winner invests in the future of the Mercedes-AMG PETRONAS F1 Team.
October 14, 2025 07:00 AM
Mercedes-Benz Vision Iconic—1930s Glamour Fused With Electricity
Meet the Mercedes-Benz Vision Iconic concept, a two-door coupe that previews what the German automaker's future cars will look like.
October 14, 2025 07:00 AM
SL 63 S E Is Mercedes-AMG’s Ultimate Sport-Tourer
Moody dawn light on the western slopes of a mountain. Test car wore MANUFAKTUR China Blue paint, sprayed at the niche paint facility in...
October 09, 2025 07:00 AM
Mercedes-Benz Built a Wild Electric “ELF” to Reinvent How We Charge EVs
Mercedes-Benz has unveiled a creative new research vehicle called ELF, short for Experimental-Lade-Fahrzeug (Experimntal Charging Vehicle),...
August 31, 2025 07:00 AM
Mercedes-AMG Reveals Futuristic Tech Behind Record-Breaking Journey
Since the Concept AMG GT XX completed the circumference of the earth in less than 7 days, Mercedes-AMG is lifting the lid on the tech that...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Mercedes-Benz AG CyberSecurity History Information
Official Website of Mercedes-Benz AG
The official website of Mercedes-Benz AG is http://www.mercedes-benz.com/.
Mercedes-Benz AG’s AI-Generated Cybersecurity Score
According to Rankiteo, Mercedes-Benz AG’s AI-generated cybersecurity score is 802, reflecting their Good security posture.
How many security badges does Mercedes-Benz AG’ have ?
According to Rankiteo, Mercedes-Benz AG currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Mercedes-Benz AG have SOC 2 Type 1 certification ?
According to Rankiteo, Mercedes-Benz AG is not certified under SOC 2 Type 1.
Does Mercedes-Benz AG have SOC 2 Type 2 certification ?
According to Rankiteo, Mercedes-Benz AG does not hold a SOC 2 Type 2 certification.
Does Mercedes-Benz AG comply with GDPR ?
According to Rankiteo, Mercedes-Benz AG is not listed as GDPR compliant.
Does Mercedes-Benz AG have PCI DSS certification ?
According to Rankiteo, Mercedes-Benz AG does not currently maintain PCI DSS compliance.
Does Mercedes-Benz AG comply with HIPAA ?
According to Rankiteo, Mercedes-Benz AG is not compliant with HIPAA regulations.
Does Mercedes-Benz AG have ISO 27001 certification ?
According to Rankiteo,Mercedes-Benz AG is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Mercedes-Benz AG
Mercedes-Benz AG operates primarily in the Motor Vehicle Manufacturing industry.
Number of Employees at Mercedes-Benz AG
Mercedes-Benz AG employs approximately 35,360 people worldwide.
Subsidiaries Owned by Mercedes-Benz AG
Mercedes-Benz AG presently has no subsidiaries across any sectors.
Mercedes-Benz AG’s LinkedIn Followers
Mercedes-Benz AG’s official LinkedIn profile has approximately 2,246,561 followers.
NAICS Classification of Mercedes-Benz AG
Mercedes-Benz AG is classified under the NAICS code 3361, which corresponds to Motor Vehicle Manufacturing.
Mercedes-Benz AG’s Presence on Crunchbase
No, Mercedes-Benz AG does not have a profile on Crunchbase.
Mercedes-Benz AG’s Presence on LinkedIn
Yes, Mercedes-Benz AG maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/mercedes-benz_ag.
Cybersecurity Incidents Involving Mercedes-Benz AG
As of December 11, 2025, Rankiteo reports that Mercedes-Benz AG has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Mercedes-Benz AG has an estimated 12,645 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Mercedes-Benz AG ?
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.
How does Mercedes-Benz AG detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an containment measures with app taken offline for site maintenance..
Incident Details
Can you provide details on each incident ?
Title: Mercedes-Benz Linked Car App Data Breach
Description: Owners of Mercedes-Benz vehicles have reported that the app they used to remotely find, unlock, and start their vehicles displayed information on other people's accounts and vehicles.
Date Detected: Late on Friday
Type: Data Breach
Attack Vector: Application Vulnerability
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach MER71318423
Data Compromised: Names, Recent activity, Phone numbers
Systems Affected: Mercedes-Benz Linked Car App
Downtime: App taken offline for site maintenance
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Recent Activity, Phone Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach MER71318423
Entity Name: Mercedes-Benz
Entity Type: Company
Industry: Automotive
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach MER71318423
Containment Measures: App taken offline for site maintenance
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach MER71318423
Type of Data Compromised: Names, Recent activity, Phone numbers
Personally Identifiable Information: NamesPhone Numbers
How does the company handle incidents involving personally identifiable information (PII) ?
Handling of PII Incidents: The company handles incidents involving personally identifiable information (PII) through by app taken offline for site maintenance.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on Late on Friday.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, Recent Activity, Phone Numbers and .
Response to the Incidents
What containment measures were taken in the most recent incident ?
Containment Measures in Most Recent Incident: The containment measures taken in the most recent incident was App taken offline for site maintenance.
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Names, Recent Activity and Phone Numbers.
.png)
Latest Global CVEs (Not Company-Specific)
Description
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
Description
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
Risk Information
cvss3
Base: 8.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
Description
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Risk Information
cvss3
Base: 5.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=mercedes-benz_ag' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
