Comparison Overview

CodeTwo

VS

TransUnion

CodeTwo

Last Update: 2024-06-29 (UTC)
Between 800 and 900
http://www.codetwo.com

Strong

CodeTwo develops software solutions for Microsoft 365, Exchange Server and Outlook. We focus mainly on email signature & branding management, mailbox migration and backup. Since 2007, CodeTwo solutions have been used by 120,000+ companies in 170+ countries. Our flagship products have been critically acclaimed and mentioned by Gartner, Newsweek and Forbes. We are Microsoft Gold Partner and we won Microsoft Partner of the Year Award in the ISV category and were named Microsoft Customer Experience Award Finalist.

NAICS: 5415
NAICS Definition: Computer Systems Design and Related Services
Employees: 74
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

TransUnion

None, None, Chicago, Illinois, US, None
Last Update: 2025-08-04 (UTC)

Strong

Between 800 and 900
http://www.transunion.com

TransUnion is a global information and insights company that makes trust possible in the modern economy. We do this by providing an actionable picture of each person so they can be reliably represented in the marketplace. As a result, businesses and consumers can transact with confidence and achieve great things. This picture is grounded in our legacy as a credit reporting agency which enables us to tap into both credit and public record data; our data fusion methodology that helps us link, match and tap into the awesome combined power of that data; and our knowledgeable and passionate team, who stewards the information with expertise, and in accordance with local legislation around the world. A leading presence in more than 30 countries across five continents, TransUnion provides solutions that help create economic opportunity, great experiences and personal empowerment for hundreds of millions of people. We call this Information for Goodยฎ โ€” itโ€™s our purpose, and what drives us every day. Contact Us Customer support: https://transu.co/60024D64I Business support: https://transu.co/60044D67G

NAICS: 5415
NAICS Definition: Computer Systems Design and Related Services
Employees: 16,441
Subsidiaries: 4
12-month incidents
5
Known data breaches
13
Attack type number
2

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/codetwo.jpeg
CodeTwo
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/transunion.jpeg
TransUnion
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
CodeTwo
100%
Compliance Rate
0/4 Standards Verified
TransUnion
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for CodeTwo in 2025.

Incidents vs IT Services and IT Consulting Industry Average (This Year)

TransUnion has 706.45% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History โ€” CodeTwo (X = Date, Y = Severity)

CodeTwo cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” TransUnion (X = Date, Y = Severity)

TransUnion cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/codetwo.jpeg
CodeTwo
Incidents

No Incident

https://images.rankiteo.com/companyimages/transunion.jpeg
TransUnion
Incidents

Date Detected: 9/2025
Type:Breach
Attack Vector: Third-party application vulnerability
Motivation: Likely financial gain (identity theft/fraud)
Blog: Blog

Date Detected: 9/2025
Type:Breach
Motivation: Financial Gain, Data Theft, Extortion
Blog: Blog

Date Detected: 9/2025
Type:Breach
Attack Vector: Third-party application vulnerability
Blog: Blog

FAQ

Both CodeTwo company and TransUnion company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

TransUnion company has historically faced a number of disclosed cyber incidents, whereas CodeTwo company has not reported any.

In the current year, TransUnion company has reported more cyber incidents than CodeTwo company.

Neither TransUnion company nor CodeTwo company has reported experiencing a ransomware attack publicly.

TransUnion company has disclosed at least one data breach, while CodeTwo company has not reported such incidents publicly.

Neither TransUnion company nor CodeTwo company has reported experiencing targeted cyberattacks publicly.

Neither CodeTwo company nor TransUnion company has reported experiencing or disclosing vulnerabilities publicly.

TransUnion company has more subsidiaries worldwide compared to CodeTwo company.

TransUnion company employs more people globally than CodeTwo company, reflecting its scale as a IT Services and IT Consulting.

Latest Global CVEs (Not Company-Specific)

Description

An issue was discovered in chinabugotech hutool before 5.8.4 allowing attackers to execute arbitrary expressions that lead to arbitrary method invocation and potentially remote code execution (RCE) via the QLExpressEngine class.

Published
Date
2025-09-25
Updated
Date
2025-09-25
References
Description

A weakness has been identified in JeecgBoot up to 3.8.2. The impacted element is an unknown function of the file /sys/role/exportXls. This manipulation causes improper authorization. It is possible to initiate the attack remotely. The exploit has been made available to the public and could be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-09-25
Updated
Date
2025-09-25
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in JeecgBoot up to 3.8.2. The affected element is an unknown function of the file /sys/user/exportXls of the component Filter Handler. The manipulation results in improper authorization. The attack may be performed from remote. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-09-25
Updated
Date
2025-09-25
Risk Information
cvss2
Base: 4.0
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:N/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in JeecgBoot up to 3.8.2. Impacted is an unknown function of the file /sys/tenant/deleteBatch. The manipulation of the argument ids leads to improper authorization. The attack is possible to be carried out remotely. The complexity of an attack is rather high. The exploitability is considered difficult. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-09-25
Updated
Date
2025-09-25
Risk Information
cvss2
Base: 2.1
Severity: HIGH
AV:N/AC:H/Au:S/C:P/I:N/A:N
cvss3
Base: 3.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 2.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was determined in JeecgBoot up to 3.8.2. This issue affects some unknown processing of the file /api/getDepartUserList. Executing manipulation of the argument departId can lead to improper authorization. The attack can be executed remotely. This attack is characterized by high complexity. The exploitability is assessed as difficult. The exploit has been publicly disclosed and may be utilized. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-09-25
Updated
Date
2025-09-25
Risk Information
cvss2
Base: 2.1
Severity: HIGH
AV:N/AC:H/Au:S/C:P/I:N/A:N
cvss3
Base: 3.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
cvss4
Base: 2.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References