Comparison Overview

Grub Burger Bar

VS

The Wendy's Company

Grub Burger Bar

undefined, Austin, Texas, 77881, US
Last Update: 2025-05-06 (UTC)
Between 900 and 1000
http://www.grubkitchenandbar.com

Excellent

Weโ€™re passionate about great food, great drinks and great hospitality. We believe in fresh ingredients and big flavors, delivered by caring, friendly people. And we know that a lively environment makes it all feel and taste better. We achieve this by following our three values: Be Positive, Own It, and Grow. At Grub we use quality, fresh, and differentiating ingredients. -Our buns are baked from scratch every hour. -All of our sauces and dressings are homemade. #youdoyou Our Purpose is "Helping Motivated People Achieve Their Dreams"โ€‹ We do this by following our 3 core Values: -Be Positive - My Attitude Matters -Own It! - I am Responsible. -Grow - I create my own Circumstances In order to achieve an EXTRADORDINARY Customer Experience, our Purpose and Values are top priority! #hungryformore Of course you are! Check out our website: www.grubburgerbar.com

NAICS: 7225
NAICS Definition: Restaurants and Other Eating Places
Employees: 196
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

The Wendy's Company

1 Dave Thomas Blvd, None, Dublin, Ohio, US, 43017
Last Update: 2025-07-26 (UTC)

Excellent

Between 900 and 1000
http://www.wendys.com

Wendy's was founded in 1969 by Dave Thomas in Columbus, Ohio. Dave built his business on the premise, โ€œQuality Is Our Recipeยฎโ€, which remains the guidepost of the Wendy's system. Wendy's is best known for its made-to-order square hamburgers, using fresh, never frozen beef*, freshly-prepared salads, and other signature items like chili, baked potatoes and the Frostyยฎ dessert. The Wendy's Company (Nasdaq: WEN) is committed to doing the right thing and making a positive difference in the lives of others. This is most visible through the Company's support of the Dave Thomas Foundation for Adoptionยฎ and its signature Wendy's Wonderful Kidsยฎ program, which seeks to find a loving, forever home for every child in the North American foster care system. Today, Wendy's and its franchisees employ hundreds of thousands of people across more than 7,000 restaurants worldwide with a vision of becoming the world's most thriving and beloved restaurant brand. For details on franchising, connect with us at www.wendys.com/franchising.Visit www.wendys.com and www.squaredealblog.com for more information and connect with us on X and Instagram using @wendys, and on Facebook at www.facebook.com/wendys. *Fresh beef available in the contiguous U.S., Alaska, and Canada.

NAICS: 7225
NAICS Definition: Restaurants and Other Eating Places
Employees: 66,514
Subsidiaries: 0
12-month incidents
0
Known data breaches
3
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/grub-burger-bar.jpeg
Grub Burger Bar
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/wendys-international.jpeg
The Wendy's Company
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Grub Burger Bar
100%
Compliance Rate
0/4 Standards Verified
The Wendy's Company
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Restaurants Industry Average (This Year)

No incidents recorded for Grub Burger Bar in 2025.

Incidents vs Restaurants Industry Average (This Year)

No incidents recorded for The Wendy's Company in 2025.

Incident History โ€” Grub Burger Bar (X = Date, Y = Severity)

Grub Burger Bar cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” The Wendy's Company (X = Date, Y = Severity)

The Wendy's Company cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/grub-burger-bar.jpeg
Grub Burger Bar
Incidents

No Incident

https://images.rankiteo.com/companyimages/wendys-international.jpeg
The Wendy's Company
Incidents

Date Detected: 1/2016
Type:Breach
Blog: Blog

Date Detected: 01/2016
Type:Breach
Attack Vector: Payment Card Fraud
Motivation: Financial Gain
Blog: Blog

Date Detected: 12/2015
Type:Breach
Attack Vector: Malware on POS systems via compromised remote access credentials
Blog: Blog

FAQ

Both Grub Burger Bar company and The Wendy's Company company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

The Wendy's Company company has historically faced a number of disclosed cyber incidents, whereas Grub Burger Bar company has not reported any.

In the current year, The Wendy's Company company and Grub Burger Bar company have not reported any cyber incidents.

Neither The Wendy's Company company nor Grub Burger Bar company has reported experiencing a ransomware attack publicly.

The Wendy's Company company has disclosed at least one data breach, while Grub Burger Bar company has not reported such incidents publicly.

Neither The Wendy's Company company nor Grub Burger Bar company has reported experiencing targeted cyberattacks publicly.

Neither Grub Burger Bar company nor The Wendy's Company company has reported experiencing or disclosing vulnerabilities publicly.

Neither Grub Burger Bar company nor The Wendy's Company company has publicly disclosed detailed information about the number of their subsidiaries.

The Wendy's Company company employs more people globally than Grub Burger Bar company, reflecting its scale as a Restaurants.

Latest Global CVEs (Not Company-Specific)

Description

Formbricks is an open source qualtrics alternative. Prior to version 4.0.1, Formbricks is missing JWT signature verification. This vulnerability stems from a token validation routine that only decodes JWTs (jwt.decode) without verifying their signatures. Both the email verification token login path and the password reset server action use the same validator, which does not check the tokenโ€™s signature, expiration, issuer, or audience. If an attacker learns the victimโ€™s actual user.id, they can craft an arbitrary JWT with an alg: "none" header and use it to authenticate and reset the victimโ€™s password. This issue has been patched in version 4.0.1.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
References
Description

Apollo Studio Embeddable Explorer & Embeddable Sandbox are website embeddable software solutions from Apollo GraphQL. Prior to Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3, a cross-site request forgery (CSRF) vulnerability was identified. The vulnerability arises from missing origin validation in the client-side code that handles window.postMessage events. A malicious website can send forged messages to the embedding page, causing the victimโ€™s browser to execute arbitrary GraphQL queries or mutations against their GraphQL server while authenticated with the victimโ€™s cookies. This issue has been patched in Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:N
References
Description

A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /consulta-dispensas. Such manipulation leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in Portabilis i-Educar up to 2.10. Affected is an unknown function of the file /module/Api/aluno. This manipulation of the argument aluno_id causes improper authorization. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tencent WeKnora 0.1.0. This impacts the function testEmbeddingModel of the file /api/v1/initialization/embedding/test. The manipulation of the argument baseUrl results in server-side request forgery. The attack can be launched remotely. The exploit has been released to the public and may be exploited. It is advisable to upgrade the affected component. The vendor responds: "We have confirmed that the issue mentioned in the report does not exist in the latest releases".

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References