Comparison Overview

Fugro

Veurse Achterweg 10, Leidschendam, 2264 SG, NL

Last Update: 2026-04-01

Between 750 and 799

http://www.fugro.com

We are the world’s leading Geo-data specialist, collecting and analysing comprehensive information about the Earth and the structures built upon it. Through integrated data acquisition, analysis and advice, we unlock insights from Geo-data to help our clients design, build and operate their assets in a safe, sustainable and efficient manner. Learn more about us: https://www.youtube.com/fugro https://www.facebook.com/fugro https://twitter.com/fugro https://www.instagram.com/fugro/

NAICS: 237

NAICS Definition: Heavy and Civil Engineering Construction

Employees: 10,678

Subsidiaries: 5

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Ferrovial

Amsterdam, NL

Last Update: 2026-04-04

Between 800 and 849

http://www.ferrovial.com

Ferrovial is a leading global infrastructure company transforming highways, airports, and energy around the world. Its distinctive integrated business model supports the entire lifecycle of complex projects, from design and financing to construction, operation and maintenance. The company has a global presence and employs more than 22,500 people worldwide. North America is Ferrovial’s growth engine, where it developed and is currently operating five Express Lanes across Texas, North Carolina and Virginia, and is managing the 407 ETR highway in Toronto, Canada. The company is also leading the development of the New Terminal One at JFK International Airport. Ferrovial shares trade under the ticker symbol FER on three stock markets: U.S. (Nasdaq‑100 Index), Spain (IBEX‑35), and the Netherlands. The company is included in globally recognized sustainability indices such as the Dow Jones Best in Class Index.

NAICS: 237

NAICS Definition: Heavy and Civil Engineering Construction

Employees: 12,658

Subsidiaries: 9

12-month incidents

0

Known data breaches

1

Attack type number

1

Fugro

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Ferrovial

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Civil Engineering Industry Average (This Year)

No incidents recorded for Fugro in 2026.

Incidents vs Civil Engineering Industry Average (This Year)

No incidents recorded for Ferrovial in 2026.

Incident History — Fugro (X = Date, Y = Severity)

Fugro cyber incidents detection timeline including parent company and subsidiaries

Incident History — Ferrovial (X = Date, Y = Severity)

Ferrovial cyber incidents detection timeline including parent company and subsidiaries

Fugro

Incidents

No Incident

Ferrovial

Incidents

Date Detected: 5/2018

Type:Breach

Attack Vector: Internal Employee

Motivation: Unspecified

Blog: Blog

Ferrovial company demonstrates a stronger AI Cybersecurity Score compared to Fugro company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Ferrovial company has historically faced a number of disclosed cyber incidents, whereas Fugro company has not reported any.

In the current year, Ferrovial company and Fugro company have not reported any cyber incidents.

Neither Ferrovial company nor Fugro company has reported experiencing a ransomware attack publicly.

Ferrovial company has disclosed at least one data breach, while Fugro company has not reported such incidents publicly.

Neither Ferrovial company nor Fugro company has reported experiencing targeted cyberattacks publicly.

Neither Fugro company nor Ferrovial company has reported experiencing or disclosing vulnerabilities publicly.

Neither Fugro nor Ferrovial holds any compliance certifications.

Neither company holds any compliance certifications.

Ferrovial company has more subsidiaries worldwide compared to Fugro company.

Ferrovial company employs more people globally than Fugro company, reflecting its scale as a Civil Engineering.

Neither Fugro nor Ferrovial holds SOC 2 Type 1 certification.

Neither Fugro nor Ferrovial holds SOC 2 Type 2 certification.

Neither Fugro nor Ferrovial holds ISO 27001 certification.

Neither Fugro nor Ferrovial holds PCI DSS certification.

Neither Fugro nor Ferrovial holds HIPAA certification.

Neither Fugro nor Ferrovial holds GDPR certification.

