Mondelēz International Company CyberSecurity Posture
mondelezinternational.com
Mondelēz International, Inc. (NASDAQ: MDLZ) is an American multinational confectionery, food, and beverage company based in Illinois which employs approximately 80,000 individuals around the world. Our Purpose Our purpose is to empower people to snack right. We will lead the future of snacking around the world by offering the right snack, for the right moment, made the right way. Our Brands We’re leading the future of snacking with iconic brands such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. Our People Our 80,000+ colleagues around the world are key to the success of our business. Our Values and Leadership Commitments of Love our Consumers and Brands, Grow Every Day, and Do What's Right shapes our culture – what we believe in, stand for, and what guides our actions and decisions. Great people and great brands. That’s who we are. Our Strategies We are uniquely positioned to lead the future of snacking with strong leadership in our categories, an unparalleled portfolio of global and local brands and a solid footprint in fast-growing markets. Aimed at delivering sustainable growth, our strategic plan is centered around three strategic priorities: • Growth: accelerate consumer-centric growth • Execution: drive operational excellence • Culture: build a winning growth culture
Company Details
mondelezinternational
44,433
3,338,143
311
mondelezinternational.com
54
MON_2123993
Completed
Mondelēz International Risk Score (AI oriented)Between 800 and 849
Mondelēz International Global Score (TPRM)XXXX
Description: The Washington State Office of the Attorney General reported a data breach involving Mondelēz Global LLC on June 20, 2023. The breach occurred between February 23, 2023, and March 1, 2023, due to a cyberattack involving phishing, potentially affecting 1,102 individuals. Compromised information may include names, social security numbers, and full dates of birth.
Description: The food and beverage giant Mondelez International was targeted by the NotPetya malware group in 2017. The attack froze the company's laptops, left employees unaccessible to email and files, crashed the logistics software, and disrupted the deliveries. The attack permanently damaged 1,700 servers and 24,000 laptops of the company and disturbed the production facilities around the globe. The attack caused more than $100 million for Mondelez to fully recover its systems.
No incidents recorded for Mondelēz International in 2025.
No incidents recorded for Mondelēz International in 2025.
No incidents recorded for Mondelēz International in 2025.
Mondelēz International cyber incidents detection timeline including parent company and subsidiaries
Mondelēz International, Inc. (NASDAQ: MDLZ) is an American multinational confectionery, food, and beverage company based in Illinois which employs approximately 80,000 individuals around the world. Our Purpose Our purpose is to empower people to snack right. We will lead the future of snacking around the world by offering the right snack, for the right moment, made the right way. Our Brands We’re leading the future of snacking with iconic brands such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. Our People Our 80,000+ colleagues around the world are key to the success of our business. Our Values and Leadership Commitments of Love our Consumers and Brands, Grow Every Day, and Do What's Right shapes our culture – what we believe in, stand for, and what guides our actions and decisions. Great people and great brands. That’s who we are. Our Strategies We are uniquely positioned to lead the future of snacking with strong leadership in our categories, an unparalleled portfolio of global and local brands and a solid footprint in fast-growing markets. Aimed at delivering sustainable growth, our strategic plan is centered around three strategic priorities: • Growth: accelerate consumer-centric growth • Execution: drive operational excellence • Culture: build a winning growth culture
From family-owned company to dairy industry’s global leader Created in 1933 by André Besnier in Laval, Lactalis Group is a family-owned company settled in rural areas, which became dairy industry’s global leader and a major player of employment. True to its first trade, cheesemonger, Lactalis Grou
Since 1869, we’ve been connecting people through food they love. Our history was created by remarkable people, ideas and innovations. We are stewards of amazing brands. We have a focused strategy and leading brands in our two divisions: Meals & Beverages and Snacks. We foster a culture of belonging
The Bell Food Group is one of the leading processors of meat and convenience food in Europe. The product range includes fresh meat, poultry, charcuterie, seafood as well as ultra-fresh, fresh and non-perishable convenience and vegetarian products. With the brands Bell, Hilcona, Hügli and Eisberg,
Cargill is a family company committed to nourishing the world in a safe, responsible and sustainable way. With over 158 years of experience, we sit at the heart of the supply chain, partnering with producers and customers to source, make and deliver products that are vital for living. Whether it’s m
Louis Dreyfus Company is a leading merchant and processor of agricultural goods. We leverage our global reach and extensive asset network to serve our customers and consumers around the world, delivering the right products to the right location, at the right time – safely, responsibly and reliably.
