Comparison Overview

Enel Group

VS

Centrica

Enel Group

Viale Regina Margherita 125, Rome, 00198, IT
Last Update: 2026-03-27
View Profile
Between 800 and 849
http://www.enel.com

We are a multinational company changing the face of energy, one of the world’s leading integrated utilities. As the largest private player in producing clean energy with renewable sources we have more than 92 GW of total capacity, including around 67 GW of renewables. Distributing electricity through a network of 1.9 million kilometers to 69 million end users, being the first private network operator globally, and proudly bringing energy to approximately 54 million homes and businesses. People are the heart of our energy: our Group is made up of more than 60,000 people operating in 28 countries and our work is based on our values of Trust, Innovation, Proactivity, Flexibility and Respect. Diversity and inclusion play a key role for us, leading to our being recognized in all three of the most prestigious indices and rankings that assess corporate performance on gender diversity at the workplace and beyond: the Refinitiv Diversity Inclusion Index, the Bloomberg Gender Equality Index, and the Equileap Gender Equality Global Report & Ranking. Let’s shape the energy of the future together.

NAICS: 22
NAICS Definition: Utilities
Employees: 30,359
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Centrica

Maidenhead Road, Windsor, SL4 5GD, GB
Last Update: 2026-04-01
Between 750 and 799
http://www.centrica.com

Centrica is an international energy services and solutions company, founded on a 200-year heritage of serving customers in homes and businesses. We supply energy and services to over 10 million customers, mainly in the UK and Ireland, through brands such as British Gas, Bord Gáis Energy and Centrica Business Solutions. Through our trusted brands, we deliver innovative energy and services solutions to help solve customers’ needs, supported by thousands of engineers and technicians. We are committed to energising a greener, fairer future.

NAICS: 22
NAICS Definition: Utilities
Employees: 18,421
Subsidiaries: 9
12-month incidents
0
Known data breaches
0
Attack type number
2

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/enel.jpeg
Enel Group
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/centrica.jpeg
Centrica
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Enel Group
100%
Compliance Rate
0/4 Standards Verified
Centrica
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Utilities Industry Average (This Year)

No incidents recorded for Enel Group in 2026.

Incidents vs Utilities Industry Average (This Year)

No incidents recorded for Centrica in 2026.

Incident History — Enel Group (X = Date, Y = Severity)

Enel Group cyber incidents detection timeline including parent company and subsidiaries

Incident History — Centrica (X = Date, Y = Severity)

Centrica cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/enel.jpeg
Enel Group
Incidents

No Incident

https://images.rankiteo.com/companyimages/centrica.jpeg
Centrica
Incidents

Date Detected: 11/2020
Type:Ransomware
Attack Vector: Ransomware
Blog: Blog

Date Detected: 10/2015
Type:Data Leak
Attack Vector: Credential Stuffing
Motivation: Unauthorized Access
Blog: Blog

FAQ

Enel Group company demonstrates a stronger AI Cybersecurity Score compared to Centrica company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Centrica company has historically faced a number of disclosed cyber incidents, whereas Enel Group company has not reported any.

In the current year, Centrica company and Enel Group company have not reported any cyber incidents.

Centrica company has confirmed experiencing a ransomware attack, while Enel Group company has not reported such incidents publicly.

Neither Centrica company nor Enel Group company has reported experiencing a data breach publicly.

Neither Centrica company nor Enel Group company has reported experiencing targeted cyberattacks publicly.

Neither Enel Group company nor Centrica company has reported experiencing or disclosing vulnerabilities publicly.

Neither Enel Group nor Centrica holds any compliance certifications.

Neither company holds any compliance certifications.

Centrica company has more subsidiaries worldwide compared to Enel Group company.

Enel Group company employs more people globally than Centrica company, reflecting its scale as a Utilities.

Neither Enel Group nor Centrica holds SOC 2 Type 1 certification.

Neither Enel Group nor Centrica holds SOC 2 Type 2 certification.

Neither Enel Group nor Centrica holds ISO 27001 certification.

Neither Enel Group nor Centrica holds PCI DSS certification.

Neither Enel Group nor Centrica holds HIPAA certification.

Neither Enel Group nor Centrica holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability was found in Nothings stb up to 1.26. Impacted is the function stbtt_InitFont_internal in the library stb_truetype.h of the component TTF File Handler. Performing a manipulation results in out-of-bounds read. Remote exploitation of the attack is possible. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get_macro_mem_COM. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

V-SFT versions 6.2.10.0 and prior contain a stack-based buffer overflow in VS6ComFile!CSaveData::_conv_AnimationItem. Opening a crafted V7 file may lead to arbitrary code execution on the affected product.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may lead to information disclosure from the affected product.

Published
Date
2026-04-01
Updated
Date
2026-04-01
Risk Information
cvss3
Base: 7.8
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References