Description

nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.3.0, two peer-facing consensus request handlers assume that the history index is always available and call blockchain.history_store.history_index().unwrap() directly. That assumption is false by construction. HistoryStoreProxy::history_index() explicitly returns None for the valid HistoryStoreProxy::WithoutIndex state. when a full node is syncing or otherwise running without the history index, a remote peer can send RequestTransactionsProof or RequestTransactionReceiptsByAddress and trigger an Option::unwrap() panic on the request path. This issue has been patched in version 1.3.0.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

References

Description

PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 8.6

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-44c2-3rw4-5gvh

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.97, OAuthManager.validate_token() returns True for any token not found in its internal store, which is empty by default. Any HTTP request to the MCP server with an arbitrary Bearer token is treated as authenticated, granting full access to all registered tools and agent capabilities. This issue has been patched in version 4.5.97.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 9.1

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-98f9-fqg5-hvq5

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.97, the PraisonAI Gateway server accepts WebSocket connections at /ws and serves agent topology at /info with no authentication. Any network client can connect, enumerate registered agents, and send arbitrary messages to agents and their tool sets. This issue has been patched in version 4.5.97.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 9.1

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-cfh6-vr3j-qc3g

Description

PraisonAI is a multi-agent teams system. Prior to version 4.5.90, MCPToolIndex.search_tools() compiles a caller-supplied string directly as a Python regular expression with no validation, sanitization, or timeout. A crafted regex causes catastrophic backtracking in the re engine, blocking the Python thread for hundreds of seconds and causing a complete service outage. This issue has been patched in version 4.5.90.

Published

Date

2026-04-03

Updated

Date

2026-04-03

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-8w9j-hc3g-3g7f

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Fugro

VS

Ferrovial

Fugro

Ferrovial

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Civil Engineering Industry Average (This Year)

Incidents vs Civil Engineering Industry Average (This Year)

Incident History — Fugro (X = Date, Y = Severity)

Incident History — Ferrovial (X = Date, Y = Severity)

Notable Incidents

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2026-35468

Risk Information

CVE-2026-34954

Risk Information

CVE-2026-34953

Risk Information

CVE-2026-34952

Risk Information

CVE-2026-34939

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Fugro

VS

Ferrovial

Fugro

Ferrovial

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Civil Engineering Industry Average (This Year)

Incidents vs Civil Engineering Industry Average (This Year)

Incident History — Fugro (X = Date, Y = Severity)

Incident History — Ferrovial (X = Date, Y = Severity)

Notable Incidents

No Incident

🔒 Incident : Breach 407214516123

FAQ

Between Fugro company and Ferrovial company, which one has the best AI Cybersecurity Score ?

Between Fugro company and Ferrovial company, which one has experienced more cyber incidents in the past ?

Between Fugro company and Ferrovial company, which one has experienced more cyber incidents this year ?

Between Fugro company and Ferrovial company, which one has experienced at least one ransomware attack ?

Between Fugro company and Ferrovial company, which one has experienced at least one data breach ?

Between Fugro company and Ferrovial company, which one has experienced at least one targeted cyberattack ?

Between Fugro company and Ferrovial company, which one has experienced at least one vulnerability ?

Between Fugro company and Ferrovial company, which one holds the most compliance certifications ?

Between Fugro company and Ferrovial company, which one holds the fewest compliance certifications ?

Between Fugro company and Ferrovial company, which one has the most subsidiaries ?

Between Fugro company and Ferrovial company, which one has the largest number of employees ?

Between Fugro and Ferrovial, which company holds both SOC 2 Type 1 certifications ?

Between Fugro and Ferrovial, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Fugro or Ferrovial ?

Which company is PCI DSS compliant — Fugro or Ferrovial ?

Between Fugro and Ferrovial, which company complies with HIPAA regulations for healthcare data ?

Between Fugro and Ferrovial, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2026-35468

Risk Information

CVE-2026-34954

Risk Information

CVE-2026-34953

Risk Information

CVE-2026-34952

Risk Information

CVE-2026-34939

Risk Information