Comparison Overview

Q: Between Auckland Airport company and Lufthansa Group company, which one has the best AI Cybersecurity Score ?

Lufthansa Group company demonstrates a stronger AI Cybersecurity Score compared to Auckland Airport company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between Auckland Airport company and Lufthansa Group company, which one has experienced more cyber incidents in the past ?

Historically, Lufthansa Group company has disclosed a higher number of cyber incidents compared to Auckland Airport company.

Q: Between Auckland Airport company and Lufthansa Group company, which one has experienced more cyber incidents this year ?

In the current year, Lufthansa Group company and Auckland Airport company have not reported any cyber incidents.

Q: Between Auckland Airport company and Lufthansa Group company, which one has experienced at least one ransomware attack ?

Neither Lufthansa Group company nor Auckland Airport company has reported experiencing a ransomware attack publicly.

Q: Between Auckland Airport company and Lufthansa Group company, which one has experienced at least one data breach ?

Neither Lufthansa Group company nor Auckland Airport company has reported experiencing a data breach publicly.

Q: Between Auckland Airport company and Lufthansa Group company, which one has experienced at least one targeted cyberattack ?

Neither Lufthansa Group company nor Auckland Airport company has reported experiencing targeted cyberattacks publicly.

Q: Between Auckland Airport company and Lufthansa Group company, which one has experienced at least one vulnerability ?

Neither Auckland Airport company nor Lufthansa Group company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between Auckland Airport company and Lufthansa Group company, which one holds the most compliance certifications ?

Neither Auckland Airport nor Lufthansa Group holds any compliance certifications.

Q: Between Auckland Airport company and Lufthansa Group company, which one has the most subsidiaries ?

Lufthansa Group company has more subsidiaries worldwide compared to Auckland Airport company.

Auckland Airport

undefined, undefined, undefined, undefined, NZ

Last Update: 2025-11-27

View Profile

Between 750 and 799

http://www.aucklandairport.co.nz

Over 50 years of welcoming the world to New Zealand. Auckland Airport is where we welcome visitors and farewell friends. It is where New Zealand touches the world. Over 70 per cent of visitors enter or leave New Zealand via Auckland Airport, which handles over 18.5 million passengers a year through 30 international airlines. Auckland Airport is a major driver of the New Zealand economy, generating billions of dollars, creating thousands of jobs, and making a vital contribution to New Zealand travel, trade and tourism by strengthening connections with the world. As New Zealand's major transport hub, Auckland Airport is investing in a traveller experience that all New Zealanders can be proud of. Auckland Airport is continually developing the capacity and services to ensure it will sustainably cope with an anticipated 40 million passengers a year by 2044, reflecting New Zealand’s growing popularity as one of the world’s leading tourism destinations.

NAICS: 481

NAICS Definition:

Employees: 743

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Lufthansa Group

Airportring, Frankfurt, -, 60546, DE

Last Update: 2025-11-21

Between 750 and 799

https://lufthansagroup.com

The Lufthansa Group is an aviation company with operations worldwide. It plays a leading role in its European home market. With 109,509 employees, the Lufthansa Group generated revenue of EUR 32.770m in the financial year 2022. The Passenger Airlines segment includes, on the one hand, the network airlines Lufthansa German Airlines, SWISS, Austrian Airlines and Brussels Airlines. As part of the multihub strategy, they offer their passengers a broad range of flights from their global hubs in Frankfurt, Munich and Zurich as well as their national hubs in Vienna and Brussels. Lufthansa German Airlines also includes the regional airlines Lufthansa CityLine, Air Dolomiti and Eurowings Discover, the Lufthansa Group’s holiday airline. Besides the network airlines, Eurowings also belongs to the Passenger Airlines segment. This airline provides a comprehensive range of point-to-point connections for European short-haul destinations, in particular from German-speaking countries. Besides its Passenger Airlines business segment, the Lufthansa Group also comprises aviation services. This includes the Logistics, MRO and Catering segments in particular. The Lufthansa Group also includes the Additional Businesses and Group Functions. These comprise Lufthansa Aviation Training and Lufthansa Systems especially.

NAICS: 481

NAICS Definition: Air Transportation

Employees: 54,173

Subsidiaries: 49

12-month incidents

0

Known data breaches

0

Attack type number

0

https://images.rankiteo.com/companyimages/auckland-international-airport-limited.jpeg

Auckland Airport

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Lufthansa Group

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Airlines and Aviation Industry Average (This Year)

No incidents recorded for Auckland Airport in 2025.

Incidents vs Airlines and Aviation Industry Average (This Year)

No incidents recorded for Lufthansa Group in 2025.

