Comparison Overview

Electronic Arts (EA)

VS

Paramount

Electronic Arts (EA)

209 Redwood Shores Pkwy, Redwood City, CA, US, 94065
Last Update: 2025-12-11
View Profile
Between 800 and 849
http://ea.com

Electronic Arts creates next-level entertainment experiences that inspire players and fans around the world. Here, everyone is part of the story. Part of a community that connects across the globe. A team where creativity thrives, new perspectives are invited, and ideas matter. Regardless of your role, team, or location, this is a place where everyone makes play happen. Join us.

NAICS: 71
NAICS Definition: Arts, Entertainment, and Recreation
Employees: 32,473
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

Paramount

None, None, New York, None, US, None
Last Update: 2025-12-09
Between 750 and 799
https://www.paramount.com

Paramount is a leading media and entertainment company that creates premium content and experiences for audiences worldwide. Driven by iconic studios, networks and streaming services, Paramount's portfolio of consumer brands includes CBS, Showtime Networks, Paramount Pictures, Skydance Animation, Skydance Sports, Nickelodeon, MTV, Comedy Central, BET, Paramount+, Skydance Games, and Pluto TV, among others. Paramount delivers the largest share of the U.S. television audience and boasts one of the industry's most important and extensive libraries of TV and film titles. In addition to offering innovative streaming services and digital video products, the company provides powerful capabilities in production, distribution and advertising solutions.

NAICS: 71
NAICS Definition: Arts, Entertainment, and Recreation
Employees: 31,968
Subsidiaries: 36
12-month incidents
0
Known data breaches
2
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/electronic-arts.jpeg
Electronic Arts (EA)
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/paramountco.jpeg
Paramount
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Electronic Arts (EA)
100%
Compliance Rate
0/4 Standards Verified
Paramount
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Entertainment Providers Industry Average (This Year)

No incidents recorded for Electronic Arts (EA) in 2025.

Incidents vs Entertainment Providers Industry Average (This Year)

No incidents recorded for Paramount in 2025.

Incident History — Electronic Arts (EA) (X = Date, Y = Severity)

Electronic Arts (EA) cyber incidents detection timeline including parent company and subsidiaries

Incident History — Paramount (X = Date, Y = Severity)

Paramount cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/electronic-arts.jpeg
Electronic Arts (EA)
Incidents

Date Detected: 6/2021
Type:Breach
Attack Vector: Credential Theft (Authentication Cookies), Social Engineering, Internal Network Access via Slack
Motivation: Financial Gain (Extortion), Data Monetization (Failed Sale)
Blog: Blog
https://images.rankiteo.com/companyimages/paramountco.jpeg
Paramount
Incidents

Date Detected: 12/2023
Type:Breach
Blog: Blog

Date Detected: 08/2023
Type:Breach
Blog: Blog

FAQ

Electronic Arts (EA) company demonstrates a stronger AI Cybersecurity Score compared to Paramount company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Paramount company has faced a higher number of disclosed cyber incidents historically compared to Electronic Arts (EA) company.

In the current year, Paramount company and Electronic Arts (EA) company have not reported any cyber incidents.

Neither Paramount company nor Electronic Arts (EA) company has reported experiencing a ransomware attack publicly.

Both Paramount company and Electronic Arts (EA) company have disclosed experiencing at least one data breach.

Neither Paramount company nor Electronic Arts (EA) company has reported experiencing targeted cyberattacks publicly.

Neither Electronic Arts (EA) company nor Paramount company has reported experiencing or disclosing vulnerabilities publicly.

Neither Electronic Arts (EA) nor Paramount holds any compliance certifications.

Neither company holds any compliance certifications.

Paramount company has more subsidiaries worldwide compared to Electronic Arts (EA) company.

Electronic Arts (EA) company employs more people globally than Paramount company, reflecting its scale as a Entertainment Providers.

Neither Electronic Arts (EA) nor Paramount holds SOC 2 Type 1 certification.

Neither Electronic Arts (EA) nor Paramount holds SOC 2 Type 2 certification.

Neither Electronic Arts (EA) nor Paramount holds ISO 27001 certification.

Neither Electronic Arts (EA) nor Paramount holds PCI DSS certification.

Neither Electronic Arts (EA) nor Paramount holds HIPAA certification.

Neither Electronic Arts (EA) nor Paramount holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 2.6
Severity: HIGH
AV:N/AC:H/Au:N/C:N/I:P/A:N
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References