Comparison Overview

DISH Network

VS

Telefónica

DISH Network

9601 S. Meridian Blvd, Englewood, CO, 80112, US
Last Update: 2025-12-19
View Profile
Between 650 and 699
http://careers.dish.com

Our adventure began by changing the way people watched TV, bringing DISH to where big cable wouldn’t: rural America. Since then, we have reinvented ourselves and our own industry with Sling TV to give millions of consumers more choice in entertainment. Today, we’ve officially entered the consumer wireless industry as the fourth largest wireless provider with our acquisitions of Boost Mobile, Ting Mobile and Gen Mobile — but that’s just the start. We’re building America’s first cloud-native 5G network to transform the way we live, work and play with unlimited possibilities.

NAICS: 517
NAICS Definition: Telecommunications
Employees: 23,216
Subsidiaries: 8
12-month incidents
0
Known data breaches
1
Attack type number
2
View Profile

Telefónica

Spain, Madrid, ES, 28050
Last Update: 2025-12-22
Between 600 and 649
http://www.telefonica.com

Telefónica is today one of the largest telecommunications companies in the world in terms of market capitalisation and number of customers. We have the best infrastructure, as well as an innovative range of digital and data services; therefore, we are favorably positioned to meet the needs of our customers and capture growth in new businesses. We are sensitive to the new challenges demanded by society today and, therefore, we provide the means to facilitate communication between people, providing them with the most secure and cutting-edge technology. Our vision is focused on technology making people's lives easier and our aim is to promote progress in that direction, so that technology can make a positive impact on the world both socially and environmentally, and, ultimately, so as to provide value and trust in an ever-changing and accelerating world. Digital life is life itself, and technology is an essential part of being human. We want to create, protect and boost connections in life so people can choose a world of unlimited possibilities. We want to be a company in which our clients, employees, suppliers, shareholders, and society in general can trust. In order to achieve this, we communicate our strategy, business model and most relevant data to our stakeholders in a clear and transparent manner, so as to show the company's ability to create value.

NAICS: 517
NAICS Definition: Telecommunications
Employees: 106,358
Subsidiaries: 28
12-month incidents
2
Known data breaches
1
Attack type number
2

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/dish-network.jpeg
DISH Network
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/telefonica.jpeg
Telefónica
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
DISH Network
100%
Compliance Rate
0/4 Standards Verified
Telefónica
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Telecommunications Industry Average (This Year)

No incidents recorded for DISH Network in 2025.

Incidents vs Telecommunications Industry Average (This Year)

Telefónica has 143.9% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History — DISH Network (X = Date, Y = Severity)

DISH Network cyber incidents detection timeline including parent company and subsidiaries

Incident History — Telefónica (X = Date, Y = Severity)

Telefónica cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/dish-network.jpeg
DISH Network
Incidents

Date Detected: 05/2023
Type:Ransomware
Attack Vector: Compromised Windows domain controllers
Motivation: Ransom
Blog: Blog

Date Detected: 02/2023
Type:Ransomware
Attack Vector: Ransomware
Motivation: Financial Gain
Blog: Blog

Date Detected: 3/2019
Type:Breach
Attack Vector: Unauthorized Access
Blog: Blog
https://images.rankiteo.com/companyimages/telefonica.jpeg
Telefónica
Incidents

Date Detected: 12/2025
Type:Breach
Blog: Blog

Date Detected: 5/2025
Type:Ransomware
Attack Vector: Internal Jira development and ticketing server
Motivation: Ransom
Blog: Blog

FAQ

DISH Network company demonstrates a stronger AI Cybersecurity Score compared to Telefónica company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

DISH Network company has faced a higher number of disclosed cyber incidents historically compared to Telefónica company.

In the current year, Telefónica company has reported more cyber incidents than DISH Network company.

Both Telefónica company and DISH Network company have confirmed experiencing at least one ransomware attack.

Both Telefónica company and DISH Network company have disclosed experiencing at least one data breach.

Neither Telefónica company nor DISH Network company has reported experiencing targeted cyberattacks publicly.

Neither DISH Network company nor Telefónica company has reported experiencing or disclosing vulnerabilities publicly.

Neither DISH Network nor Telefónica holds any compliance certifications.

Neither company holds any compliance certifications.

Telefónica company has more subsidiaries worldwide compared to DISH Network company.

Telefónica company employs more people globally than DISH Network company, reflecting its scale as a Telecommunications.

Neither DISH Network nor Telefónica holds SOC 2 Type 1 certification.

Neither DISH Network nor Telefónica holds SOC 2 Type 2 certification.

Neither DISH Network nor Telefónica holds ISO 27001 certification.

Neither DISH Network nor Telefónica holds PCI DSS certification.

Neither DISH Network nor Telefónica holds HIPAA certification.

Neither DISH Network nor Telefónica holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Marshmallow is a lightweight library for converting complex objects to and from simple Python datatypes. In versions from 3.0.0rc1 to before 3.26.2 and from 4.0.0 to before 4.1.2, Schema.load(data, many=True) is vulnerable to denial of service attacks. A moderately sized request can consume a disproportionate amount of CPU time. This issue has been patched in version 3.26.2 and 4.1.2.

Published
Date
2025-12-22
Updated
Date
2025-12-22
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
References
Description

KEDA is a Kubernetes-based Event Driven Autoscaling component. Prior to versions 2.17.3 and 2.18.3, an Arbitrary File Read vulnerability has been identified in KEDA, potentially affecting any KEDA resource that uses TriggerAuthentication to configure HashiCorp Vault authentication. The vulnerability stems from an incorrect or insufficient path validation when loading the Service Account Token specified in spec.hashiCorpVault.credential.serviceAccount. An attacker with permissions to create or modify a TriggerAuthentication resource can exfiltrate the content of any file from the node's filesystem (where the KEDA pod resides) by directing the file's content to a server under their control, as part of the Vault authentication request. The potential impact includes the exfiltration of sensitive system information, such as secrets, keys, or the content of files like /etc/passwd. This issue has been patched in versions 2.17.3 and 2.18.3.

Published
Date
2025-12-22
Updated
Date
2025-12-22
Risk Information
cvss4
Base: 8.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Fedify is a TypeScript library for building federated server apps powered by ActivityPub. Prior to versions 1.6.13, 1.7.14, 1.8.15, and 1.9.2, a Regular Expression Denial of Service (ReDoS) vulnerability exists in Fedify's document loader. The HTML parsing regex at packages/fedify/src/runtime/docloader.ts:259 contains nested quantifiers that cause catastrophic backtracking when processing maliciously crafted HTML responses. This issue has been patched in versions 1.6.13, 1.7.14, 1.8.15, and 1.9.2.

Published
Date
2025-12-22
Updated
Date
2025-12-22
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
Description

Authenticated Remote Code Execution (RCE) in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme file (e.g., home.php).

Published
Date
2025-12-22
Updated
Date
2025-12-22
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
References
Description

An issue was discovered in Xiongmai XM530 IP cameras on firmware V5.00.R02.000807D8.10010.346624.S.ONVIF 21.06. The GetStreamUri exposes RTSP URIs containing hardcoded credentials enabling direct unauthorized video stream access.

Published
Date
2025-12-22
Updated
Date
2025-12-22
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References