Comparison Overview

TMF Group

VS

Lloyds Banking Group

TMF Group

Luna ArenA, Herikerbergweg 238, , Amsterdam , North Holland, NL, 1101 CM
Last Update: 2025-12-09
View Profile
Between 750 and 799
http://www.tmf-group.com

We provide employee, financial and legal administration so that firms can invest and operate safely around the world. TMF Group is a single global team with over 11,000 colleagues in more than 125 offices across 87 jurisdictions, covering 92% of world GDP and 95% of FDI inflow. We bring common culture and ways of working, investing heavily in our people and platform to provide a high level of quality and security to our clients. We exist to give clients a global solution to what otherwise requires many local providers, each with their individual operational complexity and risk. Our clients include the majority of the Fortune Global 500, FTSE 100 and top 300 private equity firms. We see ourselves as a partner to them, keeping them on top of complex rules and regulations in the countries where they are active. We recognise that what we do is critical to our clients’ reputation and integrity. That is why we have made flawless service our single obsession. Great service starts with our people, so colleague and client engagement are the two measures we care most about, driving our management agenda and investment.

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 10,031
Subsidiaries: 2
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Lloyds Banking Group

25 Gresham Street, London, UK, GB, EC2V 7HN
Last Update: 2025-12-09
Between 800 and 849
https://www.lloydsbankinggroup.com/

Our purpose is Helping Britain Prosper. We do this by creating a more sustainable and inclusive future for people and businesses, shaping finance as a force for good. We're part of an ever-changing industry and are currently on a journey to shape the financial services of the future, whilst supporting our customers’ changing needs. The scale and reach of our Group means we can offer a broad range of opportunities to learn, grow and develop. Our values-led culture and approach to inclusion and diversity means we can all make a real difference together.

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 61,434
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/tmf-group.jpeg
TMF Group
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/lloyds-banking-group.jpeg
Lloyds Banking Group
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
TMF Group
100%
Compliance Rate
0/4 Standards Verified
Lloyds Banking Group
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Financial Services Industry Average (This Year)

No incidents recorded for TMF Group in 2025.

Incidents vs Financial Services Industry Average (This Year)

No incidents recorded for Lloyds Banking Group in 2025.

Incident History — TMF Group (X = Date, Y = Severity)

TMF Group cyber incidents detection timeline including parent company and subsidiaries

Incident History — Lloyds Banking Group (X = Date, Y = Severity)

Lloyds Banking Group cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/tmf-group.jpeg
TMF Group
Incidents

No Incident

https://images.rankiteo.com/companyimages/lloyds-banking-group.jpeg
Lloyds Banking Group
Incidents

Date Detected: 6/2006
Type:Breach
Attack Vector: Physical Theft
Blog: Blog

FAQ

Lloyds Banking Group company demonstrates a stronger AI Cybersecurity Score compared to TMF Group company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Lloyds Banking Group company has historically faced a number of disclosed cyber incidents, whereas TMF Group company has not reported any.

In the current year, Lloyds Banking Group company and TMF Group company have not reported any cyber incidents.

Neither Lloyds Banking Group company nor TMF Group company has reported experiencing a ransomware attack publicly.

Lloyds Banking Group company has disclosed at least one data breach, while TMF Group company has not reported such incidents publicly.

Neither Lloyds Banking Group company nor TMF Group company has reported experiencing targeted cyberattacks publicly.

Neither TMF Group company nor Lloyds Banking Group company has reported experiencing or disclosing vulnerabilities publicly.

Neither TMF Group nor Lloyds Banking Group holds any compliance certifications.

Neither company holds any compliance certifications.

TMF Group company has more subsidiaries worldwide compared to Lloyds Banking Group company.

Lloyds Banking Group company employs more people globally than TMF Group company, reflecting its scale as a Financial Services.

Neither TMF Group nor Lloyds Banking Group holds SOC 2 Type 1 certification.

Neither TMF Group nor Lloyds Banking Group holds SOC 2 Type 2 certification.

Neither TMF Group nor Lloyds Banking Group holds ISO 27001 certification.

Neither TMF Group nor Lloyds Banking Group holds PCI DSS certification.

Neither TMF Group nor Lloyds Banking Group holds HIPAA certification.

Neither TMF Group nor Lloyds Banking Group holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 8.1
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
References
Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 2.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 4.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
References
Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published
Date
2025-12-14
Updated
Date
2025-12-14
Risk Information
cvss3
Base: 5.8
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
References