Comparison Overview

Carnac - Powered by VISEO

VS

Zoom

Carnac - Powered by VISEO

272 Pacific Hwy, Crows Nest, New South Wales, 2065, AU
Last Update: 2025-03-06 (UTC)
Between 900 and 1000
http://www.carnacgroup.com

Excellent

Carnac is an award-winning Summit Salesforce Consulting Partner serving Australia, NZ and Asia-Pacific. We advise businesses on Salesforce implementations, from project inception and Salesforce strategy through to day-to-day support and continuous improvement. Our clients come from a range of sectors. We are especially sought out by businesses in building and construction, property, manufacturing and distribution, consumer goods and professional services. We are committed to helping our clients get the most out of their Salesforce platform, wherever they are on their journey. Carnac was acquired by the VISEO Group in March 2023. VISEO is a global technology consulting firm assisting its clients with their IT and digital transformation. VISEO uses technology as a powerful lever of transformation and innovation to help its clients take advantage of digital opportunities, address new uses and compete with new players who change the rules of the game. For more information about VISEO, please visit www.viseo.com If youโ€™d like to find out how we can help your business implement or manage your Salesforce platform, get in touch with us today! E-mail: [email protected] Phone: 1300 315 526 Sydney | Brisbane | Melbourne

NAICS: 541
NAICS Definition:
Employees: 8
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Zoom

Last Update: 2025-05-06 (UTC)

Strong

Between 800 and 900
https://www.zoom.us

Bring teams together, reimagine workspaces, engage new audiences, and delight your customers โ€“โ€“ all on the Zoom platform you know and love. ๐Ÿ’™ Zoomies help people stay connected so they can get more done together. We set out on a mission to make video communications frictionless and secure by building the worldโ€™s best video product for the enterprise, but we didnโ€™t stop there. With products like AI Companion, Team Chat, Contact Center, Phone, Events, Rooms, Webinar, and more, we bring innovation to a wide variety of customers, from the conference room to the classroom, from doctorโ€™s offices to financial institutions to government agencies, from global brands to small businesses. We do what we do because of our core value of Care: care for our community, our customers, our company, our teammates, and ourselves. Our global employees help our customers meet happier, communicate better, and create meaningful connections the world over. Zoomies are problem-solvers and self-starters, working hard to get results and moving quickly to design solutions with our customers and users in mind. Here, youโ€™ll work across teams to dig deep into impactful projects that are changing the way people communicate, and find room to grow with opportunities to stretch your skills and advance your career in a diverse, inclusive environment. Learn more about careers at Zoom by visiting our careers site: https://careers.zoom.us/home

NAICS: 5415
NAICS Definition: Computer Systems Design and Related Services
Employees: 10,882
Subsidiaries: 1
12-month incidents
1
Known data breaches
1
Attack type number
3

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/carnac-group.jpeg
Carnac - Powered by VISEO
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/zoom-video-communications.jpeg
Zoom
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Carnac - Powered by VISEO
100%
Compliance Rate
0/4 Standards Verified
Zoom
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for Carnac - Powered by VISEO in 2025.

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Zoom has 63.93% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History โ€” Carnac - Powered by VISEO (X = Date, Y = Severity)

Carnac - Powered by VISEO cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Zoom (X = Date, Y = Severity)

Zoom cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/carnac-group.jpeg
Carnac - Powered by VISEO
Incidents

No Incident

https://images.rankiteo.com/companyimages/zoom-video-communications.jpeg
Zoom
Incidents

Date Detected: 4/2025
Type:Vulnerability
Attack Vector: Cross-Site Scripting (XSS)
Motivation: Inject malicious scripts, Cause denial of service
Blog: Blog

Date Detected: 04/2020
Type:Breach
Motivation: Financial Gain
Blog: Blog

Date Detected: 04/2020
Type:Data Leak
Attack Vector: Credential Stuffing
Motivation: Financial gain by selling accounts on the dark web
Blog: Blog

FAQ

Carnac - Powered by VISEO company company demonstrates a stronger AI risk posture compared to Zoom company company, reflecting its advanced AI governance and monitoring frameworks.

Zoom company has historically faced a number of disclosed cyber incidents, whereas Carnac - Powered by VISEO company has not reported any.

In the current year, Zoom company has reported more cyber incidents than Carnac - Powered by VISEO company.

Neither Zoom company nor Carnac - Powered by VISEO company has reported experiencing a ransomware attack publicly.

Zoom company has disclosed at least one data breach, while Carnac - Powered by VISEO company has not reported such incidents publicly.

Neither Zoom company nor Carnac - Powered by VISEO company has reported experiencing targeted cyberattacks publicly.

Zoom company has disclosed at least one vulnerability, while Carnac - Powered by VISEO company has not reported such incidents publicly.

Zoom company has more subsidiaries worldwide compared to Carnac - Powered by VISEO company.

Zoom company employs more people globally than Carnac - Powered by VISEO company, reflecting its scale as a IT Services and IT Consulting.

Latest Global CVEs (Not Company-Specific)

Description

Mastra is a Typescript framework for building AI agents and assistants. Versions 0.13.8 through 0.13.20-alpha.0 are vulnerable to a Directory Traversal attack that results in the disclosure of directory listings. The code contains a security check to prevent path traversal for reading file contents, but this check is effectively bypassed by subsequent logic that attempts to find directory suggestions. An attacker can leverage this flaw to list the contents of arbitrary directories on the user's filesystem, including the user's home directory, exposing sensitive information about the file system's structure. This issue is fixed in version 0.13.20.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
References
Description

KUNO CMS is a fully deployable full-stack blog application. Versions 1.3.13 and below contain validation flaws in its file upload functionality that can be exploited for stored XSS. The upload endpoint only validates file types based on Content-Type headers, lacks file content analysis and extension whitelist restrictions, allowing attackers to upload SVG files containing malicious scripts (disguised as images). When users access the uploaded resource pages, arbitrary JavaScript executes in their browsers. This issue is fixed in version 1.3.14.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
References
Description

Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss4
Base: 6.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Anyquery is an SQL query engine built on top of SQLite. Versions 0.4.3 and below allow attackers who have already gained access to localhost, even with low privileges, to use the http server through the port unauthenticated, and access private integration data like emails, without any warning of a foreign login from the provider. This issue is fixed in version 0.4.4.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 7.7
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
References
Description

DataChain is a Python-based AI-data warehouse for transforming and analyzing unstructured data. Versions 0.34.1 and below allow for deseriaization of untrusted data because of the way the DataChain library reads serialized objects from environment variables (such as DATACHAIN__METASTORE and DATACHAIN__WAREHOUSE) in the loader.py module. An attacker with the ability to set these environment variables can trigger code execution when the application loads. This issue is fixed in version 0.34.2.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 2.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
References