Comparison Overview

Longview Europe GmbH (formerly arcplan Information Services GmbH)

VS

Canva

Longview Europe GmbH (formerly arcplan Information Services GmbH)

1265 Drummers Lane, Wayne, PA, 19087, US
Last Update: 2025-03-05 (UTC)
Between 800 and 900
http://www.longview.com

Strong

Founded in 1994, Longview provides leading corporate performance management (CPM), tax, and business intelligence (BI) solutions to enterprises across industries worldwide. The companyโ€™s flagship product, Longview 7, is a unified, scalable platform that automates the following key processes: strategic planning, budgeting and forecasting, modeling, disclosure management/XBRL reporting, statutory consolidation, management reporting, profitability analytics, tax provision/reporting, task management, transparency or any combination thereof. Together with arcplan 8, the power behind its flexible BI solution, Longview has helped hundreds of Fortune 1000 and FTSE 100 companies create a single-source system to better manage their businesses and significantly improve data integrity, decision-making, and financial transparency. For more information visit www.arcplan.com.

NAICS: 5112
NAICS Definition: Software Publishers
Employees: 13
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Canva

Kippax St, Surry Hills, New South Wales, AU, 2010
Last Update: 2025-09-23 (UTC)

Strong

Between 800 and 900
http://www.canva.com

We're a global online visual communications platform on a mission to empower the world to design. Featuring a simple drag-and-drop user interface and a vast range of templates ranging from presentations, documents, websites, social media graphics, posters, apparel to videos, plus a huge library of fonts, stock photography, illustrations, video footage, and audio clips, anyone can take an idea and create something beautiful on Canva on any device, from anywhere in the world. Since our launch in 2013, weโ€™ve had the crazy big goal of making design accessible to everyone. We were founded on the belief that people shouldn't need to understand complex software to unlock their creativity. Weโ€™re leveling the playing field and democratizing access to design and visual communication by empowering 100% of the world to communicate in a way that was once limited to the 1%. We've always had a deeper mission surrounding Canva โ€” which we talk about as our 'simple' two-step plan: to build oneย of the worldโ€™s most valuable companies, and to do the most good we possibly can. We're committed to our core value of Being a Force for Good, so as the value of our company grows, so too does our ability to have a positive impact on the world.

NAICS: 5112
NAICS Definition: Software Publishers
Employees: 13,869
Subsidiaries: 0
12-month incidents
2
Known data breaches
3
Attack type number
3

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/arcplan.jpeg
Longview Europe GmbH (formerly arcplan Information Services GmbH)
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/canva.jpeg
Canva
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Longview Europe GmbH (formerly arcplan Information Services GmbH)
100%
Compliance Rate
0/4 Standards Verified
Canva
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for Longview Europe GmbH (formerly arcplan Information Services GmbH) in 2025.

Incidents vs Software Development Industry Average (This Year)

Canva has 334.78% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History โ€” Longview Europe GmbH (formerly arcplan Information Services GmbH) (X = Date, Y = Severity)

Longview Europe GmbH (formerly arcplan Information Services GmbH) cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Canva (X = Date, Y = Severity)

Canva cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/arcplan.jpeg
Longview Europe GmbH (formerly arcplan Information Services GmbH)
Incidents

No Incident

https://images.rankiteo.com/companyimages/canva.jpeg
Canva
Incidents

Date Detected: 9/2025
Type:Breach
Attack Vector: Compromised Credentials, Hardcoded Secrets in Code/Repositories, GitHub Action Token Theft, Lateral Movement via Exposed API Keys
Motivation: Financial Gain (via Ransomware/Extortion), Data Exfiltration for Dark Web Sales, Supply Chain Disruption
Blog: Blog

Date Detected: 6/2025
Type:Breach
Attack Vector: Unsecured Database
Blog: Blog

Date Detected: 05/2019
Type:Breach
Blog: Blog

FAQ

Both Longview Europe GmbH (formerly arcplan Information Services GmbH) company and Canva company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Canva company has historically faced a number of disclosed cyber incidents, whereas Longview Europe GmbH (formerly arcplan Information Services GmbH) company has not reported any.

In the current year, Canva company has reported more cyber incidents than Longview Europe GmbH (formerly arcplan Information Services GmbH) company.

Canva company has confirmed experiencing a ransomware attack, while Longview Europe GmbH (formerly arcplan Information Services GmbH) company has not reported such incidents publicly.

Canva company has disclosed at least one data breach, while Longview Europe GmbH (formerly arcplan Information Services GmbH) company has not reported such incidents publicly.

Neither Canva company nor Longview Europe GmbH (formerly arcplan Information Services GmbH) company has reported experiencing targeted cyberattacks publicly.

Neither Longview Europe GmbH (formerly arcplan Information Services GmbH) company nor Canva company has reported experiencing or disclosing vulnerabilities publicly.

Neither Longview Europe GmbH (formerly arcplan Information Services GmbH) company nor Canva company has publicly disclosed detailed information about the number of their subsidiaries.

Canva company employs more people globally than Longview Europe GmbH (formerly arcplan Information Services GmbH) company, reflecting its scale as a Software Development.

Latest Global CVEs (Not Company-Specific)

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in The Wikimedia Foundation MediaWiki Cargo extension allows SQL Injection.This issue affects MediaWiki Cargo extension: 1.39, 1.43, 1.44.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss4
Base: 2.1
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:U/V:C/RE:M/U:Amber
References
Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation MediaWiki QuizGame extension allows Stored XSS.This issue affects MediaWiki QuizGame extension: 1.39, 1.43, 1.44.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss4
Base: 2.0
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:C/RE:M/U:Amber
References
Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation MediaWiki PollNY extension allows Stored XSS.This issue affects MediaWiki PollNY extension: 1.39, 1.43, 1.44.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss4
Base: 2.0
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:C/RE:M/U:Amber
References
Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation MediaWiki WebAuthn extension allows Stored XSS.This issue affects MediaWiki WebAuthn extension: 1.39, 1.43, 1.44.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss4
Base: 5.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:L/U:Amber
References
Description

pyquokka is a framework for making data lakes work for time series. In versions 0.3.1 and prior, the FlightServer class directly uses pickle.loads() to deserialize action bodies received from Flight clients without any sanitization or validation in the do_action() method. The vulnerable code is located in pyquokka/flight.py at line 283 where arbitrary data from Flight clients is directly passed to pickle.loads(). When FlightServer is configured to listen on 0.0.0.0, this allows attackers across the entire network to perform arbitrary remote code execution by sending malicious pickled payloads through the set_configs action. Additional vulnerability points exist in the cache_garbage_collect, do_put, and do_get functions where pickle.loads is used to deserialize untrusted remote data.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References