Comparison Overview

AutoZone

VS

Speedway

AutoZone

123 South Front Street, None, Memphis, TN, US, 38103
Last Update: 2025-12-11
View Profile
Between 750 and 799
https://careers.autozone.com/?src=SNS-10680

AutoZone is the nation's leading retailer and a leading distributor of automotive replacement parts and accessories with more than 7,000 stores in the US, Mexico, Brazil and Puerto Rico. Each store carries an extensive line for cars, sport utility vehicles, vans and light trucks, including new and remanufactured hard parts, maintenance items and accessories. AutoZone, headquartered in Memphis, TN, is a growing Fortune 300 company with a deep commitment to serving our customers, communities and fellow AutoZoners. We have vast opportunities in our stores, distribution centers, field offices, specialty business units and Store Support Center and embrace diverse experiences, backgrounds, knowledge and ideas to strengthen our teams and business. Our team is connected by a deep commitment to our Pledge and Values, principles established more than thirty years ago that reinforce our priorities and team culture. In addition, we constantly innovate and aspire to best serve our customers, creating new and better tools, training and outreach to serve both DIY and the professional installer customers. From in-store tools to E-Commerce, training and development to recognition, our team has the tools to help you grow your career at AutoZone. See where your drive can take you!

NAICS: 43
NAICS Definition: Retail Trade
Employees: 43,591
Subsidiaries: 1
12-month incidents
0
Known data breaches
1
Attack type number
2
View Profile

Speedway

500 Speedway Drive, Enon, OH, US, 45323
Last Update: 2025-12-09
Between 700 and 749
http://speedway.com/careers

Speedway operates across the U.S., predominately in the Midwest and East Coast. In May 2021, 7-Eleven acquired 3,800 Speedway Stores from Marathon Petroleum Corp., increasing 7-Eleven’s total number of stores to more than 13,000 in the U.S. and Canada and allowing 7-Eleven to bring convenience to more customers than ever before. Learn more about 7-Eleven and their family of brands here: https://corp.7-eleven.com/corp/about

NAICS: 43
NAICS Definition: Retail Trade
Employees: 18,314
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/autozone.jpeg
AutoZone
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/speedway.jpeg
Speedway
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
AutoZone
100%
Compliance Rate
0/4 Standards Verified
Speedway
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Retail Industry Average (This Year)

No incidents recorded for AutoZone in 2025.

Incidents vs Retail Industry Average (This Year)

No incidents recorded for Speedway in 2025.

Incident History — AutoZone (X = Date, Y = Severity)

AutoZone cyber incidents detection timeline including parent company and subsidiaries

Incident History — Speedway (X = Date, Y = Severity)

Speedway cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/autozone.jpeg
AutoZone
Incidents

Date Detected: 8/2023
Type:Vulnerability
Attack Vector: Vulnerability Exploitation
Blog: Blog

Date Detected: 5/2023
Type:Breach
Attack Vector: External Hacking
Blog: Blog
https://images.rankiteo.com/companyimages/speedway.jpeg
Speedway
Incidents

Date Detected: 4/2023
Type:Breach
Blog: Blog

FAQ

AutoZone company demonstrates a stronger AI Cybersecurity Score compared to Speedway company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

AutoZone company has faced a higher number of disclosed cyber incidents historically compared to Speedway company.

In the current year, Speedway company and AutoZone company have not reported any cyber incidents.

Neither Speedway company nor AutoZone company has reported experiencing a ransomware attack publicly.

Both Speedway company and AutoZone company have disclosed experiencing at least one data breach.

Neither Speedway company nor AutoZone company has reported experiencing targeted cyberattacks publicly.

AutoZone company has disclosed at least one vulnerability, while Speedway company has not reported such incidents publicly.

Neither AutoZone nor Speedway holds any compliance certifications.

Neither company holds any compliance certifications.

AutoZone company has more subsidiaries worldwide compared to Speedway company.

AutoZone company employs more people globally than Speedway company, reflecting its scale as a Retail.

Neither AutoZone nor Speedway holds SOC 2 Type 1 certification.

Neither AutoZone nor Speedway holds SOC 2 Type 2 certification.

Neither AutoZone nor Speedway holds ISO 27001 certification.

Neither AutoZone nor Speedway holds PCI DSS certification.

Neither AutoZone nor Speedway holds HIPAA certification.

Neither AutoZone nor Speedway holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 2.6
Severity: HIGH
AV:N/AC:H/Au:N/C:N/I:P/A:N
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References