Comparison Overview

Bernstein & Associates NAGPRA Consultants

VS

Ohio History Connection

Bernstein & Associates NAGPRA Consultants

1041 N Lafayette Street, Denver, CO, 80218, US
Last Update: 2025-12-03
View Profile
Between 750 and 799
http://www.nagpra.info

Our clients are museums (including municipalities and institutions of higher learning), federal agencies, Indian tribes (including Alaska Native villages), and Native Hawaiian organizations. Native American Graves Protection and Repatriation Act (NAGPRA) services we provide to our clients include: • Strategic planning • Project planning implementation • Training/capacity building • Consultation facilitation and meeting planning • Grant writing (consultation/documentation and repatriation) • NAGPRA Section 3 (planned excavation & discovery) comprehensive agreement development through government-to-government consultation. • NAGPRA Section 5 Inventory development through government-to-government • NAGPRA Section 6 Summary development and consultation facilitation • Repatriation claim development We believe in exceeding our clients’ expectations as we work together with them to implement the letter and spirit of this landmark human rights law. CLIENT COMMENTS Expert, Reliable, and Produces Results My museum has worked closely with B&A for the last several years, and find the company to be highly reliable, extremely knowledgeable about NAGPRA, and has the ability to produce results. I highly recommend Bernstein & Associates for either museums or tribes needing help with NAGPRA. Fantastic Service The training B&A provided was great value for money. It helped us advance our NAGPRA program, and the follow-up support went beyond the service level we expected. I look forward to future work with this company. Great company to hire! B&A have helped my museum not only through initial consultation procedures but has been a great resource for all questions related to NAGPRA without having to call the office in Washington D.C. Expertise and Service We have come to rely on Bernstein & Associates for accurate and well-considered answers to complex NAGPRA issues. They are always just a phone call away.

NAICS: 712
NAICS Definition:
Employees: 8
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Ohio History Connection

800 E 17th Ave, None, Columbus, OH, US, 43211
Last Update: 2025-12-02
Between 650 and 699
http://www.ohiohistory.org

With over 200 staff members, hundreds of volunteers and thousands of partners in historical societies, local history groups and local and state government, Ohio History Connection champions all Ohio history. Mission Spark discovery of Ohio's stories. Embrace the present, share the past and transform the future Our work includes: * A network of 50+ historic sites and museums; one of the largest statewide networks in the U.S. * Maintain the State Archives which serves as the institutional memory of the state, from founding documents to the vital records. * Administer the state’s historical museum in the Ohio History Center and Ohio Village, located in Columbus, OH. * Promote and assist local historical societies through the Local History Alliance. * Provide online textbook with teaching tools to Ohio's 4th graders. * Protect and promote Ohio's historic places through the Ohio Historic Preservation Office. * Manage the statewide History Fund, to be used for making grants to local history-related projects. * Oversee the more than 1,400 historical markers program throughout Ohio. Visit ohiohistory.org for a complete list of historic sites and services, including admission and hours. Visit ohiohistory.org/jobs for the latest job postings and ohiohistory.org/volunteer to volunteer. Specialties Collections of Ohio History, Genealogy, Civil War History, Museums, Natural History of OH, Earthworks and moundbuilding, Archaeology, Teaching Ohio history to youth, Presidents from OH, Historic preservation in OH, National Register of Historic Places

NAICS: 712
NAICS Definition: Museums, Historical Sites, and Similar Institutions
Employees: 244
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/bernstein-&-associates-native-american-graves-protection-and-repatriation-act-compliance-consultants.jpeg
Bernstein & Associates NAGPRA Consultants
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/ohiohistory.jpeg
Ohio History Connection
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Bernstein & Associates NAGPRA Consultants
100%
Compliance Rate
0/4 Standards Verified
Ohio History Connection
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for Bernstein & Associates NAGPRA Consultants in 2025.

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for Ohio History Connection in 2025.