FrieslandCampina is a large international dairy company with a cooperative history dating back more than 150 years. The company processes milk into a wide range of dairy products and ingredients. Royal FrieslandCampina N.V. is fully owned by Zuivelcoöperatie FrieslandCampina U.A., with 14,634 dairy
ALFA es una empresa que administra negocios líderes con operaciones globales: Sigma: Compañía global con más de 44 mil colaboradores para ofrecer los alimentos favoritos a las comunidades a través de 51 marcas líderes, 183 centros de distribución, más de medio millón de puntos de venta y presencia
ADM unlocks the power of nature to enrich the quality of life. We’re a premier global human and animal nutrition company, delivering solutions today with an eye to the future. We’re blazing new trails in health and well-being as our scientists develop groundbreaking products to support healthier liv
Have you ever started your morning with a Thomas’® English muffin or bagel? Or bitten into the perfect slice of Sara Lee® bread? Do you break open a fresh box of Entenmann’s® donuts at family gatherings? If so, you’re already a fan of Bimbo Bakeries USA – the powerhouse behind these iconic brands!
.png)
If you have been eyeing Mondelez International lately and wondering whether it's time to make a move, you're not alone. With a stock that...
Holiday Memories Shape Our Snacking Choices Tradition and a sense of connection help shape snacking habits globally, particularly during the...
Mondelēz International (Nasdaq: MDLZ) will report Q3 2025 financial results on Tuesday, October 28, 2025 at 4:05 p.m. ET and host a...
More than 2,000 attendees from 900 organizations across 63 countries to converge in Barcelona for cybersecurity's fastest-growing global...
Mondelēz International, Inc. (NASDAQ: MDLZ) is an American multinational confectionery, food, and beverage company based in Illinois which...
Mondelez International, Inc. (NASDAQ:MDLZ) is one of the top stock picks in Ken Griffin's stock portfolio. On August 20, JPMorgan reiterated...
In just two years, Mondelēz International transformed its global cybersecurity operations from fragmented and reactive to streamlined and automated.
Kostas Georgakopoulos' last day at the snack food giant will be Thursday. Two executives have been tapped to take over the roles.
Mondelez International, Inc. (NASDAQ:MDLZ) is included among the 10 Best Food Stocks with Dividends. Mondelez International...
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
The official website of Mondelēz International is https://www.mondelezinternational.com/?utm_source=linkedin.com&utm_medium=button&utm_campaign=Linkedin_homepage.
According to Rankiteo, Mondelēz International’s AI-generated cybersecurity score is 800, reflecting their Good security posture.
According to Rankiteo, Mondelēz International currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
According to Rankiteo, Mondelēz International is not certified under SOC 2 Type 1.
According to Rankiteo, Mondelēz International does not hold a SOC 2 Type 2 certification.
According to Rankiteo, Mondelēz International is not listed as GDPR compliant.
According to Rankiteo, Mondelēz International does not currently maintain PCI DSS compliance.
According to Rankiteo, Mondelēz International is not compliant with HIPAA regulations.
According to Rankiteo,Mondelēz International is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Mondelēz International operates primarily in the Food and Beverage Manufacturing industry.
Mondelēz International employs approximately 44,433 people worldwide.
Mondelēz International presently has no subsidiaries across any sectors.
Mondelēz International’s official LinkedIn profile has approximately 3,338,143 followers.
Mondelēz International is classified under the NAICS code 311, which corresponds to Food Manufacturing.
No, Mondelēz International does not have a profile on Crunchbase.
Yes, Mondelēz International maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/mondelezinternational.
As of December 11, 2025, Rankiteo reports that Mondelēz International has experienced 2 cybersecurity incidents.
Mondelēz International has an estimated 4,235 peer or competitor companies worldwide.
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware and Cyber Attack.
Total Financial Loss: The total financial loss from these incidents is estimated to be $100 million.
Title: NotPetya Malware Attack on Mondelez International
Description: The food and beverage giant Mondelez International was targeted by the NotPetya malware group in 2017. The attack froze the company's laptops, left employees unaccessible to email and files, crashed the logistics software, and disrupted the deliveries. The attack permanently damaged 1,700 servers and 24,000 laptops of the company and disturbed the production facilities around the globe. The attack caused more than $100 million for Mondelez to fully recover its systems.
