Comparison Overview

Lakesmere Group

VS

GMR Group

Lakesmere Group

The Ring Tower Centre, Winnall, WInchester, SO23 7RZ, GB
Last Update: 2025-03-10 (UTC)
Between 900 and 1000
http://www.Lakesmere.com

Excellent

The Lakesmere Group comprises Lakesmere Limited (UK), McMullen Facades Ltd, Lakesmere Arabia LLC, Lakesmere Oman LLC, Lakesmere Middle East LLC (Dubai and Abu Dhabi) and Lakesmere Hong Kong. Providing the complete solution for the external building envelope, Lakesmere Group Limited has over 25 years’ experience of working with architects, specifiers, main contractors and suppliers in virtually every type of new build and refurbishment project. In 2012, The UK’s leading glass facades specialist McMullen became part of the Lakesmere Group providing expertise in unitised curtain walling and glass facades solutions. The Lakesmere Group currently has circa 900 employees worldwide. Group Turnover to year ending January 2016 grew to £118.5m and will be in excess of £120m in 2017. Lakesmere has built an enviable reputation in the construction industry to become the UK’s leading roofing, cladding and building envelope specialist contractor and manufacturer, with expertise in 3D/4D CAD design, BIM, project management and installation. Major clients include BAM Construction, Balfour Beatty, Carillion, Canary Wharf Contractors, Costain, Kier, Laing O’Rourke, Lendlease, Sir Robert McAlpine, Vinci and Wates. Lakesmere’s impressive project portfolio includes many high profile and iconic buildings such as the award-winning London Aquatics Centre, the new Heathrow Terminal 2 building, the National Graphene Institute, Canary Wharf Crossrail Station and The King Abdulaziz International Airport as well as numerous schools, hospitals, retail and leisure developments and commercial buildings. The company’s expertise and the skills of its workforce has led to numerous awards for excellence, including winning a Queen’s Award for Enterprise in 2015. The company places a strong emphasis on training, people development and business improvement and is ISO 14001 accredited.

NAICS: 23
NAICS Definition:
Employees: 104
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

GMR Group

New Udaan Bhawan, New Delhi, Delhi, 110037, IN
Last Update: 2025-05-06 (UTC)

Excellent

Between 900 and 1000
https://www.gmrgroup.in

GMR Group is a leading global infrastructure conglomerate with significant expertise in airports, energy, transportation, and urban infrastructure. GMR Airports is Asia’s largest private airport operator with the world’s 2nd largest passenger handling capacity (over 100 million annually). It operates key airports like Delhi, India’s largest and fastest-growing airport, Hyderabad, an innovative greenfield airport, and New Goa, India's first destination airport. Expanding its overseas footprint, the company is developing Kualanamu International Airport in Medan, Indonesia, (with Angkasa Pura II) and provides technical services to the renowned Mactan Cebu International in the Philippines. The Group is also currently developing two major greenfield airport projects in India and Greece. As a pioneer in implementing the path-breaking Aerotropolis concept in India, GMR Airports is also developing unique airport cities around its airports in Delhi, Hyderabad, and Goa. GMR Aero Technic is India’s largest integrated world-class third-party MRO and provides complete technical support to aircraft operators. GMR’s energy businesses have an installed capacity of over 3,000 MW capacity. With a significant focus on green energy, the company fosters sustainability by harnessing the power of wind, water, and sun for energy generation. The Transportation and Urban Infrastructure division focuses on surface transport projects including Roads, Railways, and Airstrips/ Runways. The Group’s EPC business is working on the design and construction of the prestigious Eastern Dedicated Freight Corridor project of DFCCI (Dedicated Freight Corridor Corporation of India). GMR Group is also developing a multi-focus Special Investment Region in Tamil Nadu. The GMR Varalakshmi Foundation, the group's CSR arm, aims to enhance people's lives by improving skills, education, and healthcare infrastructure, fostering a better quality of life generally wherever the Group has business presence.

NAICS: 23
NAICS Definition: Construction
Employees: 16,159
Subsidiaries: 16
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/lakesmere-building-envelope-specialists.jpeg
Lakesmere Group
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/gmr-group.jpeg
GMR Group
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
Lakesmere Group
100%
Compliance Rate
0/4 Standards Verified
GMR Group
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Construction Industry Average (This Year)

No incidents recorded for Lakesmere Group in 2025.

Incidents vs Construction Industry Average (This Year)

No incidents recorded for GMR Group in 2025.

Incident History — Lakesmere Group (X = Date, Y = Severity)

Lakesmere Group cyber incidents detection timeline including parent company and subsidiaries

Incident History — GMR Group (X = Date, Y = Severity)

GMR Group cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/lakesmere-building-envelope-specialists.jpeg
Lakesmere Group
Incidents

No Incident

https://images.rankiteo.com/companyimages/gmr-group.jpeg
GMR Group
Incidents

No Incident

FAQ

Both Lakesmere Group company and GMR Group company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, GMR Group company has disclosed a higher number of cyber incidents compared to Lakesmere Group company.

In the current year, GMR Group company and Lakesmere Group company have not reported any cyber incidents.

Neither GMR Group company nor Lakesmere Group company has reported experiencing a ransomware attack publicly.

Neither GMR Group company nor Lakesmere Group company has reported experiencing a data breach publicly.

Neither GMR Group company nor Lakesmere Group company has reported experiencing targeted cyberattacks publicly.

Neither Lakesmere Group company nor GMR Group company has reported experiencing or disclosing vulnerabilities publicly.

GMR Group company has more subsidiaries worldwide compared to Lakesmere Group company.

GMR Group company employs more people globally than Lakesmere Group company, reflecting its scale as a Construction.

Latest Global CVEs (Not Company-Specific)

Description

Formbricks is an open source qualtrics alternative. Prior to version 4.0.1, Formbricks is missing JWT signature verification. This vulnerability stems from a token validation routine that only decodes JWTs (jwt.decode) without verifying their signatures. Both the email verification token login path and the password reset server action use the same validator, which does not check the token’s signature, expiration, issuer, or audience. If an attacker learns the victim’s actual user.id, they can craft an arbitrary JWT with an alg: "none" header and use it to authenticate and reset the victim’s password. This issue has been patched in version 4.0.1.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
References
Description

Apollo Studio Embeddable Explorer & Embeddable Sandbox are website embeddable software solutions from Apollo GraphQL. Prior to Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3, a cross-site request forgery (CSRF) vulnerability was identified. The vulnerability arises from missing origin validation in the client-side code that handles window.postMessage events. A malicious website can send forged messages to the embedding page, causing the victim’s browser to execute arbitrary GraphQL queries or mutations against their GraphQL server while authenticated with the victim’s cookies. This issue has been patched in Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:N
References
Description

A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /consulta-dispensas. Such manipulation leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in Portabilis i-Educar up to 2.10. Affected is an unknown function of the file /module/Api/aluno. This manipulation of the argument aluno_id causes improper authorization. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tencent WeKnora 0.1.0. This impacts the function testEmbeddingModel of the file /api/v1/initialization/embedding/test. The manipulation of the argument baseUrl results in server-side request forgery. The attack can be launched remotely. The exploit has been released to the public and may be exploited. It is advisable to upgrade the affected component. The vendor responds: "We have confirmed that the issue mentioned in the report does not exist in the latest releases".

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References