Comparison Overview

Speedway

VS

lululemon

Speedway

500 Speedway Drive, Enon, OH, US, 45323
Last Update: 2025-12-09
View Profile
Between 700 and 749
http://speedway.com/careers

Speedway operates across the U.S., predominately in the Midwest and East Coast. In May 2021, 7-Eleven acquired 3,800 Speedway Stores from Marathon Petroleum Corp., increasing 7-Eleven’s total number of stores to more than 13,000 in the U.S. and Canada and allowing 7-Eleven to bring convenience to more customers than ever before. Learn more about 7-Eleven and their family of brands here: https://corp.7-eleven.com/corp/about

NAICS: 43
NAICS Definition: Retail Trade
Employees: 18,314
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

lululemon

1818 Cornwall Avenue, Vancouver, BC, V6J1C7, CA
Last Update: 2025-12-09
Between 800 and 849
https://corporate.lululemon.com/careers

If you are seeking a job opportunity with lululemon, please note that our recruiters will only contact candidates using an @lululemon.com email address. -- lululemon athletica inc. (NASDAQ:LULU) is a healthy lifestyle inspired athletic apparel company for yoga, running, training, and most other sweaty pursuits, creating transformational products and experiences which enable people to live a life they love. Setting the bar in technical fabrics and functional designs, lululemon works with yogis and athletes in local communities for continuous research and product feedback.

NAICS: 43
NAICS Definition: Retail Trade
Employees: 23,399
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/speedway.jpeg
Speedway
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/lululemon.jpeg
lululemon
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Speedway
100%
Compliance Rate
0/4 Standards Verified
lululemon
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Retail Industry Average (This Year)

No incidents recorded for Speedway in 2025.

Incidents vs Retail Industry Average (This Year)

No incidents recorded for lululemon in 2025.

Incident History — Speedway (X = Date, Y = Severity)

Speedway cyber incidents detection timeline including parent company and subsidiaries

Incident History — lululemon (X = Date, Y = Severity)

lululemon cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/speedway.jpeg
Speedway
Incidents

Date Detected: 4/2023
Type:Breach
Blog: Blog
https://images.rankiteo.com/companyimages/lululemon.jpeg
lululemon
Incidents

No Incident

FAQ

lululemon company demonstrates a stronger AI Cybersecurity Score compared to Speedway company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Speedway company has historically faced a number of disclosed cyber incidents, whereas lululemon company has not reported any.

In the current year, lululemon company and Speedway company have not reported any cyber incidents.

Neither lululemon company nor Speedway company has reported experiencing a ransomware attack publicly.

Speedway company has disclosed at least one data breach, while the other lululemon company has not reported such incidents publicly.

Neither lululemon company nor Speedway company has reported experiencing targeted cyberattacks publicly.

Neither Speedway company nor lululemon company has reported experiencing or disclosing vulnerabilities publicly.

Neither Speedway nor lululemon holds any compliance certifications.

Neither company holds any compliance certifications.

lululemon company has more subsidiaries worldwide compared to Speedway company.

lululemon company employs more people globally than Speedway company, reflecting its scale as a Retail.

Neither Speedway nor lululemon holds SOC 2 Type 1 certification.

Neither Speedway nor lululemon holds SOC 2 Type 2 certification.

Neither Speedway nor lululemon holds ISO 27001 certification.

Neither Speedway nor lululemon holds PCI DSS certification.

Neither Speedway nor lululemon holds HIPAA certification.

Neither Speedway nor lululemon holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 2.6
Severity: HIGH
AV:N/AC:H/Au:N/C:N/I:P/A:N
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References