Lonza vs Merck-group - Cyber Risk Comparison & Security Rating

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Comparison Overview

Lonza

Merck Group

Lonza

Muenchensteinerstr. 38, Basel, CH, 4002

Last Update: 01/04/2026

View Profile

Between 800 and 849

http://www.lonza.com

810/1000Good

Lonza is a pioneer and world leader in the CDMO industry, setting the pace with cutting-edge science, smart technology, and lean manufacturing. United by a common purpose, we turn our customers’ breakthrough innovations into viable therapies and manufacture the medicine...

NAICS:3254

NAICS Definition:Pharmaceutical and Medicine Manufacturing

Employees:18,683

Subsidiaries:4

12-month incidents

Known data breaches

Attack type number

Merck Group

Frankfurter Str. 250, Darmstadt, DE, 64293

Last Update: 07/04/2026

View Profile

Between 650 and 699

http://www.merckgroup.com

674/1000Weak

This channel is not intended for U.S. and Canadian visitors. Merck operates in the U.S. and Canada as EMD Serono in Healthcare, MilliporeSigma in Life Science and EMD Electronics in Electronics. An unaffiliated and unrelated company, Merck & Co., Inc., Kenilworth, NJ, U...

NAICS:3254

NAICS Definition:Pharmaceutical and Medicine Manufacturing

Employees:32,268

Subsidiaries:3

12-month incidents

Known data breaches

Attack type number

Compliance Ranges Comparison

Based On Specific Ai Models Category

Lonza

ISO 27001Not verified

SOC2 Type 1Not verified

SOC2 Type 2Not verified

GDPRNot verified

PCI DSSNot verified

HIPAANot verified

Merck Group

ISO 27001Not verified

SOC2 Type 1Not verified

SOC2 Type 2Not verified

GDPRNot verified

PCI DSSNot verified

HIPAANot verified

Benchmark & Cyber Underwriting Signals

Incidents vs Pharmaceutical Manufacturing Industry Avg (This Year)

No incidents recorded for Lonza in 2026.

Incidents

Incidents vs Pharmaceutical Manufacturing Industry Avg (This Year)

No incidents recorded for Merck Group in 2026.

Incidents

Incident History - Lonza (X = Date, Y = Severity)

Lonza cyber incidents detection timeline including parent company and subsidiaries.

No timeline data available

R - Ransomware

C - Cyber Attack

D - Data Breach

V - Vulnerability

Incident History - Merck Group (X = Date, Y = Severity)

Merck Group cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware

C - Cyber Attack

D - Data Breach

V - Vulnerability

Notable Incidents

Last Cyber / HR Incidents / Global...

Lonza

Incidents

No explicit notable incidents reported.

Merck Group

Incidents

🔒 Incident : Ransomware

MEREQUUNIMAEMGMGOOTOYSNOALLORARIPTIC1775528897

FAQ

Between Lonza company and Merck Group company, which one has the best AI Cybersecurity Score ?

Between Lonza company and Merck Group company, which one has experienced more cyber incidents in the past ?

Between Lonza company and Merck Group company, which one has experienced more cyber incidents this year ?

Between Lonza company and Merck Group company, which one has experienced at least one ransomware attack ?

Between Lonza company and Merck Group company, which one has experienced at least one data breach ?

Between Lonza company and Merck Group company, which one has experienced at least one targeted cyberattack ?

Between Lonza company and Merck Group company, which one has experienced at least one vulnerability ?

Between Lonza company and Merck Group company, which one holds the most compliance certifications ?

Between Lonza company and Merck Group company, which one holds the fewest compliance certifications ?

Between Lonza company and Merck Group company, which one has the most subsidiaries ?

Between Lonza company and Merck Group company, which one has the largest number of employees ?

Between Lonza and Merck Group, which company holds both SOC 2 Type 1 certifications ?

Between Lonza and Merck Group, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified - Lonza or Merck Group ?

Which company is PCI DSS compliant - Lonza or Merck Group ?

Between Lonza and Merck Group, which company complies with HIPAA regulations for healthcare data ?

Between Lonza and Merck Group, which company complies with GDPR requirements ?

Latest Global CVEs

CVE-2026-6676

SUMMARY

Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.27.12.

PUBLISHED

Date2026-06-12

UPDATED

Date2026-06-12

RISK INFORMATION (Score: 7.8)

CVSS3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

IMPACT SCORE

5.9

EXPLOITABILITY

1.8

REFERENCES

https://www.gendigital.com/us/en/contact-us/security-advisories/

CVE-2026-12068

SUMMARY

Information disclosure vulnerability in Avira Password Manager when used with Mozilla Firefox may allow a remote attacker operating a cross-origin iframe to obtain credentials autofilled for the parent web page via incorrect autofill field selection. This issue affects Avira Password Manager when used with Mozilla Firefox on Windows, macOS, and Linux.

PUBLISHED

Date2026-06-12

UPDATED

Date2026-06-12

RISK INFORMATION (Score: 7.4)

CVSS3

Base Score: 7.4

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

IMPACT SCORE

EXPLOITABILITY

2.8

REFERENCES

https://www.gendigital.com/us/en/contact-us/security-advisories/

CVE-2025-9033

SUMMARY

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.76.

PUBLISHED

Date2026-06-12

UPDATED

Date2026-06-12

RISK INFORMATION (Score: 7.8)

CVSS3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

IMPACT SCORE

5.9

EXPLOITABILITY

1.8

REFERENCES

https://www.gendigital.com/us/en/contact-us/security-advisories/

CVE-2025-9032

SUMMARY

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.98.

PUBLISHED

Date2026-06-12

UPDATED

Date2026-06-12

RISK INFORMATION (Score: 7.8)

CVSS3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

IMPACT SCORE

5.9

EXPLOITABILITY

1.8

REFERENCES

https://www.gendigital.com/us/en/contact-us/security-advisories/

CVE-2025-14098

SUMMARY

Heap buffer out-of-bounds write vulnerability due to integer overflow in Avira Antivirus engine when scanning a malformed MS-DOS executable file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.104.

PUBLISHED

Date2026-06-12

UPDATED

Date2026-06-12

RISK INFORMATION (Score: 7.8)

CVSS3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

IMPACT SCORE

5.9

EXPLOITABILITY

1.8

REFERENCES

https://www.gendigital.com/us/en/contact-us/security-advisories/