Comparison Overview

Q: Between Bestar company and LOZI company, which one has the best AI Cybersecurity Score ?

Bestar company demonstrates a stronger AI Cybersecurity Score compared to LOZI company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between Bestar company and LOZI company, which one has experienced more cyber incidents in the past ?

Historically, LOZI company has disclosed a higher number of cyber incidents compared to Bestar company.

Q: Between Bestar company and LOZI company, which one has experienced more cyber incidents this year ?

In the current year, LOZI company and Bestar company have not reported any cyber incidents.

Q: Between Bestar company and LOZI company, which one has experienced at least one ransomware attack ?

Neither LOZI company nor Bestar company has reported experiencing a ransomware attack publicly.

Q: Between Bestar company and LOZI company, which one has experienced at least one data breach ?

Neither LOZI company nor Bestar company has reported experiencing a data breach publicly.

Q: Between Bestar company and LOZI company, which one has experienced at least one targeted cyberattack ?

Neither LOZI company nor Bestar company has reported experiencing targeted cyberattacks publicly.

Q: Between Bestar company and LOZI company, which one has experienced at least one vulnerability ?

Neither Bestar company nor LOZI company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between Bestar company and LOZI company, which one holds the most compliance certifications ?

Neither Bestar nor LOZI holds any compliance certifications.

Q: Between Bestar company and LOZI company, which one has the most subsidiaries ?

Neither Bestar company nor LOZI company has publicly disclosed detailed information about the number of their subsidiaries.

Bestar

4220 Rue Villeneuve, Lac-Mégantic, G6B, CA

Last Update: 2025-11-21

View Profile

Between 750 and 799

http://www.bestar.ca

Bestar is a proud North American furniture brand that specializes in the design and creation of affordable, high-quality home and office furnishings for large and small spaces alike. Bestar is proud to be a member of the eSolutions Furniture family of brands. Alongside brands such as Bush Furniture, Bush Business Furniture, kathy ireland® Home by Bush Furniture and Office by kathy ireland®, we offer high-quality, ready-to-assemble home and office furniture at a great price. The eSolutions furniture family aims to be your #1 e-commerce solution for commercial and residential furniture in North America. Bestar est une marque fièrement québécoise qui se spécialise dans la conception et la création de mobilier abordable et de qualité pour la maison et le bureau, dans les grands espaces comme les petits. Bestar est fière de faire partie de la grande famille eSolutions. Aux côtés de marques telles que Bush Furniture, Bush Business Furniture, kathy ireland® Home by Bush Furniture and Office by kathy ireland®, nous offrons du mobilier prêt à assembler de qualité pour la maison et le bureau, à un prix abordable. Le groupe d’ameublement eSolutions vise à être votre solution de commerce électronique n°1 en Amérique du Nord pour le mobilier résidentiel et commercial.

NAICS: 337

NAICS Definition: Furniture and Related Product Manufacturing

Employees: 77

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

LOZI

Lozi Designs, London, England E2 7SJ, GB

Last Update: 2025-11-24

Between 750 and 799

https://www.lozidesigns.com

We believe that the furniture we surround ourselves with should be more than either beautiful or practical - it should be personal. Founded in 2012 by Soroush Pourhashemi, Lozi designs and makes minimal modern wooden furniture. Every Lozi piece is made by hand from our Workshop on Hackney Road in East London. Known for our unique combination of digital manufacturing and traditional woodworking methods, Lozi’s designs are elegantly minimal, full of personality and will fit seamlessly into any contemporary home. Over the years, Lozi has received critical acclaim, with pieces featuring national papers like The Sunday Times and The Evening Standard as well as acclaimed online platforms and a customer base spanning Europe and the US. Lozi has showcased its collections at several large trade and design shows in London, including London Design Fair, Grand Designs Live, 100% Design and Clerkenwell Design Week.

NAICS: 337

NAICS Definition: Furniture and Related Product Manufacturing

Employees: 12

Subsidiaries: 0

12-month incidents

0

Known data breaches

0

Attack type number

0

Bestar

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

LOZI

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for Bestar in 2025.

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

No incidents recorded for LOZI in 2025.

Incident History — Bestar (X = Date, Y = Severity)

Bestar cyber incidents detection timeline including parent company and subsidiaries

Incident History — LOZI (X = Date, Y = Severity)

LOZI cyber incidents detection timeline including parent company and subsidiaries

Bestar

Incidents

No Incident

LOZI

Incidents

No Incident

Bestar company demonstrates a stronger AI Cybersecurity Score compared to LOZI company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, LOZI company has disclosed a higher number of cyber incidents compared to Bestar company.

In the current year, LOZI company and Bestar company have not reported any cyber incidents.

Neither LOZI company nor Bestar company has reported experiencing a ransomware attack publicly.

Neither LOZI company nor Bestar company has reported experiencing a data breach publicly.

Neither LOZI company nor Bestar company has reported experiencing targeted cyberattacks publicly.

Neither Bestar company nor LOZI company has reported experiencing or disclosing vulnerabilities publicly.

Neither Bestar nor LOZI holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Bestar company nor LOZI company has publicly disclosed detailed information about the number of their subsidiaries.

Bestar company employs more people globally than LOZI company, reflecting its scale as a Furniture and Home Furnishings Manufacturing.

Neither Bestar nor LOZI holds SOC 2 Type 1 certification.

Neither Bestar nor LOZI holds SOC 2 Type 2 certification.

Neither Bestar nor LOZI holds ISO 27001 certification.

Neither Bestar nor LOZI holds PCI DSS certification.

Neither Bestar nor LOZI holds HIPAA certification.

Neither Bestar nor LOZI holds GDPR certification.

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss4

Base: 6.2

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 9.9

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

References

https://mattermost.com/security-updates

Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published

Date

2025-11-27

Updated

Date

2025-11-27

Risk Information

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References

https://mattermost.com/security-updates

Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published

Date

2025-11-27

Updated

Date

2025-11-27

References

https://devolutions.net/security/advisories/DEVO-2025-0018/

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Bestar

VS

LOZI

Bestar

LOZI

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incident History — Bestar (X = Date, Y = Severity)

Incident History — LOZI (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Bestar

VS

LOZI

Bestar

LOZI

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)

Incident History — Bestar (X = Date, Y = Severity)

Incident History — LOZI (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between Bestar company and LOZI company, which one has the best AI Cybersecurity Score ?

Between Bestar company and LOZI company, which one has experienced more cyber incidents in the past ?

Between Bestar company and LOZI company, which one has experienced more cyber incidents this year ?

Between Bestar company and LOZI company, which one has experienced at least one ransomware attack ?

Between Bestar company and LOZI company, which one has experienced at least one data breach ?

Between Bestar company and LOZI company, which one has experienced at least one targeted cyberattack ?

Between Bestar company and LOZI company, which one has experienced at least one vulnerability ?

Between Bestar company and LOZI company, which one holds the most compliance certifications ?

Between Bestar company and LOZI company, which one holds the fewest compliance certifications ?

Between Bestar company and LOZI company, which one has the most subsidiaries ?

Between Bestar company and LOZI company, which one has the largest number of employees ?

Between Bestar and LOZI, which company holds both SOC 2 Type 1 certifications ?

Between Bestar and LOZI, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Bestar or LOZI ?

Which company is PCI DSS compliant — Bestar or LOZI ?

Between Bestar and LOZI, which company complies with HIPAA regulations for healthcare data ?

Between Bestar and LOZI, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-3261

Risk Information

CVE-2025-12421

Risk Information

CVE-2025-12559

Risk Information

CVE-2025-13765

CVE-2025-13758