Incident History — Bernstein & Associates NAGPRA Consultants (X = Date, Y = Severity)

Bernstein & Associates NAGPRA Consultants cyber incidents detection timeline including parent company and subsidiaries

Incident History — Ohio History Connection (X = Date, Y = Severity)

Ohio History Connection cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/bernstein-&-associates-native-american-graves-protection-and-repatriation-act-compliance-consultants.jpeg
Bernstein & Associates NAGPRA Consultants
Incidents

No Incident

https://images.rankiteo.com/companyimages/ohiohistory.jpeg
Ohio History Connection
Incidents

Date Detected: 7/2023
Type:Ransomware
Blog: Blog

Date Detected: 6/2009
Type:Ransomware
Motivation: Financial gain
Blog: Blog

FAQ

Bernstein & Associates NAGPRA Consultants company demonstrates a stronger AI Cybersecurity Score compared to Ohio History Connection company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Ohio History Connection company has historically faced a number of disclosed cyber incidents, whereas Bernstein & Associates NAGPRA Consultants company has not reported any.

In the current year, Ohio History Connection company and Bernstein & Associates NAGPRA Consultants company have not reported any cyber incidents.

Ohio History Connection company has confirmed experiencing a ransomware attack, while Bernstein & Associates NAGPRA Consultants company has not reported such incidents publicly.

Neither Ohio History Connection company nor Bernstein & Associates NAGPRA Consultants company has reported experiencing a data breach publicly.

Neither Ohio History Connection company nor Bernstein & Associates NAGPRA Consultants company has reported experiencing targeted cyberattacks publicly.

Neither Bernstein & Associates NAGPRA Consultants company nor Ohio History Connection company has reported experiencing or disclosing vulnerabilities publicly.

Neither Bernstein & Associates NAGPRA Consultants nor Ohio History Connection holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Bernstein & Associates NAGPRA Consultants company nor Ohio History Connection company has publicly disclosed detailed information about the number of their subsidiaries.

Ohio History Connection company employs more people globally than Bernstein & Associates NAGPRA Consultants company, reflecting its scale as a Museums, Historical Sites, and Zoos.

Neither Bernstein & Associates NAGPRA Consultants nor Ohio History Connection holds SOC 2 Type 1 certification.

Neither Bernstein & Associates NAGPRA Consultants nor Ohio History Connection holds SOC 2 Type 2 certification.

Neither Bernstein & Associates NAGPRA Consultants nor Ohio History Connection holds ISO 27001 certification.

Neither Bernstein & Associates NAGPRA Consultants nor Ohio History Connection holds PCI DSS certification.

Neither Bernstein & Associates NAGPRA Consultants nor Ohio History Connection holds HIPAA certification.

Neither Bernstein & Associates NAGPRA Consultants nor Ohio History Connection holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls RelinquishMagickMemory on _drawInfo->font, freeing the font string but leaving _drawInfo->font pointing to freed memory while _drawInfo->family is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo->font re-frees or dereferences dangling memory. DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo->font remains valid, so destruction or subsequent updates trigger crashes or heap corruption. This vulnerability is fixed in 7.1.2-9 and 6.9.13-34.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 4.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
References
Description

FeehiCMS version 2.1.1 has a Remote Code Execution via Unrestricted File Upload in Ad Management. FeehiCMS version 2.1.1 allows authenticated remote attackers to upload files that the server later executes (or stores in an executable location) without sufficient validation, sanitization, or execution restrictions. An authenticated remote attacker can upload a crafted PHP file and cause the application or web server to execute it, resulting in remote code execution (RCE).

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
References
Description

PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Specifically, the username parameter accepts unvalidated user input, which is then concatenated directly into a backend SQL query.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
References
Description

NMIS/BioDose software V22.02 and previous versions contain executable binaries with plain text hard-coded passwords. These hard-coded passwords could allow unauthorized access to both the application and database.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure file permissions, which in certain deployment scenarios can enable users on client workstations to modify the program executables and libraries.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 8.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
cvss4
Base: 7.1
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References