Comparison Overview

American Mattress

VS

Bettco & Son Furniture

American Mattress

1300 Pratt Blvd, Elk Grove Village, 60007, US
Last Update: 2025-11-22
View Profile
Between 750 and 799
http://www.americanmattress.com

Since our very first customer received delivery of their new mattress back in 1988, American Mattress has strived to create customers for life. Now twenty nine years and 70 plus stores later, customers are still impressed with our courteous staff, whose main goal is simple, to treat every customer like family.

NAICS: 337
NAICS Definition: Furniture and Related Product Manufacturing
Employees: 153
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Bettco & Son Furniture

4717 Church Ave, Brooklyn, New York, undefined, US
Last Update: 2025-11-24
Between 750 and 799
http://www.bettcofurniture.com

Since opening over 60 years ago, in the heart of Brooklyn, Bettco & Son has established itself as a leading retailer of quality furniture and bedding at affordable prices. No other furniture store in Brooklyn (large or small), can compete with our level of service, easy credit, or fast delivery. Our experienced sales staff will help you select the furniture you desire and provide valuable design advice. With our many financing options, Bettco & Son will help you turn your house into a warm and inviting home without spending an arm and a leg. Whether you have no credit, great credit, or bad credit, we can help you furnish the home of your dreams. Visit our beautiful furniture boutique and see why Bettco is Better.

NAICS: 337
NAICS Definition:
Employees: 3
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/american-mattress.jpeg
American Mattress
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/bettco-son-furniture.jpeg
Bettco & Son Furniture
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
American Mattress
100%
Compliance Rate
0/4 Standards Verified
Bettco & Son Furniture
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for American Mattress in 2025.

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for Bettco & Son Furniture in 2025.

Incident History — American Mattress (X = Date, Y = Severity)

American Mattress cyber incidents detection timeline including parent company and subsidiaries

Incident History — Bettco & Son Furniture (X = Date, Y = Severity)

Bettco & Son Furniture cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/american-mattress.jpeg
American Mattress
Incidents

No Incident

https://images.rankiteo.com/companyimages/bettco-son-furniture.jpeg
Bettco & Son Furniture
Incidents

No Incident

FAQ

American Mattress company demonstrates a stronger AI Cybersecurity Score compared to Bettco & Son Furniture company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Bettco & Son Furniture company has disclosed a higher number of cyber incidents compared to American Mattress company.

In the current year, Bettco & Son Furniture company and American Mattress company have not reported any cyber incidents.

Neither Bettco & Son Furniture company nor American Mattress company has reported experiencing a ransomware attack publicly.

Neither Bettco & Son Furniture company nor American Mattress company has reported experiencing a data breach publicly.

Neither Bettco & Son Furniture company nor American Mattress company has reported experiencing targeted cyberattacks publicly.

Neither American Mattress company nor Bettco & Son Furniture company has reported experiencing or disclosing vulnerabilities publicly.

Neither American Mattress nor Bettco & Son Furniture holds any compliance certifications.

Neither company holds any compliance certifications.

Neither American Mattress company nor Bettco & Son Furniture company has publicly disclosed detailed information about the number of their subsidiaries.

American Mattress company employs more people globally than Bettco & Son Furniture company, reflecting its scale as a Furniture and Home Furnishings Manufacturing.

Neither American Mattress nor Bettco & Son Furniture holds SOC 2 Type 1 certification.

Neither American Mattress nor Bettco & Son Furniture holds SOC 2 Type 2 certification.

Neither American Mattress nor Bettco & Son Furniture holds ISO 27001 certification.

Neither American Mattress nor Bettco & Son Furniture holds PCI DSS certification.

Neither American Mattress nor Bettco & Son Furniture holds HIPAA certification.

Neither American Mattress nor Bettco & Son Furniture holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References
Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References