Comparison Overview

Fannie Mae

VS

M&T Bank

Fannie Mae

1100 15th St NW, Washington, 20005, US
Last Update: 2025-12-15
View Profile
Between 750 and 799
http://www.fanniemae.com

Fannie Mae creates opportunities for people to buy, refinance, or rent a home. We are a leading source of mortgage financing in all markets and at all times. We ensure the availability of affordable mortgage loans. The financing solutions we develop make homeownership and workforce rental housing a reality for millions of people. The work we do helps maintain the 30-year fixed-rate mortgage, which has dominated the housing market since the 1950s. This popular mortgage loan makes committing to purchasing a home easier. It gives homeowners stability and peace of mind by providing predictable mortgage payments over the life of the loan. Fannie Mae provides a reliable source of affordable mortgage credit that supports homebuyers and renters across the country. We continue to innovate and promote a stronger, safer, and more efficient housing finance system to support more opportunities for homebuyers and renters in communities throughout the nation. Join us to help shape the future of housing: http://fanniemae.com/careers. This LinkedIn company page is moderated. Before joining the conversation, please review our Social Media Guidelines: https://www.fanniemae.com/stay-connected.

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 12,400
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

M&T Bank

345 Main St., Buffalo, New York, 14203, US
Last Update: 2025-12-09
Between 750 and 799
http://www.mtb.com

Great companies have an enduring sense of purpose. At M&T, our purpose is a simple one: make a difference in people’s lives and uplift the diverse communities we serve. Founded in 1856 in Buffalo, NY we are now a top 11 full-service US-based commercial bank with a retail footprint across the east coast and wealth services available nationwide and abroad. As a bank, we offer advice, guidance, expertise, and solutions across the entire financial spectrum that combines M&T’s traditional banking services with the wealth management and institutional capabilities offered by Wilmington Trust. We are a community-minded organization with more than 167 years of experience. We serve customers, community, and colleagues whether they be across the street, across the state or across the country. As an employer of choice, we are proud to offer competitive benefits ranging from medical and retirement to forty hours of paid volunteer time, each year. Our core values drive the work we do – integrity, ownership, collaboration, curiosity, candor and we seek to further build upon our record of success by bringing in diverse talents and fresh skill sets while continuing to support the growth and development of all our team members. M&T Bank Corporation is an Equal Opportunity Employer, including disabilities and veterans.

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 28,729
Subsidiaries: 2
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/fanniemae.jpeg
Fannie Mae
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/m&t-bank.jpeg
M&T Bank
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Fannie Mae
100%
Compliance Rate
0/4 Standards Verified
M&T Bank
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Financial Services Industry Average (This Year)

No incidents recorded for Fannie Mae in 2025.

Incidents vs Financial Services Industry Average (This Year)

No incidents recorded for M&T Bank in 2025.

Incident History — Fannie Mae (X = Date, Y = Severity)

Fannie Mae cyber incidents detection timeline including parent company and subsidiaries

Incident History — M&T Bank (X = Date, Y = Severity)

M&T Bank cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/fanniemae.jpeg
Fannie Mae
Incidents

No Incident

https://images.rankiteo.com/companyimages/m&t-bank.jpeg
M&T Bank
Incidents

No Incident

FAQ

Fannie Mae company demonstrates a stronger AI Cybersecurity Score compared to M&T Bank company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, M&T Bank company has disclosed a higher number of cyber incidents compared to Fannie Mae company.

In the current year, M&T Bank company and Fannie Mae company have not reported any cyber incidents.

Neither M&T Bank company nor Fannie Mae company has reported experiencing a ransomware attack publicly.

Neither M&T Bank company nor Fannie Mae company has reported experiencing a data breach publicly.

Neither M&T Bank company nor Fannie Mae company has reported experiencing targeted cyberattacks publicly.

Neither Fannie Mae company nor M&T Bank company has reported experiencing or disclosing vulnerabilities publicly.

Neither Fannie Mae nor M&T Bank holds any compliance certifications.

Neither company holds any compliance certifications.

M&T Bank company has more subsidiaries worldwide compared to Fannie Mae company.

M&T Bank company employs more people globally than Fannie Mae company, reflecting its scale as a Financial Services.

Neither Fannie Mae nor M&T Bank holds SOC 2 Type 1 certification.

Neither Fannie Mae nor M&T Bank holds SOC 2 Type 2 certification.

Neither Fannie Mae nor M&T Bank holds ISO 27001 certification.

Neither Fannie Mae nor M&T Bank holds PCI DSS certification.

Neither Fannie Mae nor M&T Bank holds HIPAA certification.

Neither Fannie Mae nor M&T Bank holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References