Comparison Overview

Lavazza

VS

VARUN BEVERAGES LIMITED

Lavazza

Via Bologna, 32, Turin, Piedmont 10152, IT
Last Update: 2025-03-21 (UTC)
View Profile
Between 750 and 799
https://www.lavazza.com/en/

From a small family-run business in Turin in 1895 to become one of the world’s most important roasters, at Lavazza we are dedicated to celebrating the Italian way of coffee with every cup. That means putting premium quality at the forefront and experimenting with imaginative new ways to experience coffee, just like our founder Luigi Lavazza did when he invented the art of blending and revolutionized the world of coffee. Every day we push ourselves to think outside the box, because we believe in creating experiences that extend far beyond the pleasure of an exceptional Italian espresso. Our business is rooted in our values and our entrepreneurial vision, which combines tradition, innovation and respect: for our people, for our collaborators and consumers around the world and for the environment. We operate in over 140 countries in Home, Away-from-Home and Office sectors (Foodservice, Vending and Coffee Shop Business), continuing to offer the world the same superior quality and excellence that has distinguished us ever since the beginning. Social Media Policy: https://www.lavazza.com/en/social-media-policy

NAICS: 722
NAICS Definition: Food Services and Drinking Places
Employees: 0
Subsidiaries: 14
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

VARUN BEVERAGES LIMITED

Plot No. 31 Sector 44 Gurugram, Haryana 122002, IN
Last Update: 2025-06-01 (UTC)
Between 800 and 849
https://varunbeverages.com

Varun Beverages Limited (VBL) is one of the top FMCG players in the Indian Market. We are on track towards strengthening our position in the global beverage industry with our presence in 14 countries in the Indian sub-continent and Africa - where we are responsible for producing popular brands like Pepsi, Mirinda, 7up, Mountain Dew, Slice, Aquafina, Sting, Tropicana, Gatorade, and many more and making them readily available at outlets near you. We are committed towards delivering a refreshing beverage experience to our consumers. VBL in India is the second-largest franchisee partner for PepsiCo (outside US) and is powered by #HungryForMore spirit of 10,000+ employees who contribute to making the VBL family stronger and bigger every-day. Life@VBL is about endless opportunities and maximizing learnings every-day. We take immense pride in our employees’ commitment, ownership, and spirit of #OneTeamOneDream. We are equally committed to ESG principles; focusing on environmental stewardship and actively participating in community initiatives demonstrate our dedication to giving back to the environment and society. Our robust governance framework ensures accountability and sustainability in everything we do. For more details, please visit our website.

NAICS: 722
NAICS Definition: Food Services and Drinking Places
Employees: 10,001+
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/defaultcompany.jpeg
Lavazza
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/varunbeverageslimited.jpeg
VARUN BEVERAGES LIMITED
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Lavazza
100%
Compliance Rate
0/4 Standards Verified
VARUN BEVERAGES LIMITED
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Food and Beverage Services Industry Average (This Year)

No incidents recorded for Lavazza in 2025.

Incidents vs Food and Beverage Services Industry Average (This Year)

No incidents recorded for VARUN BEVERAGES LIMITED in 2025.

Incident History — Lavazza (X = Date, Y = Severity)

Lavazza cyber incidents detection timeline including parent company and subsidiaries

Incident History — VARUN BEVERAGES LIMITED (X = Date, Y = Severity)

VARUN BEVERAGES LIMITED cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/defaultcompany.jpeg
Lavazza
Incidents

No Incident

https://images.rankiteo.com/companyimages/varunbeverageslimited.jpeg
VARUN BEVERAGES LIMITED
Incidents

No Incident

FAQ

VARUN BEVERAGES LIMITED company demonstrates a stronger AI Cybersecurity Score compared to Lavazza company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, VARUN BEVERAGES LIMITED company has disclosed a higher number of cyber incidents compared to Lavazza company.

In the current year, VARUN BEVERAGES LIMITED company and Lavazza company have not reported any cyber incidents.

Neither VARUN BEVERAGES LIMITED company nor Lavazza company has reported experiencing a ransomware attack publicly.

Neither VARUN BEVERAGES LIMITED company nor Lavazza company has reported experiencing a data breach publicly.

Neither VARUN BEVERAGES LIMITED company nor Lavazza company has reported experiencing targeted cyberattacks publicly.

Neither Lavazza company nor VARUN BEVERAGES LIMITED company has reported experiencing or disclosing vulnerabilities publicly.

Neither Lavazza nor VARUN BEVERAGES LIMITED holds any compliance certifications.

Neither company holds any compliance certifications.

Lavazza company has more subsidiaries worldwide compared to VARUN BEVERAGES LIMITED company.

Neither Lavazza company nor VARUN BEVERAGES LIMITED company has publicly disclosed the exact number of their employees.

Neither Lavazza nor VARUN BEVERAGES LIMITED holds SOC 2 Type 1 certification.

Neither Lavazza nor VARUN BEVERAGES LIMITED holds SOC 2 Type 2 certification.

Neither Lavazza nor VARUN BEVERAGES LIMITED holds ISO 27001 certification.

Neither Lavazza nor VARUN BEVERAGES LIMITED holds PCI DSS certification.

Neither Lavazza nor VARUN BEVERAGES LIMITED holds HIPAA certification.

Neither Lavazza nor VARUN BEVERAGES LIMITED holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘percentage’ parameter in all versions up to, and including, 5.4.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss3
Base: 6.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
References
Description

The ComboServlet in Liferay Portal 7.4.0 through 7.4.3.111, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.2, 2023.Q3.1 through 2023.Q3.5, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not limit the number or size of the files it will combine, which allows remote attackers to create very large responses that lead to a denial of service attack via the URL query string.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary directories on the target machine.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss3
Base: 4.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and create arbitrary directories on the target machine.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss3
Base: 4.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A relative path traversal vulnerability was discovered in Productivity Suite software version 4.4.1.19. The vulnerability allows an unauthenticated remote attacker to interact with the ProductivityService PLC simulator and delete arbitrary files on the target machine.

Published
Date
2025-10-23
Updated
Date
2025-10-23
Risk Information
cvss3
Base: 7.5
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H
cvss4
Base: 8.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:H/SC:N/SI:L/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References