Comparison Overview

Fifth Third Bank

VS

Capital One

Fifth Third Bank

38 Fountain Square Plaza, Cincinnati, Ohio, US, 45202
Last Update: 2025-12-09
View Profile
Between 750 and 799
http://www.53.com

At Fifth Third Bank, everything we do is rooted in our purpose: to improve the lives of our customers and the well-being of our communities. Since our founding in 1858, we’ve been committed to creating a better financial experience by empowering our customers and clients to achieve what matters most. Our unified strength is grounded in the individual passion and diversity of more than 20,000 employees who work collaboratively to deliver a better tomorrow to everyone we serve. We offer a strong culture, opportunities for growth 401k match, wellness options, comprehensive insurance plans and additional resources you need to build a lasting and rewarding career path here. Headquartered in Cincinnati, Ohio, we are among the largest money managers in the Midwest. We operate four main businesses—Commercial Banking, Branch Banking, Consumer Lending, and Wealth & Asset Management—and a network of financial centers in Ohio, Kentucky, Indiana, Michigan, Illinois, Florida, Tennessee, West Virginia, Georgia, North Carolina and South Carolina. Consumers also have access to approximately 54,000 Fifth Third fee-free ATMs across the United States. Fifth Third Bancorp is a diversified financial services company and is the indirect parent company of Fifth Third Bank, National Association, a federally chartered institution. Explore Fifth Third career opportunities at: https://www.53.com/content/fifth-third/en/careers.html Fifth Third Bank, N.A., Member FDIC. Fifth Third Bank is proud to be an affirmative action/equal opportunity employer. M/F/D/V

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 24,367
Subsidiaries: 9
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

Capital One

1680 Capital One Drive, McLean, Va, US, 22102
Last Update: 2025-12-09
Between 600 and 649
http://www.capitalone.com

At Capital One, we're making things better for our customers and associates through innovation and collaboration. We were founded on the belief that everyone deserves financial freedom—and are dedicated to a world where all have equal opportunity to prosper. Banking is in our DNA, but we are so much more than a bank. We always think about what’s next—and how we can bring our customers the tools needed to improve their financial lives. Your ideas, experiences and skills will help make banking better. You’ll be part of a supportive culture while earning amazing benefits. That’s life at Capital One. Capital One is an equal opportunity employer (EOE, including disability/vet) committed to non-discrimination in compliance with applicable federal, state, and local laws. View our Social Media Community Guidelines https://www.capitalone.com/digital/social-media/

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 81,373
Subsidiaries: 4
12-month incidents
1
Known data breaches
11
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/fifth-third-bank.jpeg
Fifth Third Bank
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/capital-one.jpeg
Capital One
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Fifth Third Bank
100%
Compliance Rate
0/4 Standards Verified
Capital One
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Financial Services Industry Average (This Year)

No incidents recorded for Fifth Third Bank in 2025.

Incidents vs Financial Services Industry Average (This Year)

Capital One has 20.48% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History — Fifth Third Bank (X = Date, Y = Severity)

Fifth Third Bank cyber incidents detection timeline including parent company and subsidiaries

Incident History — Capital One (X = Date, Y = Severity)

Capital One cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/fifth-third-bank.jpeg
Fifth Third Bank
Incidents

Date Detected: 02/2020
Type:Breach
Attack Vector: Insider Threat
Motivation: Unauthorized Access/Misuse of Information
Blog: Blog
https://images.rankiteo.com/companyimages/capital-one.jpeg
Capital One
Incidents

Date Detected: 5/2025
Type:Breach
Attack Vector: Misconfigured Firewall
Motivation: Data Theft
Blog: Blog

Date Detected: 2/2023
Type:Breach
Blog: Blog

Date Detected: 8/2022
Type:Breach
Attack Vector: Insider Wrongdoing
Blog: Blog

FAQ

Fifth Third Bank company demonstrates a stronger AI Cybersecurity Score compared to Capital One company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Capital One company has faced a higher number of disclosed cyber incidents historically compared to Fifth Third Bank company.

In the current year, Capital One company has reported more cyber incidents than Fifth Third Bank company.

Neither Capital One company nor Fifth Third Bank company has reported experiencing a ransomware attack publicly.

Both Capital One company and Fifth Third Bank company have disclosed experiencing at least one data breach.

Neither Capital One company nor Fifth Third Bank company has reported experiencing targeted cyberattacks publicly.

Neither Fifth Third Bank company nor Capital One company has reported experiencing or disclosing vulnerabilities publicly.

Neither Fifth Third Bank nor Capital One holds any compliance certifications.

Neither company holds any compliance certifications.

Fifth Third Bank company has more subsidiaries worldwide compared to Capital One company.

Capital One company employs more people globally than Fifth Third Bank company, reflecting its scale as a Financial Services.

Neither Fifth Third Bank nor Capital One holds SOC 2 Type 1 certification.

Neither Fifth Third Bank nor Capital One holds SOC 2 Type 2 certification.

Neither Fifth Third Bank nor Capital One holds ISO 27001 certification.

Neither Fifth Third Bank nor Capital One holds PCI DSS certification.

Neither Fifth Third Bank nor Capital One holds HIPAA certification.

Neither Fifth Third Bank nor Capital One holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References