Comparison Overview

C.A. Ferolie

VS

Reeves International, Inc.

C.A. Ferolie

2 Van Riper Road, None, Montvale, NJ, US, 07645
Last Update: 2025-09-05 (UTC)
View Profile
Between 700 and 749
http://www.caferolie.com/

Since 1947, C.A. Ferolie (formerly ESM Ferolie) has prided ourselves on maintaining strong traditions of excellence and providing our valued clients with tailored sales and marketing solutions. Our teams are comprised of enthusiastic, experienced, and knowledgeable people who consistently exceed expectations. We are family-owned and -operated, giving us unparalleled flexibility to invest locally in talent and development that delivers industry leading results. Thanks to our operating partnership with C.A. Fortune and C.A. Carlin, we’re uniquely positioned to offer our clients a national agency solution that leads with an innovative platform for understanding consumer and shopper behaviors, omnichannel coverage model, long-standing regional and national customer relationships, and unparalleled flexibility.

NAICS: 30
NAICS Definition: Manufacturing
Employees: 301
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

Reeves International, Inc.

None, None, None, None, US, None
Last Update: 2025-07-26 (UTC)
Between 750 and 799
http://www.reevesintl.com

Since 1946, Reeves’ mission has been to provide children with high-quality toys, gifts and collectibles that encourage wholesome and imaginative play while nurturing an appreciation for education, animals, and the environment. Reeves’ own Breyer® brand makes horse lovers’ dreams come true by creating the most beautiful and authentic model horses in the world. Today Breyer remains the largest, most well-known and respected premium brand of model horses and equine accessories. Each and every horse given the Breyer brand is meticulously hand-painted, just as they were when Breyer first began. Reeves is also proud to distribute exceptional third-party brands including Enchantmints®, Paulinda™, Red Toolbox®, STANLEY® Jr., Tonka®, TOLO®, and WOW®. www.BreyerHorses.com www.ReevesIntl.com

NAICS: 30
NAICS Definition: Manufacturing
Employees: 57
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/caferolie.jpeg
C.A. Ferolie
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/reeves-international.jpeg
Reeves International, Inc.
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
C.A. Ferolie
100%
Compliance Rate
0/4 Standards Verified
Reeves International, Inc.
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for C.A. Ferolie in 2025.

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for Reeves International, Inc. in 2025.

Incident History — C.A. Ferolie (X = Date, Y = Severity)

C.A. Ferolie cyber incidents detection timeline including parent company and subsidiaries

Incident History — Reeves International, Inc. (X = Date, Y = Severity)

Reeves International, Inc. cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/caferolie.jpeg
C.A. Ferolie
Incidents

Date Detected: 12/2020
Type:Breach
Attack Vector: External System Breach (Hacking)
Blog: Blog
https://images.rankiteo.com/companyimages/reeves-international.jpeg
Reeves International, Inc.
Incidents

Date Detected: 3/2013
Type:Breach
Attack Vector: Unauthorized Software
Blog: Blog

FAQ

Reeves International, Inc. company demonstrates a stronger AI Cybersecurity Score compared to C.A. Ferolie company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

C.A. Ferolie and Reeves International, Inc. have experienced a similar number of publicly disclosed cyber incidents.

In the current year, Reeves International, Inc. company and C.A. Ferolie company have not reported any cyber incidents.

Neither Reeves International, Inc. company nor C.A. Ferolie company has reported experiencing a ransomware attack publicly.

Both Reeves International, Inc. company and C.A. Ferolie company have disclosed experiencing at least one data breach.

Neither Reeves International, Inc. company nor C.A. Ferolie company has reported experiencing targeted cyberattacks publicly.

Neither C.A. Ferolie company nor Reeves International, Inc. company has reported experiencing or disclosing vulnerabilities publicly.

Neither C.A. Ferolie nor Reeves International, Inc. holds any compliance certifications.

Neither company holds any compliance certifications.

Neither C.A. Ferolie company nor Reeves International, Inc. company has publicly disclosed detailed information about the number of their subsidiaries.

C.A. Ferolie company employs more people globally than Reeves International, Inc. company, reflecting its scale as a Manufacturing.

Neither C.A. Ferolie nor Reeves International, Inc. holds SOC 2 Type 1 certification.

Neither C.A. Ferolie nor Reeves International, Inc. holds SOC 2 Type 2 certification.

Neither C.A. Ferolie nor Reeves International, Inc. holds ISO 27001 certification.

Neither C.A. Ferolie nor Reeves International, Inc. holds PCI DSS certification.

Neither C.A. Ferolie nor Reeves International, Inc. holds HIPAA certification.

Neither C.A. Ferolie nor Reeves International, Inc. holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 001, 24.0.1 through 24.0.1 Interim Fix 004, 24.0.0 through 24.0.0 Interim Fix 006, and earlier unsupported releases IBM Business Automation Workflow is vulnerable to stored cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Published
Date
2025-11-03
Updated
Date
2025-11-03
Risk Information
cvss3
Base: 6.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
References
Description

Deck Mate 2 is distributed with static, hard-coded credentials for the root shell and web user interface, while multiple management services (SSH, HTTP, Telnet, SMB, X11) are enabled by default. If an attacker can reach these interfaces - most often through local or near-local access such as connecting to the USB or Ethernet ports beneath the table - the built-in credentials permit administrative login and full control of the system. Once authenticated, an attacker can access firmware utilities, modify controller software, and establish persistent compromise. Remote attack paths via network, cellular, or telemetry links may exist in specific configurations but generally require additional capabilities or operator error. The vendor reports that USB access has been disabled in current firmware builds.

Published
Date
2025-11-03
Updated
Date
2025-11-03
Risk Information
cvss4
Base: 7.0
Severity: LOW
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A potential vulnerability was reported in some Lenovo Tablets that could allow a local authenticated user or application to gain access to sensitive device specific information.

Published
Date
2025-11-03
Updated
Date
2025-11-03
Risk Information
cvss3
Base: 5.5
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
cvss4
Base: 6.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Nagios XI versions prior to 2024R1.1.3, under certain circumstances, disclose sensitive user account information (including API keys and hashed passwords) to authenticated users who should not have access to that data. Exposure of API keys or password hashes could lead to account compromise, abuse of API privileges, or offline cracking attempts. CVE-2024-13995 addresses a similar vulnerability with a potentially incomplete fix for the underlying problem in earlier versions.

Published
Date
2025-11-03
Updated
Date
2025-11-03
Risk Information
cvss4
Base: 6.0
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Nagios XI versions prior to 2024R1.1.3 contain a privilege escalation vulnerability in which an authenticated administrator could leverage the Migrate Server feature to obtain root privileges on the underlying XI host. By abusing the migration workflow, an admin-level attacker could execute actions outside the intended security scope of the application, resulting in full control of the operating system.

Published
Date
2025-11-03
Updated
Date
2025-11-03
Risk Information
cvss4
Base: 9.4
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References