Comparison Overview

cProgress

VS

derivIT Solutions

cProgress

Blue Tower, Media City UK, Manchester, Manchester, M502ST, GB
Last Update: 2025-03-06 (UTC)
Between 900 and 1000
http://www.cprogress.co.uk/

Excellent

CProgress was established in May 2006 as a full circle digital marketing agency operating across 2 offices in the UK. Established from a niche in high end website design and development, we have a consultative approach to all our services across digital marketing, development, design and hosting. Our technical knowledge โ€“ combined with our depth of digital marketing experience โ€“ means we give you honest commercial advice on what can be achieved with your available resources and budget. Our goal is to keep you ahead of the curve as technology evolves and advances. Many household names have benefited from our services from our offices in Manchester & Cheshire, including; Typhoon, Viners, Mason Cash, Kilner Jars, Simply Warmer and Aintree Racecourse to name a few. We have multiple funding contacts with many LEPโ€™s, Business Growth Hubs and local Chambers of Commerce help to assist in part-funding a range of marketing projects for our customers. We have enjoyed continuous organic growth over the last ten years, and along the way we have grown into a dedicated digital team of 25 accomplished marketeers and technical experts. We have an open and positive working culture which encourages creative and innovative thinking, and our results-driven attitude and company-wide strive for a high standard of customer service is what helps us build and solidify our long-lasting relationships. If you would like to arrange a meeting for a full or part project, or if you would simply like to take advantage of our FREE digital overview and report, please contact us.

NAICS: 541
NAICS Definition:
Employees: 8
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

derivIT Solutions

14-01 BEA Building 60 Robinson Road Singapore, 068892, SG
Last Update: 2025-05-06 (UTC)

Strong

Between 800 and 900
http://www.derivit.com

Excelian, Luxoftโ€™s Financial Services division, helps customers maximize efficiency, reduce risk and increase speed of delivery via adoption of better practices and more advanced systems. Excelian delivers an end-to-end service, from consulting to technology services - platform consolidation, infrastructure optimization, cloud and utility-based models, complemented by a range of proprietary solutions. Excelian manages the standardization of custom complex software development and helps simplify solutions to streamline banking cost structures and achieve more efficient operations via its expertise in packaged software from Murex, Open Link and Calypso, among others. Luxoft (NYSE:LXFT) is a global IT service provider of innovative technology solutions that delivers measurable business outcomes to multinational companies. Its offerings encompass strategic consulting, custom software development services, and digital solution engineering. Luxoft enables companies to compete by leveraging its multi-industry expertise in the financial services, automotive, communications, and healthcare & life sciences sectors. Its managed delivery model is underpinned by a highly-educated workforce, allowing the Company to continuously innovate upwards on the technology stack to meet evolving digital challenges. Luxoft has more than 13,000 employees across 42 offices in 21 countries within five continents, with its operating headquarters office in Zug,Switzerland. For more information, please visit the website. Show more Show less

NAICS: 5415
NAICS Definition: Computer Systems Design and Related Services
Employees: 10,001+
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/cprogress.jpeg
cProgress
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/derivit-solutions.jpeg
derivIT Solutions
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
cProgress
100%
Compliance Rate
0/4 Standards Verified
derivIT Solutions
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for cProgress in 2025.

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for derivIT Solutions in 2025.

Incident History โ€” cProgress (X = Date, Y = Severity)

cProgress cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” derivIT Solutions (X = Date, Y = Severity)

derivIT Solutions cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/cprogress.jpeg
cProgress
Incidents

No Incident

https://images.rankiteo.com/companyimages/derivit-solutions.jpeg
derivIT Solutions
Incidents

No Incident

FAQ

cProgress company company demonstrates a stronger AI risk posture compared to derivIT Solutions company company, reflecting its advanced AI governance and monitoring frameworks.

Historically, derivIT Solutions company has disclosed a higher number of cyber incidents compared to cProgress company.

In the current year, derivIT Solutions company and cProgress company have not reported any cyber incidents.

Neither derivIT Solutions company nor cProgress company has reported experiencing a ransomware attack publicly.

Neither derivIT Solutions company nor cProgress company has reported experiencing a data breach publicly.

Neither derivIT Solutions company nor cProgress company has reported experiencing targeted cyberattacks publicly.

Neither cProgress company nor derivIT Solutions company has reported experiencing or disclosing vulnerabilities publicly.

derivIT Solutions company has more subsidiaries worldwide compared to cProgress company.

cProgress company employs more people globally than derivIT Solutions company, reflecting its scale as a IT Services and IT Consulting.

Latest Global CVEs (Not Company-Specific)

Description

Improper Protection Against Voltage and Clock Glitches in FPGA devices, could allow an attacker with physical access to undervolt the platform resulting in a loss of confidentiality.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss4
Base: 8.6
Severity: LOW
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Malicious code was inserted into the Nx (build system) package and several related plugins. The tampered package was published to the npm software registry, via a supply-chain attack. Affected versions contain code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 9.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
References
Description

Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References
Description

Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the /api/admin/assign-badge endpoint lacks proper access control, allowing any authenticated user to assign high-privilege badges (e.g., Staff) to themselves. This could lead to privilege escalation and impersonation of administrative roles. This issue has been patched in version 2.2.0.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
References
Description

parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeState function of parse version 5.3.0 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.

Published
Date
2025-09-24
Updated
Date
2025-09-24
References