FGE
Company Details
Linkedin ID:
five-guys-enterprises
Employees number:
10,839
Number of followers:
57,802
NAICS:
7225
Industry Type:
Homepage:
fiveguys.com
IP Addresses:
0
Company ID:
FIV_1344573
Scan Status:
In-progress
Five Guys Enterprises Company CyberSecurity Posture
fiveguys.com
History: *1986: The first Five Guys location opens in Arlington, VA. *1986 - 2001: Five Guys opens five locations around the DC metro-area and perfected their business of making burgers… and starts to build a cult-like following. * 2002: Five Guys decides DC metro-area residents shouldn't be the only ones to experience their burgers and start to franchise in Virginia and Maryland. * 2003: Five Guys sells out of franchise territory within 18 months and starts to open the rest of the country for franchise rights. * 2003 - 2012: Five Guys expands to over 1,000 locations in the U.S. and Canada. * In July 2013, Five Guys opens the first location outside of North America in London, England. * Our International HQ in Amsterdam, NL opened in 2016. * Today, we have more than 1,900 locations open in North America, Canada, UK, Middle East, Europe, APAC and growing.
Five Guys Enterprises A.I CyberSecurity Scoring
FGE Risk Score (AI oriented)Between 700 and 749
FGE
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
FGE Global Score (TPRM)XXXX
FGE
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
FGE Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Five Guys Enterprises
Data Leak
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: Five Guys Enterprises, LLC suffered a data breach after a cyberattack compromised confidential information related to individuals who applied to work for the company. An unauthorized party gained access to job applicants’ full names, Social Security numbers, driver’s license numbers and financial account information. Five Guys sent out data breach notification letters to all individuals after consumer data was leaked.
FGE Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for FGE
Incidents vs Restaurants Industry Average (This Year)
No incidents recorded for Five Guys Enterprises in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Five Guys Enterprises in 2025.
Incident Types FGE vs Restaurants Industry Avg (This Year)
No incidents recorded for Five Guys Enterprises in 2025.
Incident History — FGE (X = Date, Y = Severity)
FGE cyber incidents detection timeline including parent company and subsidiaries
FGE Company Subsidiaries
History: *1986: The first Five Guys location opens in Arlington, VA. *1986 - 2001: Five Guys opens five locations around the DC metro-area and perfected their business of making burgers… and starts to build a cult-like following. * 2002: Five Guys decides DC metro-area residents shouldn't be the only ones to experience their burgers and start to franchise in Virginia and Maryland. * 2003: Five Guys sells out of franchise territory within 18 months and starts to open the rest of the country for franchise rights. * 2003 - 2012: Five Guys expands to over 1,000 locations in the U.S. and Canada. * In July 2013, Five Guys opens the first location outside of North America in London, England. * Our International HQ in Amsterdam, NL opened in 2016. * Today, we have more than 1,900 locations open in North America, Canada, UK, Middle East, Europe, APAC and growing.
Loading...
FGE Similar Companies
Groupe Bertrand
Créé il y a plus de 25 ans par Olivier Bertrand, le Groupe Bertrand est le 1er groupe de restauration et d'hôtellerie français et indépendant. Nous sommes positionnés sur l'ensemble des segments de la restauration commerciale et de l'hôtellerie avec plus de 1 100 établissements, 50 enseignes différe
Domino's
Domino’s is a purpose-inspired, performance-driven company powered by exceptional people who are committed to feeding the power of possible—one pizza at a time. Founded in 1960 with a single store in Ypsilanti, Michigan, Domino’s has grown into one of the most recognized and leading pizza brands in
Panda Restaurant Group
Panda Restaurant Group, the world leader in Asian dining experiences and parent company of Panda Express, Panda Inn, and Hibachi-San, is dedicated to becoming a world leader in people development. We are family-owned and operated with over 2,500 locations worldwide and more than 48,000 associates.
TGI Fridays
In 1965, TGI Fridays opened its first location in New York City. Today, there are 890 restaurants in 60 countries offering high quality, authentic American food and legendary drinks, bringing together all people from all places. The freeing and liberating spirit of "Friday" combined with our belief
Jollibee Group North America
Our Jollibee Group was founded in 1975 by Tony Tan Caktiong. With the help of his wife Grace, his family, and in-laws, they started everything with a small family business selling ice cream in the streets of Manila. Three years after starting, the family saw the opportunity for hot meals. They conve
Whataburger
On Aug. 8, 1950, an adventurous and determined entrepreneur named Harmon Dobson opened up the world’s first Whataburger on Ayers Street in Corpus Christi, Texas. He had a simple goal: to serve a burger so big it took two hands to hold and so good that after one bite customers would say, “What a burg
Yum China
Yum China Holdings, Inc. (the “Company” or “Yum China”) (NYSE: YUMC and HKEX: 9987) is China’s largest restaurant company with a mission to make every life taste beautiful. From a single restaurant in 1987, the Company now operates over 14,000 restaurants in over 1,900 cities and towns spa
Chili's
Chili's opened as a fun Dallas burger joint with a loyalty to happy hour and blue jeans. We prided ourselves on our humble beginnings, following a devotion to great food, warm hospitality and community spirit. Today, with restaurants all over the world, we continue to cook up the best in casual fare
Arby's
Arby’s, founded in 1964, is the second-largest sandwich restaurant brand in the world with more than 3,400 restaurants in seven countries. Arby’s is part of the Inspire Brands family of restaurants. For more information, visit Arbys.com and InspireBrands.com With the current growth and momentum of
.png)
FGE CyberSecurity News
November 17, 2025 02:26 AM
20 Emerging Cybersecurity Trends to Watch Out in 2026
Stay ahead of threats with the latest Cybersecurity Trends. Discover cutting-edge strategies and technologies shaping the future of...
