Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download

Comparison Overview

Dufry GroupDufry Group
VS
IKEAIKEA
Dufry Group

Dufry Group

Brunngässlein 12, Basel, Basel Stadt, 4010, CH

Last Update: 14/12/2025

View Profile
Between 750 and 799
http://www.dufry.com
784/1000Fair

DUFRY GROUP – A LEADING GLOBAL TRAVEL RETAILER Dufry, founded in 1865 and headquartered in Basel, Switzerland, delivers a revolutionary Travel Experience to consumers worldwide by uniquely combining retail, food & beverage and digital. Our company addresses 2.3 billion...

NAICS:43
NAICS Definition:Retail Trade
Employees:4,802
Subsidiaries:5
12-month incidents
0
Known data breaches
0
Attack type number
0
IKEA

IKEA

Olof Palmestraat 1, Delft, Zuid-Holland, NL, 2616

Last Update: 02/06/2026

View Profile
Between 750 and 799
https://ikea.com/
766/1000Fair

The IKEA vision is to create a better everyday life for the many people. Our business idea is to offer well-designed, functional and affordable, high-quality home furnishing, produced with care for people and the environment. The IKEA Brand unites more than 200.000 co-...

NAICS:43
NAICS Definition:Retail Trade
Employees:94,730
Subsidiaries:2
12-month incidents
1
Known data breaches
3
Attack type number
2

Compliance Ranges Comparison

Based On Specific Ai Models Category
Dufry Group

Dufry Group

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA
IKEA

IKEA

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA

Benchmark & Cyber Underwriting Signals

Incidents vs Retail Industry Avg (This Year)

No incidents recorded for Dufry Group in 2026.

Incidents

Incidents vs Retail Industry Avg (This Year)

IKEA has 7.41% fewer incidents than the average of all companies with at least one recorded incident.

Incidents

Incident History - Dufry Group (X = Date, Y = Severity)

Dufry Group cyber incidents detection timeline including parent company and subsidiaries.

No timeline data available
R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Incident History - IKEA (X = Date, Y = Severity)

IKEA cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Notable Incidents

Last Cyber / HR Incidents / Global...
Dufry Group

Dufry Group

Incidents
No explicit notable incidents reported.
IKEA

IKEA

Incidents
🔒 Incident : Breach
IKE1780411817
🔒 Incident : Breach
IKE00291122
🔒 Incident : Breach
IKE201526822

FAQ

Between Dufry Group company and IKEA company, which one has the best AI Cybersecurity Score ?
Between Dufry Group company and IKEA company, which one has experienced more cyber incidents in the past ?
Between Dufry Group company and IKEA company, which one has experienced more cyber incidents this year ?
Between Dufry Group company and IKEA company, which one has experienced at least one ransomware attack ?
Between Dufry Group company and IKEA company, which one has experienced at least one data breach ?
Between Dufry Group company and IKEA company, which one has experienced at least one targeted cyberattack ?
Between Dufry Group company and IKEA company, which one has experienced at least one vulnerability ?
Between Dufry Group company and IKEA company, which one holds the most compliance certifications ?
Between Dufry Group company and IKEA company, which one holds the fewest compliance certifications ?
Between Dufry Group company and IKEA company, which one has the most subsidiaries ?
Between Dufry Group company and IKEA company, which one has the largest number of employees ?
Between Dufry Group and IKEA, which company holds both SOC 2 Type 1 certifications ?
Between Dufry Group and IKEA, which company holds both SOC 2 Type 2 certifications ?
Which company is ISO 27001 certified - Dufry Group or IKEA ?
Which company is PCI DSS compliant - Dufry Group or IKEA ?
Between Dufry Group and IKEA, which company complies with HIPAA regulations for healthcare data ?
Between Dufry Group and IKEA, which company complies with GDPR requirements ?

Latest Global CVEs

CVE-2026-9754
SUMMARY

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command

PUBLISHED
Date2026-06-09
UPDATED
Date2026-06-09
RISK INFORMATION (Score: 6.5)
CVSS3
Base Score: 6.5
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVSS4
Base Score: 7.1
Complexity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
3.6
EXPLOITABILITY
2.8
REFERENCES
CVE-2026-9753
SUMMARY

The $_internalApplyOplogUpdate aggregation pipeline stage can be used to execute a document diff containing a malformed binary diff to return memory out-of-bounds or crash the server. $_internalApplyOplogUpdate can be executed by any authenticated user with access to the aggregate command.

PUBLISHED
Date2026-06-09
UPDATED
Date2026-06-09
RISK INFORMATION (Score: 8.1)
CVSS3
Base Score: 8.1
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
CVSS4
Base Score: 7.2
Complexity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
5.2
EXPLOITABILITY
2.8
REFERENCES
CVE-2026-9752
SUMMARY

An authorized user could trigger a server crash by running a query with a 2dsphere index on a field that stores a GeoJSON GeometryCollection containing a Polygon with a strict-winding CRS. Strict-winding polygons are intentionally unsupported for indexing, but the guard that rejects them does not inspect members of a GeometryCollection, allowing the unsafe path to be reached which ends with an ensuing null-pointer dereference.

PUBLISHED
Date2026-06-09
UPDATED
Date2026-06-09
RISK INFORMATION (Score: 6.5)
CVSS3
Base Score: 6.5
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CVSS4
Base Score: 7.1
Complexity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
3.6
EXPLOITABILITY
2.8
REFERENCES
CVE-2026-9751
SUMMARY

The ldapQueryPassword parameter, when set through the runtime setParameter command, will log the new password to the mongod.log file in plain text.

PUBLISHED
Date2026-06-09
UPDATED
Date2026-06-09
RISK INFORMATION (Score: 5.5)
CVSS3
Base Score: 5.5
Complexity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CVSS4
Base Score: 6.8
Complexity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
3.6
EXPLOITABILITY
1.8
REFERENCES
CVE-2026-9750
SUMMARY

An authenticated user can cause a MongoDB server to crash or return incorrect results by creating documents that interfere with internal metadata processing during query execution. This stems from insufficient separation between user-controlled document fields and internal metadata in certain execution paths.

PUBLISHED
Date2026-06-09
UPDATED
Date2026-06-09
RISK INFORMATION (Score: 6.5)
CVSS3
Base Score: 6.5
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CVSS4
Base Score: 7.1
Complexity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
IMPACT SCORE
3.6
EXPLOITABILITY
2.8
REFERENCES