Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download

Comparison Overview

MerckMerck
VS
MSDMSD
Merck

Merck

126 E Lincoln Ave, P.O. Box 2000, Rahway, New Jersey, US, 07065

Last Update: 20/05/2026

View Profile
Between 750 and 799
http://merck.us/2J2xAUh
798/1000Fair

At Merck, known as MSD outside of the United States and Canada, we are unified around our purpose: We use the power of leading-edge science to save and improve lives around the world. For more than 130 years, we have brought hope to humanity through the development of i...

NAICS:3254
NAICS Definition:Pharmaceutical and Medicine Manufacturing
Employees:44,762
Subsidiaries:2
12-month incidents
0
Known data breaches
1
Attack type number
2
MSD

MSD

90 E Scott Ave, Rahway, New Jersey, US, 07065

Last Update: 01/04/2026

View Profile
Between 750 and 799
http://www.msd.com
766/1000Fair

At MSD, known as Merck & Co., Inc., Rahway, NJ, USA in the United States and Canada, we are unified around our purpose: We use the power of leading-edge science to save and improve lives around the world. For more than 130 years, we have brought hope to humanity through...

NAICS:3254
NAICS Definition:Pharmaceutical and Medicine Manufacturing
Employees:40,830
Subsidiaries:39
12-month incidents
0
Known data breaches
1
Attack type number
1

Compliance Ranges Comparison

Based On Specific Ai Models Category
Merck

Merck

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA
MSD

MSD

-
ISO 27001Not verified
ISO 27001
-
SOC2 Type 1Not verified
SOC2 Type 1
-
SOC2 Type 2Not verified
SOC2 Type 2
-
GDPRNot verified
GDPR
-
PCI DSSNot verified
PCI DSS
-
HIPAANot verified
HIPAA

Benchmark & Cyber Underwriting Signals

Incidents vs Pharmaceutical Manufacturing Industry Avg (This Year)

No incidents recorded for Merck in 2026.

Incidents

Incidents vs Pharmaceutical Manufacturing Industry Avg (This Year)

No incidents recorded for MSD in 2026.

Incidents

Incident History - Merck (X = Date, Y = Severity)

Merck cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Incident History - MSD (X = Date, Y = Severity)

MSD cyber incidents detection timeline including parent company and subsidiaries.

R - Ransomware
C - Cyber Attack
D - Data Breach
V - Vulnerability

Notable Incidents

Last Cyber / HR Incidents / Global...
Merck

Merck

Incidents
🔒 Incident : Breach
MER3502435111825
🔒 Incident : Cyber Attack
MER1775377932
🔒 Incident : Cyber Attack
MER1502422
MSD

MSD

Incidents
🔒 Incident : Breach
MSD0602706111825

FAQ

Between Merck company and MSD company, which one has the best AI Cybersecurity Score ?
Between Merck company and MSD company, which one has experienced more cyber incidents in the past ?
Between Merck company and MSD company, which one has experienced more cyber incidents this year ?
Between Merck company and MSD company, which one has experienced at least one ransomware attack ?
Between Merck company and MSD company, which one has experienced at least one data breach ?
Between Merck company and MSD company, which one has experienced at least one targeted cyberattack ?
Between Merck company and MSD company, which one has experienced at least one vulnerability ?
Between Merck company and MSD company, which one holds the most compliance certifications ?
Between Merck company and MSD company, which one holds the fewest compliance certifications ?
Between Merck company and MSD company, which one has the most subsidiaries ?
Between Merck company and MSD company, which one has the largest number of employees ?
Between Merck and MSD, which company holds both SOC 2 Type 1 certifications ?
Between Merck and MSD, which company holds both SOC 2 Type 2 certifications ?
Which company is ISO 27001 certified - Merck or MSD ?
Which company is PCI DSS compliant - Merck or MSD ?
Between Merck and MSD, which company complies with HIPAA regulations for healthcare data ?
Between Merck and MSD, which company complies with GDPR requirements ?

Latest Global CVEs

CVE-2026-6676
SUMMARY

Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.27.12.

PUBLISHED
Date2026-06-12
UPDATED
Date2026-06-12
RISK INFORMATION (Score: 7.8)
CVSS3
Base Score: 7.8
Complexity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
IMPACT SCORE
5.9
EXPLOITABILITY
1.8
REFERENCES
CVE-2026-12068
SUMMARY

Information disclosure vulnerability in Avira Password Manager when used with Mozilla Firefox may allow a remote attacker operating a cross-origin iframe to obtain credentials autofilled for the parent web page via incorrect autofill field selection. This issue affects Avira Password Manager when used with Mozilla Firefox on Windows, macOS, and Linux.

PUBLISHED
Date2026-06-12
UPDATED
Date2026-06-12
RISK INFORMATION (Score: 7.4)
CVSS3
Base Score: 7.4
Complexity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
IMPACT SCORE
4
EXPLOITABILITY
2.8
REFERENCES
CVE-2025-9033
SUMMARY

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.76.

PUBLISHED
Date2026-06-12
UPDATED
Date2026-06-12
RISK INFORMATION (Score: 7.8)
CVSS3
Base Score: 7.8
Complexity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
IMPACT SCORE
5.9
EXPLOITABILITY
1.8
REFERENCES
CVE-2025-9032
SUMMARY

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.98.

PUBLISHED
Date2026-06-12
UPDATED
Date2026-06-12
RISK INFORMATION (Score: 7.8)
CVSS3
Base Score: 7.8
Complexity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
IMPACT SCORE
5.9
EXPLOITABILITY
1.8
REFERENCES
CVE-2025-14098
SUMMARY

Heap buffer out-of-bounds write vulnerability due to integer overflow in Avira Antivirus engine when scanning a malformed MS-DOS executable file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.104.

PUBLISHED
Date2026-06-12
UPDATED
Date2026-06-12
RISK INFORMATION (Score: 7.8)
CVSS3
Base Score: 7.8
Complexity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
IMPACT SCORE
5.9
EXPLOITABILITY
1.8
REFERENCES