Comparison Overview

Goldwind

VS

Vestas

Goldwind

#8, Boxing Yilu, BDA, Yizhuang Daxing District, Beijing 100176, CN
Last Update: 2025-12-25
View Profile
Between 750 and 799
http://www.goldwind.com

As a reliable global strategic partner in clean energy, Goldwind is committed Driving a Renewable Future and centering its business on Ecology-Oriented Development+ENERGY industry model. Goldwind’s global business network covers more than 40 countries across 6 continents. We have approximately 11,000 employees worldwide, including more than 3,000 research and development (R&D) and technical personnel. With high quality clean energy products, solutions, devices, services, Goldwind supports cities and enterprises alike with comprehensive and sustainable economic, ecological, and social development. As of Q3 2024, Goldwind has delivered more than 53,000 wind turbines worldwide and boasts a global cumulative installed capacity exceeding 128GW. Goldwind also has operations and maintenance (O&M) service capacity that exceeds 81GW. Goldwind is Innovating for a Brighter Tomorrow.

NAICS: 33362
NAICS Definition: Engines and Power Transmission Equipment Manufacturing
Employees: 10,001
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Vestas

Hedeager 42, Aarhus, 8200, DK
Last Update: 2025-12-25
Between 750 and 799
http://www.vestas.com/

Vestas is the energy industry’s global partner on sustainable energy solutions. We design, manufacture, install, and service wind turbines across the globe, and with +189 GW of wind turbines in 88 countries, we have installed more wind power than anyone else. Through our industry-leading smart data capabilities and +132 GW of wind turbines under service, we use data to interpret, forecast, and exploit wind resources and deliver best-in-class wind power solutions. Together with our customers, Vestas’ more than 30,000 employees are bringing the world sustainable energy solutions to power a bright future.

NAICS: 33362
NAICS Definition: Engines and Power Transmission Equipment Manufacturing
Employees: 31,615
Subsidiaries: 4
12-month incidents
0
Known data breaches
1
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/goldwind.jpeg
Goldwind
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/vestas.jpeg
Vestas
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Goldwind
100%
Compliance Rate
0/4 Standards Verified
Vestas
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Renewable Energy Equipment Manufacturing Industry Average (This Year)

No incidents recorded for Goldwind in 2025.

Incidents vs Renewable Energy Equipment Manufacturing Industry Average (This Year)

No incidents recorded for Vestas in 2025.

Incident History — Goldwind (X = Date, Y = Severity)

Goldwind cyber incidents detection timeline including parent company and subsidiaries

Incident History — Vestas (X = Date, Y = Severity)

Vestas cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/goldwind.jpeg
Goldwind
Incidents

No Incident

https://images.rankiteo.com/companyimages/vestas.jpeg
Vestas
Incidents

Date Detected: 11/2021
Type:Breach
Blog: Blog

FAQ

Vestas company demonstrates a stronger AI Cybersecurity Score compared to Goldwind company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Vestas company has historically faced a number of disclosed cyber incidents, whereas Goldwind company has not reported any.

In the current year, Vestas company and Goldwind company have not reported any cyber incidents.

Neither Vestas company nor Goldwind company has reported experiencing a ransomware attack publicly.

Vestas company has disclosed at least one data breach, while Goldwind company has not reported such incidents publicly.

Neither Vestas company nor Goldwind company has reported experiencing targeted cyberattacks publicly.

Neither Goldwind company nor Vestas company has reported experiencing or disclosing vulnerabilities publicly.

Neither Goldwind nor Vestas holds any compliance certifications.

Neither company holds any compliance certifications.

Vestas company has more subsidiaries worldwide compared to Goldwind company.

Vestas company employs more people globally than Goldwind company, reflecting its scale as a Renewable Energy Equipment Manufacturing.

Neither Goldwind nor Vestas holds SOC 2 Type 1 certification.

Neither Goldwind nor Vestas holds SOC 2 Type 2 certification.

Neither Goldwind nor Vestas holds ISO 27001 certification.

Neither Goldwind nor Vestas holds PCI DSS certification.

Neither Goldwind nor Vestas holds HIPAA certification.

Neither Goldwind nor Vestas holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contact_us.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

C-Kermit (aka ckermit) through 10.0 Beta.12 (aka 416-beta12) before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 8.9
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L
References
Description

Telenium Online Web Application is vulnerable due to a Perl script that is called to load the login page. Due to improper input validation, an attacker can inject arbitrary Perl code through a crafted HTTP request, leading to remote code execution on the server.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express (DX / AF Management Software) before 16.8-16.9.1 PA 2025-12, when collected maintenance data is accessible by a principal/authority other than ETERNUS SF Admin, allows an attacker to potentially affect system confidentiality, integrity, and availability.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 5.6
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
References
Description

ONLYOFFICE Docs before 9.2.1 allows XSS in the textarea of the comment editing form. This is related to DocumentServer.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 6.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
References