Date Detected: 2017
Type: Malware Attack
Attack Vector: Malware (NotPetya)
Threat Actor: NotPetya Malware Group
Title: Data Breach at Mondelēz Global LLC
Description: The Washington State Office of the Attorney General reported a data breach involving Mondelēz Global LLC on June 20, 2023. The breach occurred between February 23, 2023, and March 1, 2023, due to a cyberattack involving phishing, potentially affecting 1,102 individuals. Compromised information may include names, social security numbers, and full dates of birth.
Date Detected: 2023-06-20
Date Publicly Disclosed: 2023-06-20
Type: Data Breach
Attack Vector: Phishing
Common Attack Types: The most common types of attacks the company has faced is Cyber Attack.
Financial Loss: $100 million
Systems Affected: 1,700 servers24,000 laptops
Operational Impact: Email and file access disruptionLogistics software crashDelivery disruptionsProduction facilities disturbed
Data Compromised: Names, Social security numbers, Full dates of birth
Average Financial Loss: The average financial loss per incident is $50.00 million.
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Social Security Numbers, Full Dates Of Birth and .
Entity Name: Mondelez International
Entity Type: Company
Industry: Food and Beverage
Location: Global
Entity Name: Mondelēz Global LLC
Entity Type: Company
Industry: Food and Beverage
Customers Affected: 1102
Type of Data Compromised: Names, Social security numbers, Full dates of birth
Number of Records Exposed: 1102
Sensitivity of Data: High
Source: Washington State Office of the Attorney General
Date Accessed: 2023-06-20
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Washington State Office of the Attorney GeneralDate Accessed: 2023-06-20.
Last Attacking Group: The attacking group in the last incident was an NotPetya Malware Group.
Most Recent Incident Detected: The most recent incident detected was on 2017.
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2023-06-20.
Highest Financial Loss: The highest financial loss from an incident was $100 million.
Most Significant Data Compromised: The most significant data compromised in an incident were names, social security numbers, full dates of birth and .
Most Significant System Affected: The most significant system affected in an incident were 1,700 servers24,000 laptops.
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were names, full dates of birth and social security numbers.
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 112.0.
Most Recent Source: The most recent source of information about an incident is Washington State Office of the Attorney General.
.png)
FreePBX Endpoint Manager is a module for managing telephony endpoints in FreePBX systems. Versions prior to 16.0.96 and 17.0.1 through 17.0.9 have a weak default password. By default, this is a 6 digit numeric value which can be brute forced. (This is the app_password parameter). Depending on local configuration, this password could be the extension, voicemail, user manager, DPMA or EPM phone admin password. This issue is fixed in versions 16.0.96 and 17.0.10.
Neuron is a PHP framework for creating and orchestrating AI Agents. In versions 2.8.11 and below, the MySQLWriteTool executes arbitrary SQL provided by the caller using PDO::prepare() + execute() without semantic restrictions. This is consistent with the name (“write tool”), but in an LLM/agent context it becomes a high-risk capability: prompt injection or indirect prompt manipulation can cause execution of destructive queries such as DROP TABLE, TRUNCATE, DELETE, ALTER, or privilege-related statements (subject to DB permissions). Deployments that expose an agent with MySQLWriteTool enabled to untrusted input and/or run the tool with a DB user that has broad privileges are impacted. This issue is fixed in version 2.8.12.
Neuron is a PHP framework for creating and orchestrating AI Agents. Versions 2.8.11 and below use MySQLSelectTool, which is vulnerable to Read-Only Bypass. MySQLSelectTool is intended to be a read-only SQL tool (e.g., for LLM agent querying, however, validation based on the first keyword (e.g., SELECT) and a forbidden-keyword list does not block file-writing constructs such as INTO OUTFILE / INTO DUMPFILE. As a result, an attacker who can influence the tool input (e.g., via prompt injection through a public agent endpoint) may write arbitrary files to the DB server if the MySQL/MariaDB account has the FILE privilege and server configuration permits writes to a useful location (e.g., a web-accessible directory). This issue is fixed in version 2.8.12.
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.
The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. When using versions 4.11.0 through 4.11.2 and 4.12.0, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. This issue is fixed in versions 4.11.2 and 4.12.1.
Get company history
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rapid