Bannock County
Last Update: 2025-12-01
Between 700 and 749
Bannock County, State of Idaho.
NAICS: 92
NAICS Definition: Public Administration
Employees: 233
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
Comparison Overview
Bannock County
VS
City of Philadelphia
City of Philadelphia
Last Update: 2025-12-01
Between 650 and 699
With a workforce of 30,000 people, and opportunities in 1,000 different job categories, the City of Philadelphia is one of the largest employers in Southeastern Pennsylvania. As an employer, we operate through the guiding principles of service, integrity, respect, accountability, collaboration, diversity and inclusion. We strive to effectively deliver services, to resolve the challenges facing our city, and to make Philadelphia a place where all of our residents have the opportunity to reach their potential. To learn more about job opportunities, visit www.phila.gov or follow #PHLCityJobs.
NAICS: 92
NAICS Definition: Public Administration
Employees: 11,387
Subsidiaries: 6
12-month incidents
0
Known data breaches
3
Attack type number
1
Compliance Badges Comparison
Security & Compliance Standards Overview
Bannock County
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
City of Philadelphia
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Compliance Summary
Bannock County
100%
Compliance Rate
0/4 Standards Verified
City of Philadelphia
0%
Compliance Rate
0/4 Standards Verified
Benchmark & Cyber Underwriting Signals
Incidents vs Government Administration Industry Average (This Year)
No incidents recorded for Bannock County in 2025.
Incidents vs Government Administration Industry Average (This Year)
No incidents recorded for City of Philadelphia in 2025.
Incident History — Bannock County (X = Date, Y = Severity)
Bannock County cyber incidents detection timeline including parent company and subsidiaries
Incident History — City of Philadelphia (X = Date, Y = Severity)
City of Philadelphia cyber incidents detection timeline including parent company and subsidiaries
Notable Incidents
Last 3 Security & Risk Events by Company
Bannock County
Incidents
FAQ
Bannock County company demonstrates a stronger AI Cybersecurity Score compared to City of Philadelphia company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.
City of Philadelphia company has faced a higher number of disclosed cyber incidents historically compared to Bannock County company.
In the current year, City of Philadelphia company and Bannock County company have not reported any cyber incidents.
Neither City of Philadelphia company nor Bannock County company has reported experiencing a ransomware attack publicly.
Both City of Philadelphia company and Bannock County company have disclosed experiencing at least one data breach.
Neither City of Philadelphia company nor Bannock County company has reported experiencing targeted cyberattacks publicly.
Neither Bannock County company nor City of Philadelphia company has reported experiencing or disclosing vulnerabilities publicly.
Neither Bannock County nor City of Philadelphia holds any compliance certifications.
Neither company holds any compliance certifications.
City of Philadelphia company has more subsidiaries worldwide compared to Bannock County company.
City of Philadelphia company employs more people globally than Bannock County company, reflecting its scale as a Government Administration.
Neither Bannock County nor City of Philadelphia holds SOC 2 Type 1 certification.
Neither Bannock County nor City of Philadelphia holds SOC 2 Type 2 certification.
Neither Bannock County nor City of Philadelphia holds ISO 27001 certification.
Neither Bannock County nor City of Philadelphia holds PCI DSS certification.
Neither Bannock County nor City of Philadelphia holds HIPAA certification.
Neither Bannock County nor City of Philadelphia holds GDPR certification.
Latest Global CVEs (Not Company-Specific)
Description
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls RelinquishMagickMemory on _drawInfo->font, freeing the font string but leaving _drawInfo->font pointing to freed memory while _drawInfo->family is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo->font re-frees or dereferences dangling memory. DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo->font remains valid, so destruction or subsequent updates trigger crashes or heap corruption. This vulnerability is fixed in 7.1.2-9 and 6.9.13-34.
Risk Information
cvss3
Base: 4.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Description
FeehiCMS version 2.1.1 has a Remote Code Execution via Unrestricted File Upload in Ad Management. FeehiCMS version 2.1.1 allows authenticated remote attackers to upload files that the server later executes (or stores in an executable location) without sufficient validation, sanitization, or execution restrictions. An authenticated remote attacker can upload a crafted PHP file and cause the application or web server to execute it, resulting in remote code execution (RCE).
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Description
PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Specifically, the username parameter accepts unvalidated user input, which is then concatenated directly into a backend SQL query.
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Description
NMIS/BioDose software V22.02 and previous versions contain executable binaries with plain text hard-coded passwords. These hard-coded passwords could allow unauthorized access to both the application and database.
Risk Information
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure file permissions, which in certain deployment scenarios can enable users on client workstations to modify the program executables and libraries.
Risk Information
cvss3
Base: 8.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
cvss4
Base: 7.1
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
