El Burrito Mexican Restaurant
Last Update: 2026-04-04
Between 750 and 799
None
NAICS: 7211
NAICS Definition: Traveler Accommodation
Employees: 28
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
Comparison Overview
El Burrito Mexican Restaurant
VS
Hyatt
Hyatt
Last Update: 2026-04-02
Between 550 and 599
Hyatt is guided by its purpose: to care for people so they can be their best. Hyatt’s portfolio includes 1,000+ hotel and all-inclusive properties in over 75 countries across 6 continents. Hyatt’s offerings include brands in the Timeless Collection, including Park Hyatt®, Grand Hyatt®, Hyatt Regency®, Hyatt®, Hyatt Residence Club®, Hyatt Place®, Hyatt House®, Hyatt Studios, and UrCove; the Boundless Collection, including Miraval®, Alila®, Andaz®, Thompson Hotels®, Dream® Hotels, Hyatt Centric®, and Caption by Hyatt®, the Independent Collection, including The Unbound Collection by Hyatt®, Destination by Hyatt®, and JdV by Hyatt®, and the Inclusive Collection, including Impression by Secrets, Hyatt Ziva®, Hyatt Zilara®, Zoëtry® Wellness & Spa Resorts, Secrets® Resorts & Spas, Breathless Resorts & Spas®, Dreams® Resorts & Spas, Hyatt Vivid Hotels & Resorts, Alua Hotels & Resorts®, and Sunscape® Resorts & Spas. Subsidiaries of Hyatt operate the World of Hyatt® loyalty program, ALG Vacations®, Unlimited Vacation Club®, Amstar DMC destination management services, and Trisept Solutions® technology services. Visit www.hyatt.com for more. This account provides information about Hyatt Hotels Corporation, its subsidiaries or affiliates and/or hotels operating under a Hyatt-affiliated brand. Terms like “Hyatt,” “we,” “our,” “us,” and similar terms are used for convenience and should not be understood as precise designations of any particular entity. The account name and certain terms like “employees” are used by this site but may not be accurate. Individuals may identify themselves as working or having worked at Hyatt or a Hyatt hotel, but please note that self-identification should not be treated as confirmation of employment, past or present, by Hyatt or any particular entity or hotel. In some cases, an individual may have been employed by an affiliate of Hyatt Hotels Corporation or by an owner or franchisee of a Hyatt-branded hotel.
NAICS: 7211
NAICS Definition: Traveler Accommodation
Employees: 89,774
Subsidiaries: 43
12-month incidents
0
Known data breaches
5
Attack type number
2
Compliance Badges Comparison
Security & Compliance Standards Overview
El Burrito Mexican Restaurant
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Hyatt
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Compliance Summary
El Burrito Mexican Restaurant
100%
Compliance Rate
0/4 Standards Verified
Hyatt
0%
Compliance Rate
0/4 Standards Verified
Benchmark & Cyber Underwriting Signals
Incidents vs Hospitality Industry Average (This Year)
No incidents recorded for El Burrito Mexican Restaurant in 2026.
Incidents vs Hospitality Industry Average (This Year)
No incidents recorded for Hyatt in 2026.
Incident History — El Burrito Mexican Restaurant (X = Date, Y = Severity)
El Burrito Mexican Restaurant cyber incidents detection timeline including parent company and subsidiaries
Incident History — Hyatt (X = Date, Y = Severity)
Hyatt cyber incidents detection timeline including parent company and subsidiaries
Notable Incidents
Last 3 Security & Risk Events by Company
El Burrito Mexican Restaurant
Incidents
No Incident
Hyatt
Incidents
Date Detected: 2/2025
Type:Breach
Attack Vector: Misconfigured AWS S3 bucket
Motivation: Opportunistic (unauthorized access due to misconfiguration)
Blog: Blog
FAQ
El Burrito Mexican Restaurant company demonstrates a stronger AI Cybersecurity Score compared to Hyatt company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.
Hyatt company has historically faced a number of disclosed cyber incidents, whereas El Burrito Mexican Restaurant company has not reported any.
In the current year, Hyatt company and El Burrito Mexican Restaurant company have not reported any cyber incidents.
Hyatt company has confirmed experiencing a ransomware attack, while El Burrito Mexican Restaurant company has not reported such incidents publicly.
Hyatt company has disclosed at least one data breach, while El Burrito Mexican Restaurant company has not reported such incidents publicly.
Neither Hyatt company nor El Burrito Mexican Restaurant company has reported experiencing targeted cyberattacks publicly.
Neither El Burrito Mexican Restaurant company nor Hyatt company has reported experiencing or disclosing vulnerabilities publicly.
Neither El Burrito Mexican Restaurant nor Hyatt holds any compliance certifications.
Neither company holds any compliance certifications.
Hyatt company has more subsidiaries worldwide compared to El Burrito Mexican Restaurant company.
Hyatt company employs more people globally than El Burrito Mexican Restaurant company, reflecting its scale as a Hospitality.
Neither El Burrito Mexican Restaurant nor Hyatt holds SOC 2 Type 1 certification.
Neither El Burrito Mexican Restaurant nor Hyatt holds SOC 2 Type 2 certification.
Neither El Burrito Mexican Restaurant nor Hyatt holds ISO 27001 certification.
Neither El Burrito Mexican Restaurant nor Hyatt holds PCI DSS certification.
Neither El Burrito Mexican Restaurant nor Hyatt holds HIPAA certification.
Neither El Burrito Mexican Restaurant nor Hyatt holds GDPR certification.
Latest Global CVEs (Not Company-Specific)
Description
nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers assume that the history index is always available and call blockchain.history_store.history_index().unwrap() directly. That assumption is false by construction. HistoryStoreProxy::history_index() explicitly returns None for the valid HistoryStoreProxy::WithoutIndex state. when a full node is syncing or otherwise running without the history index, a remote peer can send RequestTransactionsProof or RequestTransactionReceiptsByAddress and trigger an Option::unwrap() panic on the request path. This issue has been patched in version 1.3.0.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Description
PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.
Risk Information
cvss3
Base: 8.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, OAuthManager.validate_token() returns True for any token not found in its internal store, which is empty by default. Any HTTP request to the MCP server with an arbitrary Bearer token is treated as authenticated, granting full access to all registered tools and agent capabilities. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Description
PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re engine, blocking the Python thread for hundreds of seconds and causing a complete service outage. This issue has been patched in version 4.5.90.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
