Comparison Overview

21st Century Insurance

VS

Tufts Health Plan

21st Century Insurance

3 Beaver Valley Rd, Wilmington, DE, US, 19803
Last Update: 2025-10-22 (UTC)
View Profile
Between 700 and 749
http://www.21st.com

21st Century Insurance specializes in providing customized auto insurance for each and every customer. 21st Century is a proud part of the Farmers Insurance Group of Companies®, the third largest personal lines insurer in the country. With over 25,000 employees serving 20 million customers nationwide, Farmers has been providing outstanding value and service for over 82 years. 21st Century Insurance Same Great Coverage for Less

NAICS: 524
NAICS Definition: Insurance Carriers and Related Activities
Employees: 859
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

Tufts Health Plan

1 Wellness Way, None, Canton, Massachusetts, US, 02021
Last Update: 2025-08-04 (UTC)
Between 650 and 699
http://www.tuftshealthplan.com

Tufts Health Plan, a Point32Health company, guides and empowers healthier lives for everyone.

NAICS: 524
NAICS Definition: Insurance Carriers and Related Activities
Employees: 1,352
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/21st-century-insurance.jpeg
21st Century Insurance
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/tufts-health-plan.jpeg
Tufts Health Plan
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
21st Century Insurance
100%
Compliance Rate
0/4 Standards Verified
Tufts Health Plan
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Insurance Industry Average (This Year)

No incidents recorded for 21st Century Insurance in 2025.

Incidents vs Insurance Industry Average (This Year)

No incidents recorded for Tufts Health Plan in 2025.

Incident History — 21st Century Insurance (X = Date, Y = Severity)

21st Century Insurance cyber incidents detection timeline including parent company and subsidiaries

Incident History — Tufts Health Plan (X = Date, Y = Severity)

Tufts Health Plan cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/21st-century-insurance.jpeg
21st Century Insurance
Incidents

Date Detected: 1/2021
Type:Breach
Blog: Blog
https://images.rankiteo.com/companyimages/tufts-health-plan.jpeg
Tufts Health Plan
Incidents

Date Detected: 4/2023
Type:Ransomware
Blog: Blog

FAQ

21st Century Insurance company demonstrates a stronger AI Cybersecurity Score compared to Tufts Health Plan company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

21st Century Insurance and Tufts Health Plan have experienced a similar number of publicly disclosed cyber incidents.

In the current year, Tufts Health Plan company and 21st Century Insurance company have not reported any cyber incidents.

Tufts Health Plan company has confirmed experiencing a ransomware attack, while 21st Century Insurance company has not reported such incidents publicly.

21st Century Insurance company has disclosed at least one data breach, while the other Tufts Health Plan company has not reported such incidents publicly.

Neither Tufts Health Plan company nor 21st Century Insurance company has reported experiencing targeted cyberattacks publicly.

Neither 21st Century Insurance company nor Tufts Health Plan company has reported experiencing or disclosing vulnerabilities publicly.

Neither 21st Century Insurance nor Tufts Health Plan holds any compliance certifications.

Neither company holds any compliance certifications.

Neither 21st Century Insurance company nor Tufts Health Plan company has publicly disclosed detailed information about the number of their subsidiaries.

Tufts Health Plan company employs more people globally than 21st Century Insurance company, reflecting its scale as a Insurance.

Neither 21st Century Insurance nor Tufts Health Plan holds SOC 2 Type 1 certification.

Neither 21st Century Insurance nor Tufts Health Plan holds SOC 2 Type 2 certification.

Neither 21st Century Insurance nor Tufts Health Plan holds ISO 27001 certification.

Neither 21st Century Insurance nor Tufts Health Plan holds PCI DSS certification.

Neither 21st Century Insurance nor Tufts Health Plan holds HIPAA certification.

Neither 21st Century Insurance nor Tufts Health Plan holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability was found in itsourcecode Online Loan Management System 1.0. This vulnerability affects unknown code of the file /manage_loan.php. The manipulation of the argument ID results in sql injection. The attack may be launched remotely. The exploit has been made public and could be used.

Published
Date
2025-11-02
Updated
Date
2025-11-02
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability has been found in itsourcecode Online Loan Management System 1.0. This affects an unknown part of the file /load_fields.php. The manipulation of the argument loan_id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Published
Date
2025-11-02
Updated
Date
2025-11-02
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A flaw has been found in SourceCodester Best House Rental Management System 1.0. Affected by this issue is the function save_tenant of the file /admin_class.php. Executing manipulation of the argument firstname can lead to sql injection. The attack can be launched remotely. The exploit has been published and may be used. Other parameters might be affected as well.

Published
Date
2025-11-02
Updated
Date
2025-11-02
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was detected in SourceCodester Best House Rental Management System 1.0. Affected by this vulnerability is the function save_category of the file /admin_class.php. Performing manipulation of the argument Name results in sql injection. The attack can be initiated remotely. The exploit is now public and may be used.

Published
Date
2025-11-02
Updated
Date
2025-11-02
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security vulnerability has been detected in Tenda AC23 16.03.07.52. Affected is the function saveParentControlInfo of the file /goform/saveParentControlInfo. Such manipulation of the argument Time leads to buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-11-02
Updated
Date
2025-11-02
Risk Information
cvss2
Base: 9.0
Severity: LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 7.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References