Co-op
Last Update: 2025-11-27
Between 0 and 549
Owned by you. Right by you.
NAICS: 43
NAICS Definition: Retail Trade
Employees: 20,246
Subsidiaries: 5
12-month incidents
9
Known data breaches
0
Attack type number
2
Comparison Overview
Co-op
VS
Mercadona
Mercadona
Last Update: 2025-11-25
Between 800 and 849
Mercadona is a leading company of physical supermarkets in Spain with an online service, with over 1,600 stores and more than 5.7 million households as customers. Additionally, it has more than 30 stores in Portugal, with a presence in nine different districts. A family-owned company, its objective is to offer its customers the best solutions with the maximum quality in food, personal care, home care and pet care. Mercadona has the best talent: a workforce of 99,000 highly committed individuals, 3,500 of them in Portugal, who share the Mercadona Model and a passion for service excellence. To achieve this, the company has a pioneering human resources policy which sets it apart in the industry, offering stable, quality employment, continuous training plans, the opportunity for internal promotion and other values. The Mercadona Model is an innovative, shared and sustainable growth project that aims to satisfy all five components of the company equally, every day: “The Boss” (customers), The Employee, The Supplier, Society and Capital.
NAICS: 43
NAICS Definition: Retail Trade
Employees: 27,271
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0
Compliance Badges Comparison
Security & Compliance Standards Overview
Co-op
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Mercadona
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Compliance Summary
Co-op
100%
Compliance Rate
0/4 Standards Verified
Mercadona
0%
Compliance Rate
0/4 Standards Verified
Benchmark & Cyber Underwriting Signals
Incidents vs Retail Industry Average (This Year)
Co-op has 2471.43% more incidents than the average of same-industry companies with at least one recorded incident.
Incidents vs Retail Industry Average (This Year)
No incidents recorded for Mercadona in 2025.
Incident History — Co-op (X = Date, Y = Severity)
Co-op cyber incidents detection timeline including parent company and subsidiaries
Incident History — Mercadona (X = Date, Y = Severity)
Mercadona cyber incidents detection timeline including parent company and subsidiaries
Notable Incidents
Last 3 Security & Risk Events by Company
Co-op
Incidents
Date Detected: 10/2025
Type:Ransomware
Attack Vector: third-party vulnerability, supply chain compromise
Motivation: financial gain, data exfiltration, operational disruption
Blog: Blog
Mercadona
Incidents
No Incident
FAQ
Mercadona company demonstrates a stronger AI Cybersecurity Score compared to Co-op company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.
Co-op company has historically faced a number of disclosed cyber incidents, whereas Mercadona company has not reported any.
In the current year, Co-op company has reported more cyber incidents than Mercadona company.
Co-op company has confirmed experiencing a ransomware attack, while Mercadona company has not reported such incidents publicly.
Neither Mercadona company nor Co-op company has reported experiencing a data breach publicly.
Co-op company has reported targeted cyberattacks, while Mercadona company has not reported such incidents publicly.
Neither Co-op company nor Mercadona company has reported experiencing or disclosing vulnerabilities publicly.
Neither Co-op nor Mercadona holds any compliance certifications.
Neither company holds any compliance certifications.
Co-op company has more subsidiaries worldwide compared to Mercadona company.
Mercadona company employs more people globally than Co-op company, reflecting its scale as a Retail.
Neither Co-op nor Mercadona holds SOC 2 Type 1 certification.
Neither Co-op nor Mercadona holds SOC 2 Type 2 certification.
Neither Co-op nor Mercadona holds ISO 27001 certification.
Neither Co-op nor Mercadona holds PCI DSS certification.
Neither Co-op nor Mercadona holds HIPAA certification.
Neither Co-op nor Mercadona holds GDPR certification.
Latest Global CVEs (Not Company-Specific)
Description
Exposure of credentials in unintended requests in Devolutions Server, Remote Desktop Manager on Windows.This issue affects Devolutions Server: through 2025.3.8.0; Remote Desktop Manager: through 2025.3.23.0.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Description
Out-of-bounds memory operations in org.lz4:lz4-java 1.8.0 and earlier allow remote attackers to cause denial of service and read adjacent memory via untrusted compressed input.
Risk Information
cvss4
Base: 8.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Reveals plaintext credentials in the MONITOR command vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from 1.0.0 through 2.13.0. Users are recommended to upgrade to version 2.14.0, which fixes the issue.
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Description
Improper Privilege Management vulnerability in Apache Kvrocks. This issue affects Apache Kvrocks: from v2.9.0 through v2.13.0. Users are recommended to upgrade to version 2.14.0, which fixes the issue.
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
Description
File upload vulnerability in HCL Technologies Ltd. Unica 12.0.0.
Risk Information
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
