Comparison Overview

Mondelēz International

VS

Danone

Mondelēz International

Mondelēz International, Greater Chicago Area, IL, US, 60607
Last Update: 2025-12-11
View Profile
Between 800 and 849
https://www.mondelezinternational.com/?utm_source=linkedin.com&utm_medium=button&utm_campaign=Linkedin_homepage

Mondelēz International, Inc. (NASDAQ: MDLZ) is an American multinational confectionery, food, and beverage company based in Illinois which employs approximately 80,000 individuals around the world. Our Purpose Our purpose is to empower people to snack right. We will lead the future of snacking around the world by offering the right snack, for the right moment, made the right way. Our Brands We’re leading the future of snacking with iconic brands such as Oreo, belVita and LU biscuits; Cadbury Dairy Milk, Milka and Toblerone chocolate; Sour Patch Kids candy and Trident gum. Our People Our 80,000+ colleagues around the world are key to the success of our business. Our Values and Leadership Commitments of Love our Consumers and Brands, Grow Every Day, and Do What's Right shapes our culture – what we believe in, stand for, and what guides our actions and decisions. Great people and great brands. That’s who we are. Our Strategies We are uniquely positioned to lead the future of snacking with strong leadership in our categories, an unparalleled portfolio of global and local brands and a solid footprint in fast-growing markets. Aimed at delivering sustainable growth, our strategic plan is centered around three strategic priorities: • Growth: accelerate consumer-centric growth • Execution: drive operational excellence • Culture: build a winning growth culture

NAICS: 311
NAICS Definition: Food Manufacturing
Employees: 44,433
Subsidiaries: 2
12-month incidents
0
Known data breaches
0
Attack type number
2
View Profile

Danone

17 boulevard Haussmann, Paris, undefined, 75000, FR
Last Update: 2025-12-09
Between 800 and 849
http://www.danone.com

Danone is a leading global food and beverage company operating in three health-focused, fast-growing, and on-trend Categories: Essential Dairy & Plant-Based products, Waters, and Specialized Nutrition. With a long-standing mission of bringing health through food to as many people as possible, Danone aims to inspire healthier and more sustainable eating and drinking practices while committing to achieve measurable nutritional, social, societal, and environment impact. Danone has defined its “Renew” strategy to restore growth, competitiveness, and value creation for the long-term. With almost 90,000 employees, and products sold in over 120 markets, Danone generated €27.6 billion in sales in 2023. Danone’s portfolio includes leading international brands (Actimel, Activia, Alpro, Aptamil, Danette, Danio, Danonino, evian, Nutricia, Nutrilon, and Volvic, among others) as well as strong local and regional brands (including AQUA, Blédina, Bonafont, Cow & Gate, Mizone, Oikos and Silk). Listed on Euronext Paris and present on the OTCQX platform via an ADR (American Depositary Receipt) program, Danone is a component stock of leading sustainability indexes including the ones managed by Moody’s and Sustainalytics, as well as MSCI ESG Indexes, FTSE4Good Index Series, Bloomberg Gender Equality Index, and Access to Nutrition Index. Danone’s ambition is to be B CorpTM certified at a global level in 2025.

NAICS: 311
NAICS Definition: Food Manufacturing
Employees: 61,646
Subsidiaries: 12
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/mondelezinternational.jpeg
Mondelēz International
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/danone.jpeg
Danone
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Mondelēz International
100%
Compliance Rate
0/4 Standards Verified
Danone
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Food and Beverage Manufacturing Industry Average (This Year)

No incidents recorded for Mondelēz International in 2025.

Incidents vs Food and Beverage Manufacturing Industry Average (This Year)

No incidents recorded for Danone in 2025.

Incident History — Mondelēz International (X = Date, Y = Severity)

Mondelēz International cyber incidents detection timeline including parent company and subsidiaries

Incident History — Danone (X = Date, Y = Severity)

Danone cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/mondelezinternational.jpeg
Mondelēz International
Incidents

Date Detected: 2/2023
Type:Cyber Attack
Attack Vector: Phishing
Blog: Blog

Date Detected: 6/2017
Type:Ransomware
Attack Vector: Malware (NotPetya)
Blog: Blog
https://images.rankiteo.com/companyimages/danone.jpeg
Danone
Incidents

No Incident

FAQ

Danone company demonstrates a stronger AI Cybersecurity Score compared to Mondelēz International company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Mondelēz International company has historically faced a number of disclosed cyber incidents, whereas Danone company has not reported any.

In the current year, Danone company and Mondelēz International company have not reported any cyber incidents.

Mondelēz International company has confirmed experiencing a ransomware attack, while Danone company has not reported such incidents publicly.

Neither Danone company nor Mondelēz International company has reported experiencing a data breach publicly.

Mondelēz International company has reported targeted cyberattacks, while Danone company has not reported such incidents publicly.

Neither Mondelēz International company nor Danone company has reported experiencing or disclosing vulnerabilities publicly.

Neither Mondelēz International nor Danone holds any compliance certifications.

Neither company holds any compliance certifications.

Danone company has more subsidiaries worldwide compared to Mondelēz International company.

Danone company employs more people globally than Mondelēz International company, reflecting its scale as a Food and Beverage Manufacturing.

Neither Mondelēz International nor Danone holds SOC 2 Type 1 certification.

Neither Mondelēz International nor Danone holds SOC 2 Type 2 certification.

Neither Mondelēz International nor Danone holds ISO 27001 certification.

Neither Mondelēz International nor Danone holds PCI DSS certification.

Neither Mondelēz International nor Danone holds HIPAA certification.

Neither Mondelēz International nor Danone holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References