Company Details
five-guys-enterprises
11,242
59,050
7225
fiveguys.com
0
FIV_1344573
In-progress


Five Guys Enterprises Company CyberSecurity Posture
fiveguys.comHistory: *1986: The first Five Guys location opens in Arlington, VA. *1986 - 2001: Five Guys opens five locations around the DC metro-area and perfected their business of making burgers… and starts to build a cult-like following. * 2002: Five Guys decides DC metro-area residents shouldn't be the only ones to experience their burgers and start to franchise in Virginia and Maryland. * 2003: Five Guys sells out of franchise territory within 18 months and starts to open the rest of the country for franchise rights. * 2003 - 2012: Five Guys expands to over 1,000 locations in the U.S. and Canada. * In July 2013, Five Guys opens the first location outside of North America in London, England. * Our International HQ in Amsterdam, NL opened in 2016. * Today, we have more than 1,900 locations open in North America, Canada, UK, Middle East, Europe, APAC and growing.
Company Details
five-guys-enterprises
11,242
59,050
7225
fiveguys.com
0
FIV_1344573
In-progress
Between 700 and 749

FGE Global Score (TPRM)XXXX

Description: Five Guys Enterprises, LLC suffered a data breach after a cyberattack compromised confidential information related to individuals who applied to work for the company. An unauthorized party gained access to job applicants’ full names, Social Security numbers, driver’s license numbers and financial account information. Five Guys sent out data breach notification letters to all individuals after consumer data was leaked.


No incidents recorded for Five Guys Enterprises in 2026.
No incidents recorded for Five Guys Enterprises in 2026.
No incidents recorded for Five Guys Enterprises in 2026.
FGE cyber incidents detection timeline including parent company and subsidiaries

History: *1986: The first Five Guys location opens in Arlington, VA. *1986 - 2001: Five Guys opens five locations around the DC metro-area and perfected their business of making burgers… and starts to build a cult-like following. * 2002: Five Guys decides DC metro-area residents shouldn't be the only ones to experience their burgers and start to franchise in Virginia and Maryland. * 2003: Five Guys sells out of franchise territory within 18 months and starts to open the rest of the country for franchise rights. * 2003 - 2012: Five Guys expands to over 1,000 locations in the U.S. and Canada. * In July 2013, Five Guys opens the first location outside of North America in London, England. * Our International HQ in Amsterdam, NL opened in 2016. * Today, we have more than 1,900 locations open in North America, Canada, UK, Middle East, Europe, APAC and growing.


We're known for our huge restaurants and generous portions but we're so much more than that! Here, you'll have big opportunities to learn and grow your career, you can take pride in the work you do, be able to balance your life with the hours and schedule you need, and be part of a team committed to

Founded in 1982, Olive Garden is owned by Darden Restaurants, Inc. (NYSE:DRI), the world's largest company-owned and operated full-service restaurant company. With more than 800 restaurants, more than 92,000 employees and more than $3.5 billion in annual sales, Olive Garden is the leading restaurant
Jack in the Box has always been the place for those who live outside the box. Where you can try new things and order what you want when you want it. Now, let’s get to the facts! Did you know Jack in the Box was founded on February 21, 1951, by a businessman named Robert O. Peterson in San Diego, Cal

Since opening in 1969 in Seattle, Washington, Red Robin has welcomed Guests to our casual dining restaurants in the U.S. and Canada, connecting people around craveable food and fun in a relaxed, playful atmosphere. Our people are the foundation of our success. We aim to be an inclusive employer of

Darden’s family of restaurants features some of the most recognizable and successful brands in full-service dining — Olive Garden, LongHorn Steakhouse, Yard House, Ruth's Chris Steak House, Cheddar’s Scratch Kitchen, The Capital Grille, Chuy's, Seasons 52, Eddie V's and Bahama Breeze. We own and ope

Founded by Todd Graves in 1996 in Baton Rouge, La., RAISING CANE'S CHICKEN FINGERS has over 800 restaurants in 41 states, with many new restaurants under construction. The company has ONE LOVE®—craveable chicken finger meals—and is continually recognized for its unique business model and customer sa

The year is 1954. Dave and Jim*, two budding entrepreneurs, are on a mission to re-design the perfect broiler, one that will infuse flame-grilled goodness into every burger. And that's how our brand was born. Today the Burger King Corporation, its affiliates and its franchisees collectively operat
Pizza Hut, a subsidiary of Yum! Brands, Inc. (NYSE: YUM), was founded in 1958 in Wichita, Kansas, and is a global leader in the pizza category with nearly 20,000 restaurants in more than 110 markets and territories. The brand has earned a reputation as a trailblazer in innovation with the creation o

