Comparison Overview

CMA CGM

VS

A.P. Moller - Maersk

CMA CGM

4, Quai d'arenc, Marseille, 13002, FR
Last Update: 2026-04-02
View Profile
Between 750 and 799
http://www.cma-cgm.com

The CMA CGM Group is a global player in sea, land, air and logistics solutions, true to its corporate Purpose, "We imagine better ways to serve a world in motion". Present in 177 countries, it employs 160,000 people, of which nearly 6,000 in Marseilles where its head office is located. The world's 3rd largest shipping company, CMA CGM serves more than 420 ports across 5 continents with a fleet of over 650 vessels. In 2024, CMA CGM carried over 23 million TEU (twenty-foot equivalent unit) containers. Its subsidiary CEVA Logistics, one of the world's top five players, operates 1,000 warehouses and handled 15 million shipments in 2024. CMA CGM AIR CARGO, the Group's air freight division, will operate a fleet of 6 cargo aircraft by 2025. CMA Media, France's 3rd largest private media group, includes RMC-BFM and several national and regional press titles (La Tribune Dimanche, La Tribune, La Provence and Corse Matin). Committed to energy transition, the CMA CGM Group is aiming for Net Zero Carbon by 2050. The CMA CGM Foundation provides humanitarian aid in crisis situations, and is committed to education for all and equal opportunities throughout the world. To date, the CMA CGM Foundation has transported 63,000 tons of humanitarian aid to 97 countries and supported over 550 educational projects.

NAICS: 47
NAICS Definition: Transportation and Warehousing
Employees: 30,339
Subsidiaries: 12
12-month incidents
0
Known data breaches
0
Attack type number
2
View Profile

A.P. Moller - Maersk

Esplanaden 50, Copenhagen, DK, 1098
Last Update: 2026-04-02
Between 750 and 799
http://www.maersk.com

A.P. Moller - Maersk is an integrated transport and logistics company; going all the way, together, for our customers and society. ALL THE WAY is our commitment to connect the world so that everyone has both the possibility and the ability to trade, grow and thrive. The company employs roughly 110.000 employees across operations in 130 countries.

NAICS: 47
NAICS Definition: Transportation and Warehousing
Employees: 82,857
Subsidiaries: 16
12-month incidents
0
Known data breaches
1
Attack type number
2

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/cma-cgm.jpeg
CMA CGM
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/maersk-group.jpeg
A.P. Moller - Maersk
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
CMA CGM
100%
Compliance Rate
0/4 Standards Verified
A.P. Moller - Maersk
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Transportation, Logistics, Supply Chain and Storage Industry Average (This Year)

No incidents recorded for CMA CGM in 2026.

Incidents vs Transportation, Logistics, Supply Chain and Storage Industry Average (This Year)

No incidents recorded for A.P. Moller - Maersk in 2026.

Incident History — CMA CGM (X = Date, Y = Severity)

CMA CGM cyber incidents detection timeline including parent company and subsidiaries

Incident History — A.P. Moller - Maersk (X = Date, Y = Severity)

A.P. Moller - Maersk cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/cma-cgm.jpeg
CMA CGM
Incidents

Date Detected: 9/2021
Type:Ransomware
Attack Vector: ransomware (Ragnar Locker)
Motivation: financial gain, data theft
Blog: Blog

Date Detected: 9/2020
Type:Ransomware
Motivation: financial gain
Blog: Blog

Date Detected: 2/2017
Type:Cyber Attack
Attack Vector: remote hacking, navigation system compromise
Motivation: financial gain (piracy), physical seizure of vessel, ransom
Blog: Blog
https://images.rankiteo.com/companyimages/maersk-group.jpeg
A.P. Moller - Maersk
Incidents

Date Detected: 8/2021
Type:Breach
Blog: Blog

Date Detected: 6/2017
Type:Cyber Attack
Attack Vector: Compromised Software Updates (NotPetya via Ukrainian accounting software), Phishing/Social Engineering, Outdated/Poorly Maintained Systems, Third-Party Vendor Vulnerabilities, GNSS Jamming/Spoofing (Russia, Iran, China), AI-Assisted Exploits (e.g., subverting AI assistants), Manual Override of Digital Systems (human error)
Motivation: Financial Gain (Ransomware), Geopolitical Disruption (State Actors), Espionage (Strategic Maritime Data), Hacktivism (e.g., Lab-Dookhtegan), Operational Sabotage (e.g., GNSS Interference)
Blog: Blog

FAQ

A.P. Moller - Maersk company demonstrates a stronger AI Cybersecurity Score compared to CMA CGM company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

CMA CGM company has faced a higher number of disclosed cyber incidents historically compared to A.P. Moller - Maersk company.

In the current year, A.P. Moller - Maersk company and CMA CGM company have not reported any cyber incidents.

CMA CGM company has confirmed experiencing a ransomware attack, while A.P. Moller - Maersk company has not reported such incidents publicly.

A.P. Moller - Maersk company has disclosed at least one data breach, while CMA CGM company has not reported such incidents publicly.

Both A.P. Moller - Maersk company and CMA CGM company have reported experiencing targeted cyberattacks.

Neither CMA CGM company nor A.P. Moller - Maersk company has reported experiencing or disclosing vulnerabilities publicly.

Neither CMA CGM nor A.P. Moller - Maersk holds any compliance certifications.

Neither company holds any compliance certifications.

A.P. Moller - Maersk company has more subsidiaries worldwide compared to CMA CGM company.

A.P. Moller - Maersk company employs more people globally than CMA CGM company, reflecting its scale as a Transportation, Logistics, Supply Chain and Storage.

Neither CMA CGM nor A.P. Moller - Maersk holds SOC 2 Type 1 certification.

Neither CMA CGM nor A.P. Moller - Maersk holds SOC 2 Type 2 certification.

Neither CMA CGM nor A.P. Moller - Maersk holds ISO 27001 certification.

Neither CMA CGM nor A.P. Moller - Maersk holds PCI DSS certification.

Neither CMA CGM nor A.P. Moller - Maersk holds HIPAA certification.

Neither CMA CGM nor A.P. Moller - Maersk holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References