Brown, Lisle/Cummings
Last Update: 2025-12-05
Between 700 and 749
None
NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 13
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
Comparison Overview
Brown, Lisle/Cummings
VS
Allianz
Allianz
Last Update: 2025-12-09
Between 800 and 849
The Allianz Group is one of the world's leading insurers and asset managers with more than 100 million private and corporate customers in more than 70 countries. We are proud to be the Worldwide Insurance Partner of the Olympic & Paralympic Movements from 2021 until 2028 and to be recognized as one of the industry leaders in the Dow Jones Sustainability Index. Caring for our employees, their ambitions, dreams and challenges is what makes us a unique employer. Together we can build an environment where everyone feels empowered and has the confidence to explore, to grow and to shape a better future for our customers and the world around us. Join us and together, let’s care for tomorrow. Credits: https://www.allianz.com/en_GB/credits-allianz-se.html Follow us on: Twitter: twitter.com/Allianz Instagram: https://www.instagram.com/teamallianz Facebook: https://www.facebook.com/AllianzCareers Glassdoor: https://www.glassdoor.de/%C3%9Cberblick/Arbeit-bei-Allianz-EI_IE3062.11,18.htm Allianz Data Privacy Statement: https://www.allianz.com/en_GB/privacy-statement.html Allianz Careers Data Privacy Statement: https://careers.allianz.com/en_EN/footer/data-privacy.html LinkedIn Privacy Policy: https://www.linkedin.com/legal/privacy-policy LinkedIn General Terms: https://www.linkedin.com/legal/user-agreement
NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 147,457
Subsidiaries: 126
12-month incidents
0
Known data breaches
6
Attack type number
3
Compliance Badges Comparison
Security & Compliance Standards Overview
Brown, Lisle/Cummings
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Allianz
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Compliance Summary
Brown, Lisle/Cummings
100%
Compliance Rate
0/4 Standards Verified
Allianz
0%
Compliance Rate
0/4 Standards Verified
Benchmark & Cyber Underwriting Signals
Incidents vs Financial Services Industry Average (This Year)
No incidents recorded for Brown, Lisle/Cummings in 2025.
Incidents vs Financial Services Industry Average (This Year)
No incidents recorded for Allianz in 2025.
Incident History — Brown, Lisle/Cummings (X = Date, Y = Severity)
Brown, Lisle/Cummings cyber incidents detection timeline including parent company and subsidiaries
Incident History — Allianz (X = Date, Y = Severity)
Allianz cyber incidents detection timeline including parent company and subsidiaries
Notable Incidents
Last 3 Security & Risk Events by Company
Brown, Lisle/Cummings
Incidents
Allianz
Incidents
Date Detected: 10/2025
Type:Breach
Attack Vector: Third-party CRM compromise, Malware deployment (ransomware), Unauthorized access
Motivation: Data Theft, Financial Gain (likely)
Blog: Blog
Date Detected: 8/2025
Type:Ransomware
Attack Vector: Exploitation of Salesforce Instances, Data Exfiltration
Motivation: Financial Gain, Extortion, Data Theft for Resale or Fraud
Blog: Blog
Date Detected: 8/2025
Type:Cyber Attack
Attack Vector: Third-party cloud-based CRM system
Motivation: Data theft
Blog: Blog
FAQ
Allianz company demonstrates a stronger AI Cybersecurity Score compared to Brown, Lisle/Cummings company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.
Allianz company has faced a higher number of disclosed cyber incidents historically compared to Brown, Lisle/Cummings company.
In the current year, Allianz company has reported more cyber incidents than Brown, Lisle/Cummings company.
Allianz company has confirmed experiencing a ransomware attack, while Brown, Lisle/Cummings company has not reported such incidents publicly.
Both Allianz company and Brown, Lisle/Cummings company have disclosed experiencing at least one data breach.
Allianz company has reported targeted cyberattacks, while Brown, Lisle/Cummings company has not reported such incidents publicly.
Neither Brown, Lisle/Cummings company nor Allianz company has reported experiencing or disclosing vulnerabilities publicly.
Neither Brown, Lisle/Cummings nor Allianz holds any compliance certifications.
Neither company holds any compliance certifications.
Allianz company has more subsidiaries worldwide compared to Brown, Lisle/Cummings company.
