Comparison Overview

Ben Sherman

VS

Tapestry

Ben Sherman

Granary Building 1 Canal Wharf Leeds, Yorkshire LS11 5BB, GB
Last Update: 2025-05-06 (UTC)
Between 900 and 1000
http://www.bensherman.com

Excellent

Ben Sherman transformed the humble shirt from a staple item into a statement piece that was perfect for the mood of the early 1960s and an instant success. Inspired by a modernist sartorial approach, this intrinsically British sub-culture embraced the Ben Sherman shirt, loving it for its high quality fabrication, slim-fitting style and unique design. Throughout the decades, one thing has remained a constant focus for the Ben Sherman shirt, the shirt is always worn buttoned up. It is a deliberate choice, that exudes Britishness and personal pride.

NAICS: 448
NAICS Definition: Clothing and Clothing Accessories Stores
Employees: 501-1,000
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Tapestry

10 Hudson Yards, New York, New York, 10001, US
Last Update: 2025-03-04 (UTC)

Excellent

Between 900 and 1000
http://www.tapestry.com/

Our global house of brands unites the magic of Coach, Kate Spade New York and Stuart Weitzman. By intertwining different people and ideas, we push ourselves in our work and expand the bounds of possibility. Learn about our iconic brands: tapestry.com/our-brands Weโ€™ve grown by finding people dedicated to the dream all over the world. We hold ourselves to high standards in every material and process, and we embrace difference by design because diverse perspectives are at the heart of creativity. We find brilliance in the intersectionsโ€”of beauty and function, of heritage and innovation, of accessibility and aspirationโ€”which is how we bring together magic and logic in our craft. Find out about our people and employer priorities: tapestry.com/responsibility/our-people The result is that we stand taller together, elevating the best in our people and brands. We use our collective strengths to move our customers and empower our communities, to make the fashion industry sustainable, and to build a house thatโ€™s equitable, inclusive, and diverse. Individually, our brands are iconic. Together, we can stretch whatโ€™s possible. See our values and commitments to support our people, communities and planet: tapestry.com/responsibility __ Please Be Advised - Recruitment Scams: Tapestry and its brands will only reach out to interview, make an offer of employment or conduct onboarding activities for candidates who have applied through our careers site. If you find a job posting on a third-party job site, such as LinkedIn, please know that a legitimate posting will direct you to our careers site to apply. When interviewing for a position, the candidate experience will include live interaction, such as a video conference or phone call, with a Recruiter and/or company employee(s). Be aware of suspicious recruitment activity. If you think you are a victim of an employment scam, please visit the Federal Trade Commission website: https://www.consumer.ftc.gov/articles/0243-job-scams

NAICS: 448
NAICS Definition: Clothing and Clothing Accessories Stores
Employees: 18,641
Subsidiaries: 3
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/ben-sherman.jpeg
Ben Sherman
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/tapestryinc.jpeg
Tapestry
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Ben Sherman
100%
Compliance Rate
0/4 Standards Verified
Tapestry
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Retail Apparel and Fashion Industry Average (This Year)

No incidents recorded for Ben Sherman in 2025.

Incidents vs Retail Apparel and Fashion Industry Average (This Year)

No incidents recorded for Tapestry in 2025.

Incident History โ€” Ben Sherman (X = Date, Y = Severity)

Ben Sherman cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Tapestry (X = Date, Y = Severity)

Tapestry cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/ben-sherman.jpeg
Ben Sherman
Incidents

No Incident

https://images.rankiteo.com/companyimages/tapestryinc.jpeg
Tapestry
Incidents

No Incident

FAQ

Both Ben Sherman company and Tapestry company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, Tapestry company has disclosed a higher number of cyber incidents compared to Ben Sherman company.

In the current year, Tapestry company and Ben Sherman company have not reported any cyber incidents.

Neither Tapestry company nor Ben Sherman company has reported experiencing a ransomware attack publicly.

Neither Tapestry company nor Ben Sherman company has reported experiencing a data breach publicly.

Neither Tapestry company nor Ben Sherman company has reported experiencing targeted cyberattacks publicly.

Neither Ben Sherman company nor Tapestry company has reported experiencing or disclosing vulnerabilities publicly.

Tapestry company has more subsidiaries worldwide compared to Ben Sherman company.

Tapestry company employs more people globally than Ben Sherman company, reflecting its scale as a Retail Apparel and Fashion.

Latest Global CVEs (Not Company-Specific)

Description

Formbricks is an open source qualtrics alternative. Prior to version 4.0.1, Formbricks is missing JWT signature verification. This vulnerability stems from a token validation routine that only decodes JWTs (jwt.decode) without verifying their signatures. Both the email verification token login path and the password reset server action use the same validator, which does not check the tokenโ€™s signature, expiration, issuer, or audience. If an attacker learns the victimโ€™s actual user.id, they can craft an arbitrary JWT with an alg: "none" header and use it to authenticate and reset the victimโ€™s password. This issue has been patched in version 4.0.1.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 9.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L
References
Description

Apollo Studio Embeddable Explorer & Embeddable Sandbox are website embeddable software solutions from Apollo GraphQL. Prior to Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3, a cross-site request forgery (CSRF) vulnerability was identified. The vulnerability arises from missing origin validation in the client-side code that handles window.postMessage events. A malicious website can send forged messages to the embedding page, causing the victimโ€™s browser to execute arbitrary GraphQL queries or mutations against their GraphQL server while authenticated with the victimโ€™s cookies. This issue has been patched in Apollo Sandbox version 2.7.2 and Apollo Explorer version 3.7.3.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:N
References
Description

A security vulnerability has been detected in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /consulta-dispensas. Such manipulation leads to improper authorization. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in Portabilis i-Educar up to 2.10. Affected is an unknown function of the file /module/Api/aluno. This manipulation of the argument aluno_id causes improper authorization. The attack may be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tencent WeKnora 0.1.0. This impacts the function testEmbeddingModel of the file /api/v1/initialization/embedding/test. The manipulation of the argument baseUrl results in server-side request forgery. The attack can be launched remotely. The exploit has been released to the public and may be exploited. It is advisable to upgrade the affected component. The vendor responds: "We have confirmed that the issue mentioned in the report does not exist in the latest releases".

Published
Date
2025-09-26
Updated
Date
2025-09-26
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References