Comparison Overview

Q: Between DISH Network company and Openreach company, which one has the best AI Cybersecurity Score ?

Openreach company demonstrates a stronger AI Cybersecurity Score compared to DISH Network company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between DISH Network company and Openreach company, which one has experienced more cyber incidents in the past ?

DISH Network company has faced a higher number of disclosed cyber incidents historically compared to Openreach company.

Q: Between DISH Network company and Openreach company, which one has experienced more cyber incidents this year ?

In the current year, Openreach company and DISH Network company have not reported any cyber incidents.

Q: Between DISH Network company and Openreach company, which one has experienced at least one ransomware attack ?

Both Openreach company and DISH Network company have confirmed experiencing at least one ransomware attack.

Q: Between DISH Network company and Openreach company, which one has experienced at least one data breach ?

DISH Network company has disclosed at least one data breach, while the other Openreach company has not reported such incidents publicly.

Q: Between DISH Network company and Openreach company, which one has experienced at least one targeted cyberattack ?

Neither Openreach company nor DISH Network company has reported experiencing targeted cyberattacks publicly.

Q: Between DISH Network company and Openreach company, which one has experienced at least one vulnerability ?

Neither DISH Network company nor Openreach company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between DISH Network company and Openreach company, which one holds the most compliance certifications ?

Neither DISH Network nor Openreach holds any compliance certifications.

Q: Between DISH Network company and Openreach company, which one has the most subsidiaries ?

Openreach company has more subsidiaries worldwide compared to DISH Network company.

DISH Network

9601 S. Meridian Blvd, Englewood, CO, 80112, US

Last Update: 2025-12-19

View Profile

Between 650 and 699

http://careers.dish.com

Our adventure began by changing the way people watched TV, bringing DISH to where big cable wouldn’t: rural America. Since then, we have reinvented ourselves and our own industry with Sling TV to give millions of consumers more choice in entertainment. Today, we’ve officially entered the consumer wireless industry as the fourth largest wireless provider with our acquisitions of Boost Mobile, Ting Mobile and Gen Mobile — but that’s just the start. We’re building America’s first cloud-native 5G network to transform the way we live, work and play with unlimited possibilities.

NAICS: 517

NAICS Definition: Telecommunications

Employees: 23,216

Subsidiaries: 8

12-month incidents

0

Known data breaches

1

Attack type number

2

View Profile

Openreach

6 Gracechurch Street, London, England, EC3V 0AT, GB

Last Update: 2025-12-17

Between 750 and 799

https://openreach.co.uk/ultrafastfullfibre

We’re the people that make the net work. As the nation’s largest wholesale broadband network, we’re rolling out Ultrafast Full Fibre broadband across the UK. It’s our fastest and most reliable broadband yet, and we’re well on our way to making it available to 25m homes and businesses – building the UK’s fibre future. Check openreach.co.uk/ultrafastfullfibre to see when Ultrafast Full Fibre may be available at your address.

NAICS: 517

NAICS Definition: Telecommunications

Employees: 16,763

Subsidiaries: 10

12-month incidents

0

Known data breaches

0

Attack type number

2

DISH Network

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Openreach

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Telecommunications Industry Average (This Year)

No incidents recorded for DISH Network in 2025.

Incidents vs Telecommunications Industry Average (This Year)

No incidents recorded for Openreach in 2025.

Incident History — DISH Network (X = Date, Y = Severity)

DISH Network cyber incidents detection timeline including parent company and subsidiaries

Incident History — Openreach (X = Date, Y = Severity)

Openreach cyber incidents detection timeline including parent company and subsidiaries

DISH Network

Incidents

Date Detected: 05/2023

Type:Ransomware

Attack Vector: Compromised Windows domain controllers

Motivation: Ransom

Blog: Blog

Date Detected: 02/2023

Type:Ransomware

Attack Vector: Ransomware

Motivation: Financial Gain

Blog: Blog

Date Detected: 3/2019

Type:Breach

Attack Vector: Unauthorized Access

Blog: Blog

Openreach

Incidents

Date Detected: 12/2024

Type:Ransomware

Blog: Blog

Date Detected: 05/2018

Type:Data Leak

Attack Vector: Exposed Default Password

Motivation: Unintentional Exposure

Blog: Blog

Openreach company demonstrates a stronger AI Cybersecurity Score compared to DISH Network company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

DISH Network company has faced a higher number of disclosed cyber incidents historically compared to Openreach company.

In the current year, Openreach company and DISH Network company have not reported any cyber incidents.

Both Openreach company and DISH Network company have confirmed experiencing at least one ransomware attack.

DISH Network company has disclosed at least one data breach, while the other Openreach company has not reported such incidents publicly.

Neither Openreach company nor DISH Network company has reported experiencing targeted cyberattacks publicly.

Neither DISH Network company nor Openreach company has reported experiencing or disclosing vulnerabilities publicly.

Neither DISH Network nor Openreach holds any compliance certifications.

Neither company holds any compliance certifications.

Openreach company has more subsidiaries worldwide compared to DISH Network company.

