Comparison Overview

Comerica Bank

VS

Intesa Sanpaolo

Comerica Bank

1717 Main Street, Dallas, TX, US, 75201
Last Update: 2025-12-09
View Profile
Between 750 and 799
http://www.comerica.com/

Comerica Incorporated (NYSE: CMA) is a financial services company headquartered in Dallas, Texas, strategically aligned by the Business Bank, the Retail Bank, and Wealth Management. The Business Bank provides companies of all sizes with an array of credit and non-credit financial products and services. The Retail Bank delivers personalized financial products and services to consumers. Wealth Management serves the needs of high net worth clients and institutions. Comerica’s approximately 8,000 colleagues focus on relationships, and helping people and businesses be successful. Comerica operates in seven of the 10 largest U.S. cities, with more than 430 banking centers in its primary markets of Texas, Arizona, California, Florida and Michigan. Select businesses operate in several other states, as well as in Canada and Mexico. Comerica is among the 25 largest U.S. banking companies. Visit Comerica's Facebook page at facebook.com/Comerica or on Twitter at @ComericaBank for more information on how Comerica is making a positive difference in the communities it serves. To learn more about Comerica’s products, services and career opportunities, visit Comerica.com.

NAICS: 52211
NAICS Definition: Commercial Banking
Employees: 11,077
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Intesa Sanpaolo

Piazza San Carlo 156, Turin, TO, 10121, IT
Last Update: 2025-12-09
Between 800 and 849
http://www.group.intesasanpaolo.com

Intesa Sanpaolo è il maggior gruppo bancario in Italia con una significativa presenza internazionale. Il suo business model distintivo la rende leader a livello europeo nel Wealth Management, Protection & Advisory e ne caratterizza l’orientamento al digitale. I’impegno in ambito ESG prevede, entro il 2025, €115 miliardi di finanziamenti impact e contributi per 500 milioni a supporto delle persone in difficoltà. Gallerie d’Italia, è la sede espositiva del patrimonio artistico della banca e di progetti artistici di riconosciuto valore. https://group.intesasanpaolo.com/it/ _______________ Intesa Sanpaolo is the largest banking group in Italy with a significant international presence. Its distinctive business model makes it a European leader in wealth management, protection and advisory and ensures its strong focus on digital. Its commitment to ESG foresees, by 2025, €115 billion of impact financing and contributions of €500 million to support people in need. Gallerie d'Italia, is the exhibition venue for the bank's artistic heritage and artistic projects of recognised value. https://group.intesasanpaolo.com/en/ _________________ Sede Legale: Piazza San Carlo 156, 10121 Torino – Sede Secondaria: Via Monte di Pietà 8, 20121 Milano Tel. 011 555.1 – mail: [email protected] pec: [email protected] Registro delle Imprese di Torino e Codice Fiscale 00799960158 – Partita Iva 10810700152 N. Iscr. Albo Banche 5361 N. Iscr. Registro degli Intermediari Assicurativi e Riassicurativi - Sez. D. 000027210, data di iscrizione 01.02.2007 - Intermediario soggetto alla vigilanza dell'IVASS: https://servizi.ivass.it/RuirPubblica Per la presentazione dei reclami e eventuali sistemi di risoluzione delle controversie https://www.intesasanpaolo.com/it/persone-e-famiglie/reclami.html. Per assistenza: https://www.intesasanpaolo.com/it/common/parla-con-noi.html. Netiquette: https://www.intesasanpaolo.com/it/common/landing/anti-phishing/netiquette.html

NAICS: 52211
NAICS Definition: Commercial Banking
Employees: 57,864
Subsidiaries: 5
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/comerica-bank.jpeg
Comerica Bank
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/intesa-sanpaolo.jpeg
Intesa Sanpaolo
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Comerica Bank
100%
Compliance Rate
0/4 Standards Verified
Intesa Sanpaolo
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Banking Industry Average (This Year)

No incidents recorded for Comerica Bank in 2025.

Incidents vs Banking Industry Average (This Year)

No incidents recorded for Intesa Sanpaolo in 2025.

Incident History — Comerica Bank (X = Date, Y = Severity)

Comerica Bank cyber incidents detection timeline including parent company and subsidiaries

Incident History — Intesa Sanpaolo (X = Date, Y = Severity)

Intesa Sanpaolo cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/comerica-bank.jpeg
Comerica Bank
Incidents

No Incident

https://images.rankiteo.com/companyimages/intesa-sanpaolo.jpeg
Intesa Sanpaolo
Incidents

No Incident

FAQ

Intesa Sanpaolo company demonstrates a stronger AI Cybersecurity Score compared to Comerica Bank company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Intesa Sanpaolo company has disclosed a higher number of cyber incidents compared to Comerica Bank company.

In the current year, Intesa Sanpaolo company and Comerica Bank company have not reported any cyber incidents.

Neither Intesa Sanpaolo company nor Comerica Bank company has reported experiencing a ransomware attack publicly.

Neither Intesa Sanpaolo company nor Comerica Bank company has reported experiencing a data breach publicly.

Neither Intesa Sanpaolo company nor Comerica Bank company has reported experiencing targeted cyberattacks publicly.

Neither Comerica Bank company nor Intesa Sanpaolo company has reported experiencing or disclosing vulnerabilities publicly.

Neither Comerica Bank nor Intesa Sanpaolo holds any compliance certifications.

Neither company holds any compliance certifications.

Intesa Sanpaolo company has more subsidiaries worldwide compared to Comerica Bank company.

Intesa Sanpaolo company employs more people globally than Comerica Bank company, reflecting its scale as a Banking.

Neither Comerica Bank nor Intesa Sanpaolo holds SOC 2 Type 1 certification.

Neither Comerica Bank nor Intesa Sanpaolo holds SOC 2 Type 2 certification.

Neither Comerica Bank nor Intesa Sanpaolo holds ISO 27001 certification.

Neither Comerica Bank nor Intesa Sanpaolo holds PCI DSS certification.

Neither Comerica Bank nor Intesa Sanpaolo holds HIPAA certification.

Neither Comerica Bank nor Intesa Sanpaolo holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References