Comparison Overview

Swiss Federal Administration

VS

City of Toronto

Swiss Federal Administration

Eigerstrasse 71, Bern, 3003, CH
Last Update: 2026-01-18
View Profile
Between 750 and 799
http://www.stelle.admin.ch

Seven departments, the Federal Chancellery and around 70 administrative units make up the Federal Administration. With around 38,000 employees, we are one of the largest employers in Switzerland. Everyone who works for the Federal Administration actively contributes to Switzerland's well-being and shapes the future of our country. We are as varied as Switzerland itself – we stand for active diversity and inclusion. Our employees come from all over the country and the Federal Administration is present throughout Switzerland. With us, you can expect diverse, challenging and unique tasks in all kinds of subject areas and specialist fields. As a modern employer, the Federal Administration enables its employees to combine work and private life with flexible forms of work and promotes their personal development with practical training and continuing professional development. * Vacancies in the administrative units can be found on their LinkedIn pages or at stelle.admin.ch.

NAICS: 92
NAICS Definition: Public Administration
Employees: 24,156
Subsidiaries: 68
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

City of Toronto

Toronto City Hall, 100 Queen Street West, Toronto, Ontario, CA, M5H 2N2
Last Update: 2026-01-15
Between 700 and 749
http://www.toronto.ca

The City of Toronto is committed to fostering a positive and progressive workplace culture, and strives to build a workforce that reflects the citizens it serves. We are committed to building a high performing public service, with strong and effective leaders to enable service excellence, through high engagement and healthy and safe workplaces. Toronto is home to more than 2.9 million people whose diversity and experiences make this great city Canada’s leading economic engine and one of the world’s most diverse and livable cities. As the fourth largest city in North America, Toronto is a global leader in technology, finance, film, music, culture, and innovation, and consistently places at the top of international rankings due to investments championed by its government, residents and businesses. Toronto Public Service consists of approximately 35,771 employees, providing programs and services to Toronto residents, businesses and visitors. Additionally, the City of Toronto has a number of agencies and corporations including the Toronto Police Service, Toronto Public Library and the Toronto Transit Commission, which make up the broader municipal organization. There are 44 operating divisions and offices providing an extensive level of programs and services. We offer diverse career opportunities across a wide variety of professional, trade, administrative, managerial and other employment roles. The Toronto Public Service has won numerous awards for quality, innovation and efficiency in delivering citizen-focused services. We are proud to have been named one of Canada's Top 100 Employers, Canada's Best Diversity Employers, Top Family Friendly Employers and Greater Toronto's Top Employers. Consider joining the award-winning Toronto Public Service and help us make a difference in a great City!

NAICS: 92
NAICS Definition: Public Administration
Employees: 22,766
Subsidiaries: 8
12-month incidents
0
Known data breaches
0
Attack type number
2

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/bundesverwaltung.jpeg
Swiss Federal Administration
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/city-of-toronto.jpeg
City of Toronto
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Swiss Federal Administration
100%
Compliance Rate
0/4 Standards Verified
City of Toronto
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Government Administration Industry Average (This Year)

No incidents recorded for Swiss Federal Administration in 2026.

Incidents vs Government Administration Industry Average (This Year)

No incidents recorded for City of Toronto in 2026.

Incident History — Swiss Federal Administration (X = Date, Y = Severity)

Swiss Federal Administration cyber incidents detection timeline including parent company and subsidiaries

Incident History — City of Toronto (X = Date, Y = Severity)

City of Toronto cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/bundesverwaltung.jpeg
Swiss Federal Administration
Incidents

No Incident

https://images.rankiteo.com/companyimages/city-of-toronto.jpeg
City of Toronto
Incidents

Date Detected: 03/2023
Type:Ransomware
Attack Vector: Zero-Day Vulnerability
Motivation: Financial Gain
Blog: Blog

Date Detected: 03/2020
Type:Data Leak
Attack Vector: Inadvertent Disclosure
Blog: Blog

FAQ

Swiss Federal Administration company demonstrates a stronger AI Cybersecurity Score compared to City of Toronto company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

City of Toronto company has historically faced a number of disclosed cyber incidents, whereas Swiss Federal Administration company has not reported any.

In the current year, City of Toronto company and Swiss Federal Administration company have not reported any cyber incidents.

City of Toronto company has confirmed experiencing a ransomware attack, while Swiss Federal Administration company has not reported such incidents publicly.

Neither City of Toronto company nor Swiss Federal Administration company has reported experiencing a data breach publicly.

Neither City of Toronto company nor Swiss Federal Administration company has reported experiencing targeted cyberattacks publicly.

Neither Swiss Federal Administration company nor City of Toronto company has reported experiencing or disclosing vulnerabilities publicly.

Neither Swiss Federal Administration nor City of Toronto holds any compliance certifications.

Neither company holds any compliance certifications.

Swiss Federal Administration company has more subsidiaries worldwide compared to City of Toronto company.

Swiss Federal Administration company employs more people globally than City of Toronto company, reflecting its scale as a Government Administration.

Neither Swiss Federal Administration nor City of Toronto holds SOC 2 Type 1 certification.

Neither Swiss Federal Administration nor City of Toronto holds SOC 2 Type 2 certification.

Neither Swiss Federal Administration nor City of Toronto holds ISO 27001 certification.

Neither Swiss Federal Administration nor City of Toronto holds PCI DSS certification.

Neither Swiss Federal Administration nor City of Toronto holds HIPAA certification.

Neither Swiss Federal Administration nor City of Toronto holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

SummaryA command injection vulnerability (CWE-78) has been found to exist in the `wrangler pages deploy` command. The issue occurs because the `--commit-hash` parameter is passed directly to a shell command without proper validation or sanitization, allowing an attacker with control of `--commit-hash` to execute arbitrary commands on the system running Wrangler. Root causeThe commitHash variable, derived from user input via the --commit-hash CLI argument, is interpolated directly into a shell command using template literals (e.g.,  execSync(`git show -s --format=%B ${commitHash}`)). Shell metacharacters are interpreted by the shell, enabling command execution. ImpactThis vulnerability is generally hard to exploit, as it requires --commit-hash to be attacker controlled. The vulnerability primarily affects CI/CD environments where `wrangler pages deploy` is used in automated pipelines and the --commit-hash parameter is populated from external, potentially untrusted sources. An attacker could exploit this to: * Run any shell command. * Exfiltrate environment variables. * Compromise the CI runner to install backdoors or modify build artifacts. Credits Disclosed responsibly by kny4hacker. Mitigation * Wrangler v4 users are requested to upgrade to Wrangler v4.59.1 or higher. * Wrangler v3 users are requested to upgrade to Wrangler v3.114.17 or higher. * Users on Wrangler v2 (EOL) should upgrade to a supported major version.

Published
Date
2026-01-20
Updated
Date
2026-01-20
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).

Published
Date
2026-01-20
Updated
Date
2026-01-20
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
References
Description

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L).

Published
Date
2026-01-20
Updated
Date
2026-01-20
Risk Information
cvss3
Base: 8.1
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L
References
Description

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).

Published
Date
2026-01-20
Updated
Date
2026-01-20
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
References
Description

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).

Published
Date
2026-01-20
Updated
Date
2026-01-20
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
References