DISH Network company employs more people globally than Openreach company, reflecting its scale as a Telecommunications.

Neither DISH Network nor Openreach holds SOC 2 Type 1 certification.

Neither DISH Network nor Openreach holds SOC 2 Type 2 certification.

Neither DISH Network nor Openreach holds ISO 27001 certification.

Neither DISH Network nor Openreach holds PCI DSS certification.

Neither DISH Network nor Openreach holds HIPAA certification.

Neither DISH Network nor Openreach holds GDPR certification.

Description

Marshmallow is a lightweight library for converting complex objects to and from simple Python datatypes. In versions from 3.0.0rc1 to before 3.26.2 and from 4.0.0 to before 4.1.2, Schema.load(data, many=True) is vulnerable to denial of service attacks. A moderately sized request can consume a disproportionate amount of CPU time. This issue has been patched in version 3.26.2 and 4.1.2.

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss3

Base: 5.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

References

Description

KEDA is a Kubernetes-based Event Driven Autoscaling component. Prior to versions 2.17.3 and 2.18.3, an Arbitrary File Read vulnerability has been identified in KEDA, potentially affecting any KEDA resource that uses TriggerAuthentication to configure HashiCorp Vault authentication. The vulnerability stems from an incorrect or insufficient path validation when loading the Service Account Token specified in spec.hashiCorpVault.credential.serviceAccount. An attacker with permissions to create or modify a TriggerAuthentication resource can exfiltrate the content of any file from the node's filesystem (where the KEDA pod resides) by directing the file's content to a server under their control, as part of the Vault authentication request. The potential impact includes the exfiltration of sensitive system information, such as secrets, keys, or the content of files like /etc/passwd. This issue has been patched in versions 2.17.3 and 2.18.3.

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss4

Base: 8.2

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

Fedify is a TypeScript library for building federated server apps powered by ActivityPub. Prior to versions 1.6.13, 1.7.14, 1.8.15, and 1.9.2, a Regular Expression Denial of Service (ReDoS) vulnerability exists in Fedify's document loader. The HTML parsing regex at packages/fedify/src/runtime/docloader.ts:259 contains nested quantifiers that cause catastrophic backtracking when processing maliciously crafted HTML responses. This issue has been patched in versions 1.6.13, 1.7.14, 1.8.15, and 1.9.2.

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Description

Authenticated Remote Code Execution (RCE) in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file (e.g., home.php).

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

References

Description

An issue was discovered in Xiongmai XM530 IP cameras on firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06. The GetStreamUri exposes RTSP URIs containing hardcoded credentials enabling direct unauthorized video stream access.

Published

Date

2025-12-22

Updated

Date

2025-12-22

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

DISH Network

VS

Openreach

DISH Network

Openreach

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Telecommunications Industry Average (This Year)

Incidents vs Telecommunications Industry Average (This Year)

Incident History — DISH Network (X = Date, Y = Severity)

Incident History — Openreach (X = Date, Y = Severity)

Notable Incidents

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-68480

Risk Information

CVE-2025-68476

Risk Information

CVE-2025-68475

Risk Information

CVE-2025-67436

Risk Information

CVE-2025-65857

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

DISH Network

VS

Openreach

DISH Network

Openreach

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Telecommunications Industry Average (This Year)

Incidents vs Telecommunications Industry Average (This Year)

Incident History — DISH Network (X = Date, Y = Severity)

Incident History — Openreach (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Ransomware DIS03212623

🔒 Incident : Ransomware DIS22128523

🔒 Incident : Breach BOO829072725

🔒 Incident : Ransomware BT000120524

🔒 Incident : Data Leak EE410251223

FAQ

Between DISH Network company and Openreach company, which one has the best AI Cybersecurity Score ?

Between DISH Network company and Openreach company, which one has experienced more cyber incidents in the past ?

Between DISH Network company and Openreach company, which one has experienced more cyber incidents this year ?

Between DISH Network company and Openreach company, which one has experienced at least one ransomware attack ?

Between DISH Network company and Openreach company, which one has experienced at least one data breach ?

Between DISH Network company and Openreach company, which one has experienced at least one targeted cyberattack ?

Between DISH Network company and Openreach company, which one has experienced at least one vulnerability ?

Between DISH Network company and Openreach company, which one holds the most compliance certifications ?

Between DISH Network company and Openreach company, which one holds the fewest compliance certifications ?

Between DISH Network company and Openreach company, which one has the most subsidiaries ?

Between DISH Network company and Openreach company, which one has the largest number of employees ?

Between DISH Network and Openreach, which company holds both SOC 2 Type 1 certifications ?

Between DISH Network and Openreach, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — DISH Network or Openreach ?

Which company is PCI DSS compliant — DISH Network or Openreach ?

Between DISH Network and Openreach, which company complies with HIPAA regulations for healthcare data ?

Between DISH Network and Openreach, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-68480

Risk Information

CVE-2025-68476

Risk Information

CVE-2025-68475

Risk Information

CVE-2025-67436

Risk Information

CVE-2025-65857

Risk Information