Comparison Overview

Q: Between Elsevier company and Infosys BPM company, which one has the best AI Cybersecurity Score ?

Infosys BPM company demonstrates a stronger AI Cybersecurity Score compared to Elsevier company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between Elsevier company and Infosys BPM company, which one has experienced more cyber incidents in the past ?

Infosys BPM company has faced a higher number of disclosed cyber incidents historically compared to Elsevier company.

Q: Between Elsevier company and Infosys BPM company, which one has experienced more cyber incidents this year ?

In the current year, Infosys BPM company and Elsevier company have not reported any cyber incidents.

Q: Between Elsevier company and Infosys BPM company, which one has experienced at least one ransomware attack ?

Infosys BPM company has confirmed experiencing a ransomware attack, while Elsevier company has not reported such incidents publicly.

Q: Between Elsevier company and Infosys BPM company, which one has experienced at least one data breach ?

Neither Infosys BPM company nor Elsevier company has reported experiencing a data breach publicly.

Q: Between Elsevier company and Infosys BPM company, which one has experienced at least one targeted cyberattack ?

Neither Infosys BPM company nor Elsevier company has reported experiencing targeted cyberattacks publicly.

Q: Between Elsevier company and Infosys BPM company, which one has experienced at least one vulnerability ?

Neither Elsevier company nor Infosys BPM company has reported experiencing or disclosing vulnerabilities publicly.

Q: Between Elsevier company and Infosys BPM company, which one holds the most compliance certifications ?

Neither Elsevier nor Infosys BPM holds any compliance certifications.

Q: Between Elsevier company and Infosys BPM company, which one has the most subsidiaries ?

Infosys BPM company has more subsidiaries worldwide compared to Elsevier company.

Elsevier

Radarweg 29, Amsterdam, North Holland, 1043, NL

Last Update: 2025-12-09

View Profile

Between 750 and 799

https://www.elsevier.com

As a global leader in information and analytics, Elsevier helps researchers and healthcare professionals advance science and improve health outcomes for the benefit of society. We do this by facilitating insights and critical decision-making for customers across the global research and health ecosystems. In everything we publish, we uphold the highest standards of quality and integrity. We bring that same rigor to our information analytics solutions for researchers, health professionals, institutions and funders. Elsevier employs 8,700 people worldwide. We have supported the work of our research and health partners for more than 140 years. Growing from our roots in publishing, we offer knowledge and valuable analytics that help our users make breakthroughs and drive societal progress. With the Elsevier Foundation and our external Inclusion & Diversity Advisory Board, we work in partnership with diverse stakeholders to advance inclusion and diversity in science, research and healthcare in developing countries and around the world.

NAICS: 5415

NAICS Definition: Computer Systems Design and Related Services

Employees: 11,962

Subsidiaries: 1

12-month incidents

0

Known data breaches

0

Attack type number

1

View Profile

Infosys BPM

Infosys BPM Limited, Plot no 26/3, 26/4, 26/6, Hosur Road, Electronics City, None, Bengaluru, Karnataka, IN, 560100

Last Update: 2025-12-09

Between 800 and 849

https://www.infosysbpm.com

Infosys BPM Ltd., the business process management subsidiary of Infosys Ltd. (NYSE: INFY), was set up in April 2002. Infosys BPM focuses on integrated end-to-end outsourcing and delivers transformational benefits to its clients through reduced costs, ongoing productivity improvements, and process re-engineering. Infosys BPM operates in India, Poland, the Czech Republic, the Netherlands, Ireland, South Africa, Brazil, Mexico, Costa Rica, the United States, Puerto Rico, China, the Philippines, Singapore, and Australia. Infosys BPM has been consistently ranked among the leading BPM companies and has received over 60 awards and recognitions in the last 5 years from key industry bodies and forums like the International Association of Outsourcing Professionals, Outsourcing Center, SSON, and NOA, among others. Infosys BPM also has very robust people practices, as substantiated by the various HR-specific awards it has won over the years. The company has consistently been ranked among the top employers of choice, on the basis of its industry-leading HR best practices. The company’s senior leaders contribute widely to industry forums as BPO strategists.

NAICS: 5415

NAICS Definition: Computer Systems Design and Related Services

Employees: 41,762

Subsidiaries: 4

12-month incidents

0

Known data breaches

0

Attack type number

1

Elsevier

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Infosys BPM

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for Elsevier in 2025.

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for Infosys BPM in 2025.

Incident History — Elsevier (X = Date, Y = Severity)

Elsevier cyber incidents detection timeline including parent company and subsidiaries

Incident History — Infosys BPM (X = Date, Y = Severity)

Infosys BPM cyber incidents detection timeline including parent company and subsidiaries

Elsevier

Incidents

Date Detected: 03/2019

Type:Data Leak

Attack Vector: Open Server

Blog: Blog

Infosys BPM

Incidents

Date Detected: 6/2024

Type:Ransomware

Attack Vector: Ransomware

Blog: Blog

Date Detected: 11/2023

Type:Ransomware

Blog: Blog

Date Detected: 10/2023

Type:Ransomware

Attack Vector: Ransomware

Blog: Blog

Infosys BPM company demonstrates a stronger AI Cybersecurity Score compared to Elsevier company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Infosys BPM company has faced a higher number of disclosed cyber incidents historically compared to Elsevier company.

