Comparison Overview

The Arnott's Group

VS

Tiger Brands

The Arnott's Group

24 George st, North Strathfield, NSW, 2137, AU
Last Update: 2025-03-05 (UTC)
Between 800 and 900
https://www.arnotts.com/

Strong

The Arnottโ€™s Group is proud of its delicious and iconic portfolio of brands that continue the legacy begun by the Arnott family in 1865. Created locally, we provide quality, great-tasting food to delight consumers around the world. The Arnottโ€™s Group is headquartered in Sydney and employs approximately 4,000 people in markets across the Asia Pacific region. This includes manufacturing sites in NSW, QLD, VIC and SA as well as New Zealand, Malaysia and Indonesia. The Arnottโ€™s Group portfolio includes the iconic Arnottโ€™s brands along with Campbellโ€™s products in Australia, Malaysia, Hong Kong and Japan, a cereal and snacks division called Good Food Partners and the 180 degrees luxury biscuit brand.

NAICS: 30
NAICS Definition: Manufacturing
Employees: 1,492
Subsidiaries: 4
12-month incidents
0
Known data breaches
0
Attack type number
0

Tiger Brands

3010 William Nicol Drive Bryanston Sandton, Gauteng 2146, ZA
Last Update: 2025-03-14 (UTC)

Excellent

Between 900 and 1000
http://www.tigerbrands.com

Tiger Brands is one of Africaโ€šร„รดs largest listed manufacturers of fast-moving consumer goods (FMCG). Our core business is the manufacture, marketing and distribution of everyday branded food and beverages. Our iconic brands are well-known in South Africa, and our products cater for every meal and occasion. Our portfolio also includes leading brands in the home and personal care segments, and we have a growing presence in Africa. Our purpose is to nourish and nurture more lives every day. The Tiger Brands product range remain consumer favourites year-after-year including brands like Koo, Fattis and Monis, Jungle Oats, All Gold, Purity, Oros, Ingrams, Doom and Tastic Rice. Read our Privacy Policy here for when you share your contact information with us: https://www.tigerbrands.com/contact-us

NAICS: 339
NAICS Definition:
Employees: 10,001+
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/campbellarnotts.jpeg
The Arnott's Group
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/tiger-brands.jpeg
Tiger Brands
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
The Arnott's Group
100%
Compliance Rate
0/4 Standards Verified
Tiger Brands
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for The Arnott's Group in 2025.

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for Tiger Brands in 2025.

Incident History โ€” The Arnott's Group (X = Date, Y = Severity)

The Arnott's Group cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Tiger Brands (X = Date, Y = Severity)

Tiger Brands cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/campbellarnotts.jpeg
The Arnott's Group
Incidents

No Incident

https://images.rankiteo.com/companyimages/tiger-brands.jpeg
Tiger Brands
Incidents

No Incident

FAQ

Tiger Brands company company demonstrates a stronger AI risk posture compared to The Arnott's Group company company, reflecting its advanced AI governance and monitoring frameworks.

Historically, Tiger Brands company has disclosed a higher number of cyber incidents compared to The Arnott's Group company.

In the current year, Tiger Brands company and The Arnott's Group company have not reported any cyber incidents.

Neither Tiger Brands company nor The Arnott's Group company has reported experiencing a ransomware attack publicly.

Neither Tiger Brands company nor The Arnott's Group company has reported experiencing a data breach publicly.

Neither Tiger Brands company nor The Arnott's Group company has reported experiencing targeted cyberattacks publicly.

Neither The Arnott's Group company nor Tiger Brands company has reported experiencing or disclosing vulnerabilities publicly.

The Arnott's Group company has more subsidiaries worldwide compared to Tiger Brands company.

The Arnott's Group company employs more people globally than Tiger Brands company, reflecting its scale as a Manufacturing.

Latest Global CVEs (Not Company-Specific)

Description

Improper Protection Against Voltage and Clock Glitches in FPGA devices, could allow an attacker with physical access to undervolt the platform resulting in a loss of confidentiality.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss4
Base: 8.6
Severity: LOW
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Malicious code was inserted into the Nx (build system) package and several related plugins. The tampered package was published to the npm software registry, via a supply-chain attack. Affected versions contain code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 9.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
References
Description

Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References
Description

Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the /api/admin/assign-badge endpoint lacks proper access control, allowing any authenticated user to assign high-privilege badges (e.g., Staff) to themselves. This could lead to privilege escalation and impersonation of administrative roles. This issue has been patched in version 2.2.0.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
References
Description

parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeState function of parse version 5.3.0 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.

Published
Date
2025-09-24
Updated
Date
2025-09-24
References