Allianz company employs more people globally than Brown, Lisle/Cummings company, reflecting its scale as a Financial Services.
Neither Brown, Lisle/Cummings nor Allianz holds SOC 2 Type 1 certification.
Neither Brown, Lisle/Cummings nor Allianz holds SOC 2 Type 2 certification.
Neither Brown, Lisle/Cummings nor Allianz holds ISO 27001 certification.
Neither Brown, Lisle/Cummings nor Allianz holds PCI DSS certification.
Neither Brown, Lisle/Cummings nor Allianz holds HIPAA certification.
Neither Brown, Lisle/Cummings nor Allianz holds GDPR certification.
Latest Global CVEs (Not Company-Specific)
Description
Tuleap is a free and open source suite for management of software development and collaboration. Versions of Tuleap Community Edition prior to 17.0.99.1763126988 and Tuleap Enterprise Edition prior to 17.0-3 and 16.13-8 have missing CSRF protections which allow attackers to create or remove tracker triggers. This issue is fixed in Tuleap Community Edition version 17.0.99.1763126988 and Tuleap Enterprise Edition versions 17.0-3 and 16.13-8.
Risk Information
cvss3
Base: 4.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
References
- https://github.com/Enalean/tuleap/commit/71d427b0f7ed8fa269a5ee6f7a557cf3dfc99cd4
- https://github.com/Enalean/tuleap/security/advisories/GHSA-f2xv-x3g6-4j9p
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=71d427b0f7ed8fa269a5ee6f7a557cf3dfc99cd4
- https://tuleap.net/plugins/tracker/?aid=45618
Description
Tuleap is a free and open source suite for management of software development and collaboration. Tuleap Community Editon versions prior to 17.0.99.1762456922 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 are vulnerable to CSRF attacks through planning management API. Attackers have access to create, edit or remove plans. This issue is fixed in Tuleap Community Edition version 17.0.99.1762456922 and Tuleap Enterprise Edtion versions 17.0-2, 16.13-7 and 16.12-10.
Risk Information
cvss3
Base: 4.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
References
- https://github.com/Enalean/tuleap/commit/1734a7bb2964042310ddc3f6dd7b4c82eee27526
- https://github.com/Enalean/tuleap/security/advisories/GHSA-9h47-jg7r-ww7x
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=1734a7bb2964042310ddc3f6dd7b4c82eee27526
- https://tuleap.net/plugins/tracker/?aid=45592
Description
Tuleap is an Open Source Suite for management of software development and collaboration. Tuleap Community Edition versions below 17.0.99.1762444754 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 allow attackers trick victims into changing tracker general settings. This issue is fixed in version Tuleap Community Edition version 17.0.99.1762444754 and Tuleap Enterprise Edition versions 17.0-2, 16.13-7 and 16.12-10.
Risk Information
cvss3
Base: 4.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
References
- https://github.com/Enalean/tuleap/commit/993316dd6a291bb3937cb7a4571eaab0e7d55370
- https://github.com/Enalean/tuleap/security/advisories/GHSA-vxfh-h8p6-p5rg
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=993316dd6a291bb3937cb7a4571eaab0e7d55370
- https://tuleap.net/plugins/tracker/?aid=45593
Description
Tuleap is an Open Source Suite for management of software development and collaboration. Versions below 17.0.99.1762431347 of Tuleap Community Edition and Tuleap Enterprise Edition below 17.0-2, 16.13-7 and 16.12-10 allow attackers to access file release system information in projects they do not have access to. This issue is fixed in version 17.0.99.1762431347 of the Tuleap Community Edition and versions 17.0-2, 16.13-7 and 16.12-10 of Tuleap Enterprise Edition.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
References
- https://github.com/Enalean/tuleap/commit/403eb69f4cfafe52254c8f9bdbe66e1fedadc254
- https://github.com/Enalean/tuleap/security/advisories/GHSA-v6vm-6rxf-7p2v
- https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=403eb69f4cfafe52254c8f9bdbe66e1fedadc254
- https://tuleap.net/plugins/tracker/?aid=45583
Description
IBM watsonx.data 2.2 through 2.2.1 could allow an authenticated user to cause a denial of service through ingestion pods due to improper allocation of resources without limits.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
