Comparison Overview

Aon

VS

LOLC Holdings PLC

Aon

122 Leadenhall Street, London, undefined, EC3V 4AN, GB
Last Update: 2025-12-11
View Profile
Between 750 and 799
http://www.aon.com

We exist to shape decisions for the better — to protect and enrich the lives of people around the world. Through actionable analytic insight, globally integrated Risk Capital and Human Capital expertise, and locally relevant solutions, our colleagues provide clients in over 120 countries with the clarity and confidence to make better risk and people decisions that help protect and grow their businesses.

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 75,543
Subsidiaries: 11
12-month incidents
0
Known data breaches
2
Attack type number
3
View Profile

LOLC Holdings PLC

No. 100/1, Sri Jayewardenepura Mawatha, Rajagiriya,, 10100, LK
Last Update: 2025-12-09
Between 750 and 799
http://www.lolc.com

A formidable global conglomerate, LOLC Holdings has strategically diversified into key economic growth sectors across financial services, leisure, agriculture and plantations, construction and real estate, manufacturing and trading, technology, research and innovation and strategic investments. The LOLC Group is on an accelerated growth trajectory and is inspired by the quest to nurture and shape the future of individuals and communities across the world. As a leading player in the International MSME sector, the LOLC Group has been a catalyst in facilitating, whilst striving to maximise environmental benefits through green financing, promoting financial independence for women and uplifting customers from poverty through financial inclusion in global markets. In keeping with its alignment to UN Sustainable Development Goals, LOLC is a catalyst of economic development as a responsible lender while maintaining strong client protection principles. Transforming communities in the South and South East Asian markets, the LOLC Group has made giant strides to entrench its footprint across Africa and Central Asia. The Group has already built its reputation as one of the largest multi-currency, multi-geography inclusive finance platform in the world, backed by advanced tech platforms designed by its fully-owned subsidiary companies which have now been successfully adopted across borders.

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 10,001
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/aon.jpeg
Aon
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/lolc.jpeg
LOLC Holdings PLC
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Aon
100%
Compliance Rate
0/4 Standards Verified
LOLC Holdings PLC
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Financial Services Industry Average (This Year)

No incidents recorded for Aon in 2025.

Incidents vs Financial Services Industry Average (This Year)

No incidents recorded for LOLC Holdings PLC in 2025.

Incident History — Aon (X = Date, Y = Severity)

Aon cyber incidents detection timeline including parent company and subsidiaries

Incident History — LOLC Holdings PLC (X = Date, Y = Severity)

LOLC Holdings PLC cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/aon.jpeg
Aon
Incidents

Date Detected: 07/2023
Type:Data Leak
Attack Vector: SQL Injection
Blog: Blog

Date Detected: 02/2022
Type:Cyber Attack
Blog: Blog

Date Detected: 12/2020
Type:Breach
Attack Vector: Unauthorized Access
Blog: Blog
https://images.rankiteo.com/companyimages/lolc.jpeg
LOLC Holdings PLC
Incidents

No Incident

FAQ

LOLC Holdings PLC company demonstrates a stronger AI Cybersecurity Score compared to Aon company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Aon company has historically faced a number of disclosed cyber incidents, whereas LOLC Holdings PLC company has not reported any.

In the current year, LOLC Holdings PLC company and Aon company have not reported any cyber incidents.

Neither LOLC Holdings PLC company nor Aon company has reported experiencing a ransomware attack publicly.

Aon company has disclosed at least one data breach, while the other LOLC Holdings PLC company has not reported such incidents publicly.

Aon company has reported targeted cyberattacks, while LOLC Holdings PLC company has not reported such incidents publicly.

Neither Aon company nor LOLC Holdings PLC company has reported experiencing or disclosing vulnerabilities publicly.

Neither Aon nor LOLC Holdings PLC holds any compliance certifications.

Neither company holds any compliance certifications.

Aon company has more subsidiaries worldwide compared to LOLC Holdings PLC company.

Aon company employs more people globally than LOLC Holdings PLC company, reflecting its scale as a Financial Services.

Neither Aon nor LOLC Holdings PLC holds SOC 2 Type 1 certification.

Neither Aon nor LOLC Holdings PLC holds SOC 2 Type 2 certification.

Neither Aon nor LOLC Holdings PLC holds ISO 27001 certification.

Neither Aon nor LOLC Holdings PLC holds PCI DSS certification.

Neither Aon nor LOLC Holdings PLC holds HIPAA certification.

Neither Aon nor LOLC Holdings PLC holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 2.6
Severity: HIGH
AV:N/AC:H/Au:N/C:N/I:P/A:N
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References