Comparison Overview

Alcoa

VS

Metalloinvest

Alcoa

201 Isabella St., Pittsburgh, PA, 15212, US
Last Update: 2025-12-17
View Profile
Between 750 and 799
http://www.alcoa.com

Alcoa (NYSE: AA) is a global industry leader in bauxite, alumina and aluminum products with a vision to reinvent the aluminum industry for a sustainable future. With a values-based approach that encompasses integrity, operating excellence, care for people and courageous leadership, our purpose is to Turn Raw Potential into Real Progress. Since developing the process that made aluminum an affordable and vital part of modern life, our talented Alcoans have developed breakthrough innovations and best practices that have led to greater efficiency, safety, sustainability and stronger communities wherever we operate.

NAICS: 212
NAICS Definition: Mining (except Oil and Gas)
Employees: 16,336
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Metalloinvest

28, Rublevskoye shosse, Moscow, Russia, 121609 Moscow, 121609, RU
Last Update: 2025-12-17
Between 750 and 799
http://metalloinvest.com

Metalloinvest is a leading global iron ore and HBI producer and supplier and one of the regional steel producers. Metalloinvest extracts and exploits iron ore fr om the second largest measured iron ore reserve base in the world with approximately 14.6 billion tonnes of proven and probable reserves on a JORC equivalent basis and about 150 years of reserve life. In 2012, according to CRU, the company was: - the leading producer of merchant HBI in the world - 40% share of the global market, - the third largest producer of pellets in the world, - the fifth largest commercial iron ore producer in the world. Metalloinvest is a global player in the production of iron ore products, processing the majority of its primary iron ore concentrate production into value-added products, such as iron ore pellets and HBI/DRI.

NAICS: 212
NAICS Definition: Mining (except Oil and Gas)
Employees: 10,001
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/alcoa.jpeg
Alcoa
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/metalloinvest.jpeg
Metalloinvest
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Alcoa
100%
Compliance Rate
0/4 Standards Verified
Metalloinvest
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Mining Industry Average (This Year)

No incidents recorded for Alcoa in 2025.

Incidents vs Mining Industry Average (This Year)

No incidents recorded for Metalloinvest in 2025.

Incident History — Alcoa (X = Date, Y = Severity)

Alcoa cyber incidents detection timeline including parent company and subsidiaries

Incident History — Metalloinvest (X = Date, Y = Severity)

Metalloinvest cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/alcoa.jpeg
Alcoa
Incidents

No Incident

https://images.rankiteo.com/companyimages/metalloinvest.jpeg
Metalloinvest
Incidents

No Incident

FAQ

Alcoa company demonstrates a stronger AI Cybersecurity Score compared to Metalloinvest company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Metalloinvest company has disclosed a higher number of cyber incidents compared to Alcoa company.

In the current year, Metalloinvest company and Alcoa company have not reported any cyber incidents.

Neither Metalloinvest company nor Alcoa company has reported experiencing a ransomware attack publicly.

Neither Metalloinvest company nor Alcoa company has reported experiencing a data breach publicly.

Neither Metalloinvest company nor Alcoa company has reported experiencing targeted cyberattacks publicly.

Neither Alcoa company nor Metalloinvest company has reported experiencing or disclosing vulnerabilities publicly.

Neither Alcoa nor Metalloinvest holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Alcoa company nor Metalloinvest company has publicly disclosed detailed information about the number of their subsidiaries.

Alcoa company employs more people globally than Metalloinvest company, reflecting its scale as a Mining.

Neither Alcoa nor Metalloinvest holds SOC 2 Type 1 certification.

Neither Alcoa nor Metalloinvest holds SOC 2 Type 2 certification.

Neither Alcoa nor Metalloinvest holds ISO 27001 certification.

Neither Alcoa nor Metalloinvest holds PCI DSS certification.

Neither Alcoa nor Metalloinvest holds HIPAA certification.

Neither Alcoa nor Metalloinvest holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability has been found in SeaCMS up to 13.3. The affected element is an unknown function of the file js/player/dmplayer/dmku/class/mysqli.class.php. Such manipulation of the argument page/limit leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.

Published
Date
2025-12-21
Updated
Date
2025-12-21
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HappyDevs TempTool allows Stored XSS.This issue affects TempTool: from n/a through 1.3.1.

Published
Date
2025-12-21
Updated
Date
2025-12-21
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
References
Description

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Tormorten WP Microdata allows Stored XSS.This issue affects WP Microdata: from n/a through 1.0.

Published
Date
2025-12-21
Updated
Date
2025-12-21
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
References
Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in HappyDevs TempTool allows Retrieve Embedded Sensitive Data.This issue affects TempTool: from n/a through 1.3.1.

Published
Date
2025-12-21
Updated
Date
2025-12-21
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description

A vulnerability has been found in Tenda FH1201 1.2.0.14(408). Affected is the function sprintf of the file /goform/SetIpBind. Such manipulation of the argument page leads to stack-based buffer overflow. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.

Published
Date
2025-12-21
Updated
Date
2025-12-21
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References