Incident History — Auckland Airport (X = Date, Y = Severity)

Auckland Airport cyber incidents detection timeline including parent company and subsidiaries

Incident History — Lufthansa Group (X = Date, Y = Severity)

Lufthansa Group cyber incidents detection timeline including parent company and subsidiaries

Auckland Airport

Incidents

No Incident

Lufthansa Group

Incidents

No Incident

Lufthansa Group company demonstrates a stronger AI Cybersecurity Score compared to Auckland Airport company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Lufthansa Group company has disclosed a higher number of cyber incidents compared to Auckland Airport company.

In the current year, Lufthansa Group company and Auckland Airport company have not reported any cyber incidents.

Neither Lufthansa Group company nor Auckland Airport company has reported experiencing a ransomware attack publicly.

Neither Lufthansa Group company nor Auckland Airport company has reported experiencing a data breach publicly.

Neither Lufthansa Group company nor Auckland Airport company has reported experiencing targeted cyberattacks publicly.

Neither Auckland Airport company nor Lufthansa Group company has reported experiencing or disclosing vulnerabilities publicly.

Neither Auckland Airport nor Lufthansa Group holds any compliance certifications.

Neither company holds any compliance certifications.

Lufthansa Group company has more subsidiaries worldwide compared to Auckland Airport company.

Lufthansa Group company employs more people globally than Auckland Airport company, reflecting its scale as a Airlines and Aviation.

Neither Auckland Airport nor Lufthansa Group holds SOC 2 Type 1 certification.

Neither Auckland Airport nor Lufthansa Group holds SOC 2 Type 2 certification.

Neither Auckland Airport nor Lufthansa Group holds ISO 27001 certification.

Neither Auckland Airport nor Lufthansa Group holds PCI DSS certification.

Neither Auckland Airport nor Lufthansa Group holds HIPAA certification.

Neither Auckland Airport nor Lufthansa Group holds GDPR certification.

Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss4

Base: 7.7

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss4

Base: 8.7

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss4

Base: 6.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Description

Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.

Published

Date

2025-11-26

Updated

Date

2025-11-26

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Auckland Airport

VS

Lufthansa Group

Auckland Airport

Lufthansa Group

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Airlines and Aviation Industry Average (This Year)

Incidents vs Airlines and Aviation Industry Average (This Year)

Incident History — Auckland Airport (X = Date, Y = Severity)

Incident History — Lufthansa Group (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-66035

Risk Information

CVE-2025-66031

Risk Information

CVE-2025-66030

Risk Information

CVE-2025-64344

Risk Information

CVE-2025-64335

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Auckland Airport

VS

Lufthansa Group

Auckland Airport

Lufthansa Group

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Airlines and Aviation Industry Average (This Year)

Incidents vs Airlines and Aviation Industry Average (This Year)

Incident History — Auckland Airport (X = Date, Y = Severity)

Incident History — Lufthansa Group (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between Auckland Airport company and Lufthansa Group company, which one has the best AI Cybersecurity Score ?

Between Auckland Airport company and Lufthansa Group company, which one has experienced more cyber incidents in the past ?

Between Auckland Airport company and Lufthansa Group company, which one has experienced more cyber incidents this year ?

Between Auckland Airport company and Lufthansa Group company, which one has experienced at least one ransomware attack ?

Between Auckland Airport company and Lufthansa Group company, which one has experienced at least one data breach ?

Between Auckland Airport company and Lufthansa Group company, which one has experienced at least one targeted cyberattack ?

Between Auckland Airport company and Lufthansa Group company, which one has experienced at least one vulnerability ?

Between Auckland Airport company and Lufthansa Group company, which one holds the most compliance certifications ?

Between Auckland Airport company and Lufthansa Group company, which one holds the fewest compliance certifications ?

Between Auckland Airport company and Lufthansa Group company, which one has the most subsidiaries ?

Between Auckland Airport company and Lufthansa Group company, which one has the largest number of employees ?

Between Auckland Airport and Lufthansa Group, which company holds both SOC 2 Type 1 certifications ?

Between Auckland Airport and Lufthansa Group, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Auckland Airport or Lufthansa Group ?

Which company is PCI DSS compliant — Auckland Airport or Lufthansa Group ?

Between Auckland Airport and Lufthansa Group, which company complies with HIPAA regulations for healthcare data ?

Between Auckland Airport and Lufthansa Group, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-66035

Risk Information

CVE-2025-66031

Risk Information

CVE-2025-66030

Risk Information

CVE-2025-64344

Risk Information

CVE-2025-64335

Risk Information