Comparison Overview

Ferrara

VS

EssilorLuxottica

Ferrara

404 W Harrison St, Suite 650, Chicago, Illinois, US, 60607
Last Update: 2026-01-23
View Profile
Between 650 and 699
http://www.ferrarausa.com

We are Ferrara, an undisputed leader in sugar confections. Ferrara is #1 in the category in the US with ambitions of being the global leader by leveraging our focus, capabilities, and brand portfolio to drive category development for our community, customer, and consumers. Our diverse portfolio of two dozen brands includes SweeTARTS®, Trolli®, BRACH'S®, Black Forest® and NERDS®, along with iconic favorites like Lemonhead®, Red Hots® and Now and Later®. Headquartered in Chicago, Ferrara has over 4,000 dedicated employees and an operational network of over a dozen locations in North America that includes manufacturing, distribution, and R&D facilities.

NAICS: 30
NAICS Definition: Manufacturing
Employees: 2,064
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
2
View Profile

EssilorLuxottica

1-6, Rue Paul Cézanne, Paris, FR
Last Update: 2026-01-18
Between 800 and 849
https://www.essilorluxottica.com

We are EssilorLuxottica, a global leader in the design, manufacture and distribution of advanced vision care products, eyewear and med-tech solutions. Our Mission is to help people around the world to see more and be more by addressing their evolving vision needs, personal style aspirations and desire to feel more connected to the world around them. We are home to the most innovative lens technologies, including Varilux, Stellest and Transitions, iconic brands such as Ray-Ban, Oakley and Supreme, the most desired luxury licensed brands and world-class retailers including Sunglass Hut, LensCrafters, Vision Express and Apollo. Backed by robust R&D investments, distinctive capabilities and a top-quality asset portfolio, we drive innovation across categories, from cutting edge medical instruments and solutions for eye health to category-defining smart glasses, all of which push the boundaries of the industry and reimagine the eyes as a gateway to new possibilities. With over 200,000 employees across 150 countries, 600 operations facilities, serving 300,000 eye care professionals and operating 18,000 stores, the Group generated consolidated revenue of Euro 26.5 billion in 2024. Our OneSight EssilorLuxottica Foundation has given access to sustainable vision care to nearly 1 billion people in underserved communities. Our ambition is clear. We are building a platform where the eyes are the gateway to new possibilities – bridging the gap between the digital world and human experience. At EssilorLuxottica, we are Empowering Humans.

NAICS: 30
NAICS Definition: Manufacturing
Employees: 73,717
Subsidiaries: 34
12-month incidents
0
Known data breaches
3
Attack type number
3

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/ferrara-.jpeg
Ferrara
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/essilorluxottica.jpeg
EssilorLuxottica
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Ferrara
100%
Compliance Rate
0/4 Standards Verified
EssilorLuxottica
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for Ferrara in 2026.

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for EssilorLuxottica in 2026.

Incident History — Ferrara (X = Date, Y = Severity)

Ferrara cyber incidents detection timeline including parent company and subsidiaries

Incident History — EssilorLuxottica (X = Date, Y = Severity)

EssilorLuxottica cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/ferrara-.jpeg
Ferrara
Incidents

Date Detected: 9/2025
Type:Ransomware
Motivation: financial gain, operational disruption (timed to maximize pressure during peak season)
Blog: Blog

Date Detected: 10/2021
Type:Breach
Attack Vector: Unauthorized Access
Blog: Blog
https://images.rankiteo.com/companyimages/essilorluxottica.jpeg
EssilorLuxottica
Incidents

Date Detected: 05/2023
Type:Breach
Blog: Blog

Date Detected: 10/2020
Type:Ransomware
Attack Vector: Unknown
Motivation: Financial
Blog: Blog

Date Detected: 8/2020
Type:Cyber Attack
Blog: Blog

FAQ

EssilorLuxottica company demonstrates a stronger AI Cybersecurity Score compared to Ferrara company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

EssilorLuxottica company has faced a higher number of disclosed cyber incidents historically compared to Ferrara company.

In the current year, EssilorLuxottica company and Ferrara company have not reported any cyber incidents.

Both EssilorLuxottica company and Ferrara company have confirmed experiencing at least one ransomware attack.

Both EssilorLuxottica company and Ferrara company have disclosed experiencing at least one data breach.

EssilorLuxottica company has reported targeted cyberattacks, while Ferrara company has not reported such incidents publicly.

Neither Ferrara company nor EssilorLuxottica company has reported experiencing or disclosing vulnerabilities publicly.

Neither Ferrara nor EssilorLuxottica holds any compliance certifications.

Neither company holds any compliance certifications.

EssilorLuxottica company has more subsidiaries worldwide compared to Ferrara company.

EssilorLuxottica company employs more people globally than Ferrara company, reflecting its scale as a Manufacturing.

Neither Ferrara nor EssilorLuxottica holds SOC 2 Type 1 certification.

Neither Ferrara nor EssilorLuxottica holds SOC 2 Type 2 certification.

Neither Ferrara nor EssilorLuxottica holds ISO 27001 certification.

Neither Ferrara nor EssilorLuxottica holds PCI DSS certification.

Neither Ferrara nor EssilorLuxottica holds HIPAA certification.

Neither Ferrara nor EssilorLuxottica holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
References
Description

Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References
Description

Azure Entra ID Elevation of Privilege Vulnerability

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
References
Description

Moonraker is a Python web server providing API access to Klipper 3D printing firmware. In versions 0.9.3 and below, instances configured with the "ldap" component enabled are vulnerable to LDAP search filter injection techniques via the login endpoint. The 401 error response message can be used to determine whether or not a search was successful, allowing for brute force methods to discover LDAP entries on the server such as user IDs and user attributes. This issue has been fixed in version 0.10.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss4
Base: 2.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versions 3.7.0 and above allow an authenticated user to execute arbitrary system commands on the host server by injecting shell metacharacters into backup filenames. The BackupManager fails to sanitize the filenames of uploaded backups. The system persists user-uploaded files directly to the host filesystem using the raw originalname provided in the request. This allows an attacker to stage a file containing shell metacharacters (e.g., $(id).tar.gz) at a predictable path, which is later referenced during the restore process. The successful storage of the file is what allows the subsequent restore command to reference and execute it. This issue has been fixed in version 4.7.0.

Published
Date
2026-01-22
Updated
Date
2026-01-22
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
References