Founded in New Orleans in 1972, POPEYES® has more than 45 years of history and culinary tradition. Popeyes distinguishes itself with a unique New Orleans-style menu featuring spicy chicken, chicken tenders, fried shrimp, and other regional items. The chain's passion for its Louisiana heritage and fl
.png)
SVP of Mid-Market Sales Shelly Goodman outlines five things every small business owner should know in 2026.
Choosing the right office chair is crucial for taller and heavier individuals who need specialized support. To find the best big and tall...
Cybersecurity Ventures expects global cybercrime costs to grow by 15 percent per year over the next five years, reaching $10.5 trillion USD annually by 2025.
Stay ahead of threats with the latest Cybersecurity Trends. Discover cutting-edge strategies and technologies shaping the future of...
U.S. prosecutors have charged two rogue employees of a cybersecurity company that specializes in negotiating ransom payments to hackers on...
Palo Alto Networks's CEO Nikesh Arora discusses the guardrails enterprises need to have in place to give AI agents “arms and legs” for precision-use cases.
Online Recruitment magazine for HR Directors, Personnel Managers, Job Boards and Recruiters with information on the internet recruitment...
Five Guys, BJ's and other chain restaurants have been sued in Texas federal court by Smart Order LLC, which alleges that the eateries are...
Five Guys Burgers, which had a quiet start in Alexandria, Va., with five real guys behind the venture in 1986, has closed on a £185 million...

Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
The official website of Five Guys Enterprises is https://careers.fiveguys.com/us/en.
According to Rankiteo, Five Guys Enterprises’s AI-generated cybersecurity score is 746, reflecting their Moderate security posture.
According to Rankiteo, Five Guys Enterprises currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
According to Rankiteo, Five Guys Enterprises has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
According to Rankiteo, Five Guys Enterprises is not certified under SOC 2 Type 1.
According to Rankiteo, Five Guys Enterprises does not hold a SOC 2 Type 2 certification.
According to Rankiteo, Five Guys Enterprises is not listed as GDPR compliant.
According to Rankiteo, Five Guys Enterprises does not currently maintain PCI DSS compliance.
According to Rankiteo, Five Guys Enterprises is not compliant with HIPAA regulations.
According to Rankiteo,Five Guys Enterprises is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Five Guys Enterprises operates primarily in the Restaurants industry.
Five Guys Enterprises employs approximately 11,242 people worldwide.
Five Guys Enterprises presently has no subsidiaries across any sectors.
Five Guys Enterprises’s official LinkedIn profile has approximately 59,050 followers.
Five Guys Enterprises is classified under the NAICS code 7225, which corresponds to Restaurants and Other Eating Places.
Yes, Five Guys Enterprises has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/five-guys.
Yes, Five Guys Enterprises maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/five-guys-enterprises.
As of January 21, 2026, Rankiteo reports that Five Guys Enterprises has experienced 1 cybersecurity incidents.
Five Guys Enterprises has an estimated 4,880 peer or competitor companies worldwide.
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with data breach notification letters sent to all individuals..
Title: Five Guys Data Breach
Description: Five Guys Enterprises, LLC suffered a data breach after a cyberattack compromised confidential information related to individuals who applied to work for the company. An unauthorized party gained access to job applicants’ full names, Social Security numbers, driver’s license numbers and financial account information. Five Guys sent out data breach notification letters to all individuals after consumer data was leaked.
Type: Data Breach
Common Attack Types: The most common types of attacks the company has faced is Data Leak.

Data Compromised: Full names, Social security numbers, Driver’s license numbers, Financial account information
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Full Names, Social Security Numbers, Driver’S License Numbers, Financial Account Information and .

Entity Name: Five Guys Enterprises, LLC
Entity Type: Company
Industry: Restaurant

Communication Strategy: Data breach notification letters sent to all individuals

Type of Data Compromised: Full names, Social security numbers, Driver’s license numbers, Financial account information
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Data breach notification letters sent to all individuals.
Most Significant Data Compromised: The most significant data compromised in an incident were Full names, Social Security numbers, Driver’s license numbers, Financial account information and .
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Driver’s license numbers, Social Security numbers, Financial account information and Full names.
.png)
SummaryA command injection vulnerability (CWE-78) has been found to exist in the `wrangler pages deploy` command. The issue occurs because the `--commit-hash` parameter is passed directly to a shell command without proper validation or sanitization, allowing an attacker with control of `--commit-hash` to execute arbitrary commands on the system running Wrangler. Root causeThe commitHash variable, derived from user input via the --commit-hash CLI argument, is interpolated directly into a shell command using template literals (e.g., execSync(`git show -s --format=%B ${commitHash}`)). Shell metacharacters are interpreted by the shell, enabling command execution. ImpactThis vulnerability is generally hard to exploit, as it requires --commit-hash to be attacker controlled. The vulnerability primarily affects CI/CD environments where `wrangler pages deploy` is used in automated pipelines and the --commit-hash parameter is populated from external, potentially untrusted sources. An attacker could exploit this to: * Run any shell command. * Exfiltrate environment variables. * Compromise the CI runner to install backdoors or modify build artifacts. Credits Disclosed responsibly by kny4hacker. Mitigation * Wrangler v4 users are requested to upgrade to Wrangler v4.59.1 or higher. * Wrangler v3 users are requested to upgrade to Wrangler v3.114.17 or higher. * Users on Wrangler v2 (EOL) should upgrade to a supported major version.
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L).
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).

Get company history
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.