October 21, 2025 07:00 AM
ThreatLocker Exec: ‘The Bad Guys Are Not Working 9 To 5’
'Anybody who's running an EDR who does not have MDR or 24x7 monitoring of the SOC is wasting your time. The bad guys are not working 9 to 5.
August 26, 2025 07:00 AM
5 Cybersecurity Issues Facing HR Departments and Measures That Should Be Implemented
Online Recruitment magazine for HR Directors, Personnel Managers, Job Boards and Recruiters with information on the internet recruitment...
July 31, 2025 07:00 AM
Top 5 Cloud Security Trends to Watch in 2025
Discover the top 5 cloud security trends in 2025 and learn how to future-proof your cloud strategy with best practices and SentinelOne.
July 25, 2025 07:00 AM
Five Guys Burgers Closes $250 Million Refinancing Deal in Europe
Five Guys Burgers, which had a quiet start in Alexandria, Va., with five real guys behind the venture in 1986, has closed on a £185 million...
May 22, 2025 07:00 AM
Gemspring acquires Goodyear's chemicals business, H.I.G. invests in cybersecurity
In a pre-holiday slowdown in dealmaking, we still saw private equity and credit investments involving polymer chemicals,...
May 21, 2025 07:00 AM
Broadcom Named One of America’s Best Cybersecurity Companies 2025
Newsweek and Statista R call Broadcom “most outstanding” across five critical security categories.
March 21, 2025 07:00 AM
Top 20 Cybersecurity Companies You Need to Know in 2025
The cybersecurity industry is constantly evolving. Learn about the top cybersecurity companies and what each does best.
March 18, 2025 07:00 AM
The 10 most innovative security companies of 2025
Why Huntress, Epirus, Shift5, and Nozomi Networks are among Fast Company's Most Innovative Companies in security for 2025.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
FGE CyberSecurity History Information
Official Website of Five Guys Enterprises
The official website of Five Guys Enterprises is https://careers.fiveguys.com/us/en.
Five Guys Enterprises’s AI-Generated Cybersecurity Score
According to Rankiteo, Five Guys Enterprises’s AI-generated cybersecurity score is 744, reflecting their Moderate security posture.
How many security badges does Five Guys Enterprises’ have ?
According to Rankiteo, Five Guys Enterprises currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Five Guys Enterprises have SOC 2 Type 1 certification ?
According to Rankiteo, Five Guys Enterprises is not certified under SOC 2 Type 1.
Does Five Guys Enterprises have SOC 2 Type 2 certification ?
According to Rankiteo, Five Guys Enterprises does not hold a SOC 2 Type 2 certification.
Does Five Guys Enterprises comply with GDPR ?
According to Rankiteo, Five Guys Enterprises is not listed as GDPR compliant.
Does Five Guys Enterprises have PCI DSS certification ?
According to Rankiteo, Five Guys Enterprises does not currently maintain PCI DSS compliance.
Does Five Guys Enterprises comply with HIPAA ?
According to Rankiteo, Five Guys Enterprises is not compliant with HIPAA regulations.
Does Five Guys Enterprises have ISO 27001 certification ?
According to Rankiteo,Five Guys Enterprises is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Five Guys Enterprises
Five Guys Enterprises operates primarily in the Restaurants industry.
Number of Employees at Five Guys Enterprises
Five Guys Enterprises employs approximately 10,839 people worldwide.
Subsidiaries Owned by Five Guys Enterprises
Five Guys Enterprises presently has no subsidiaries across any sectors.
Five Guys Enterprises’s LinkedIn Followers
Five Guys Enterprises’s official LinkedIn profile has approximately 57,802 followers.
NAICS Classification of Five Guys Enterprises
Five Guys Enterprises is classified under the NAICS code 7225, which corresponds to Restaurants and Other Eating Places.
Five Guys Enterprises’s Presence on Crunchbase
No, Five Guys Enterprises does not have a profile on Crunchbase.
Five Guys Enterprises’s Presence on LinkedIn
Yes, Five Guys Enterprises maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/five-guys-enterprises.
Cybersecurity Incidents Involving Five Guys Enterprises
As of November 27, 2025, Rankiteo reports that Five Guys Enterprises has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Five Guys Enterprises has an estimated 4,808 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Five Guys Enterprises ?
Incident Types: The types of cybersecurity incidents that have occurred include Data Leak.
How does Five Guys Enterprises detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an communication strategy with data breach notification letters sent to all individuals..
Incident Details
Can you provide details on each incident ?
Title: Five Guys Data Breach
Description: Five Guys Enterprises, LLC suffered a data breach after a cyberattack compromised confidential information related to individuals who applied to work for the company. An unauthorized party gained access to job applicants’ full names, Social Security numbers, driver’s license numbers and financial account information. Five Guys sent out data breach notification letters to all individuals after consumer data was leaked.
Type: Data Breach
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Data Leak.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach FIV22269123
Data Compromised: Full names, Social security numbers, Driver’s license numbers, Financial account information
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Full Names, Social Security Numbers, Driver’S License Numbers, Financial Account Information and .
Which entities were affected by each incident ?
Incident : Data Breach FIV22269123
Entity Name: Five Guys Enterprises, LLC
Entity Type: Company
Industry: Restaurant
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach FIV22269123
Communication Strategy: Data breach notification letters sent to all individuals
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach FIV22269123
Type of Data Compromised: Full names, Social security numbers, Driver’s license numbers, Financial account information
Investigation Status
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Data breach notification letters sent to all individuals.
Additional Questions
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Full names, Social Security numbers, Driver’s license numbers, Financial account information and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Full names, Social Security numbers, Driver’s license numbers and Financial account information.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=five-guys-enterprises' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