In the current year, Infosys BPM company and Elsevier company have not reported any cyber incidents.

Infosys BPM company has confirmed experiencing a ransomware attack, while Elsevier company has not reported such incidents publicly.

Neither Infosys BPM company nor Elsevier company has reported experiencing a data breach publicly.

Neither Infosys BPM company nor Elsevier company has reported experiencing targeted cyberattacks publicly.

Neither Elsevier company nor Infosys BPM company has reported experiencing or disclosing vulnerabilities publicly.

Neither Elsevier nor Infosys BPM holds any compliance certifications.

Neither company holds any compliance certifications.

Infosys BPM company has more subsidiaries worldwide compared to Elsevier company.

Infosys BPM company employs more people globally than Elsevier company, reflecting its scale as a IT Services and IT Consulting.

Neither Elsevier nor Infosys BPM holds SOC 2 Type 1 certification.

Neither Elsevier nor Infosys BPM holds SOC 2 Type 2 certification.

Neither Elsevier nor Infosys BPM holds ISO 27001 certification.

Neither Elsevier nor Infosys BPM holds PCI DSS certification.

Neither Elsevier nor Infosys BPM holds HIPAA certification.

Neither Elsevier nor Infosys BPM holds GDPR certification.

Description

NXLog Agent before 6.11 can load a file specified by the OPENSSL_CONF environment variable.

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 8.1

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

References

https://docs.nxlog.co/agent/current/release-notes.html#nxlog-agent-6-11

Description

uriparser through 0.9.9 allows unbounded recursion and stack consumption, as demonstrated by ParseMustBeSegmentNzNc with large input containing many commas.

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 2.9

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

References

Description

A vulnerability was detected in Mayan EDMS up to 4.10.1. The affected element is an unknown function of the file /authentication/. The manipulation results in cross site scripting. The attack may be performed from remote. The exploit is now public and may be used. Upgrading to version 4.10.2 is sufficient to fix this issue. You should upgrade the affected component. The vendor confirms that this is "[f]ixed in version 4.10.2". Furthermore, that "[b]ackports for older versions in process and will be out as soon as their respective CI pipelines complete."

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss2

Base: 5.0

Severity: LOW

AV:N/AC:L/Au:N/C:N/I:P/A:N

cvss3

Base: 4.3

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

cvss4

Base: 5.3

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

Description

MJML through 4.18.0 allows mj-include directory traversal to test file existence and (in the type="css" case) read files. NOTE: this issue exists because of an incomplete fix for CVE-2020-12827.

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 4.5

Severity: HIGH

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L

References

https://github.com/mjmlio/mjml/issues/3018

Description

A half-blind Server Side Request Forgery (SSRF) vulnerability exists in kube-controller-manager when using the in-tree Portworx StorageClass. This vulnerability allows authorized users to leak arbitrary information from unprotected endpoints in the control plane’s host network (including link-local or loopback services).

Published

Date

2025-12-14

Updated

Date

2025-12-14

Risk Information

cvss3

Base: 5.8

Severity: HIGH

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N

References

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Elsevier

VS

Infosys BPM

Elsevier

Infosys BPM

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incident History — Elsevier (X = Date, Y = Severity)

Incident History — Infosys BPM (X = Date, Y = Severity)

Notable Incidents

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-67900

Risk Information

CVE-2025-67899

Risk Information

CVE-2025-14691

Risk Information

CVE-2025-67898

Risk Information

CVE-2025-13281

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Elsevier

VS

Infosys BPM

Elsevier

Infosys BPM

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incident History — Elsevier (X = Date, Y = Severity)

Incident History — Infosys BPM (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Data Leak ELS64212323

🔒 Incident : Ransomware MCC449070624

🔒 Incident : Ransomware MCC019091825

🔒 Incident : Ransomware MCC150072725

FAQ

Between Elsevier company and Infosys BPM company, which one has the best AI Cybersecurity Score ?

Between Elsevier company and Infosys BPM company, which one has experienced more cyber incidents in the past ?

Between Elsevier company and Infosys BPM company, which one has experienced more cyber incidents this year ?

Between Elsevier company and Infosys BPM company, which one has experienced at least one ransomware attack ?

Between Elsevier company and Infosys BPM company, which one has experienced at least one data breach ?

Between Elsevier company and Infosys BPM company, which one has experienced at least one targeted cyberattack ?

Between Elsevier company and Infosys BPM company, which one has experienced at least one vulnerability ?

Between Elsevier company and Infosys BPM company, which one holds the most compliance certifications ?

Between Elsevier company and Infosys BPM company, which one holds the fewest compliance certifications ?

Between Elsevier company and Infosys BPM company, which one has the most subsidiaries ?

Between Elsevier company and Infosys BPM company, which one has the largest number of employees ?

Between Elsevier and Infosys BPM, which company holds both SOC 2 Type 1 certifications ?

Between Elsevier and Infosys BPM, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Elsevier or Infosys BPM ?

Which company is PCI DSS compliant — Elsevier or Infosys BPM ?

Between Elsevier and Infosys BPM, which company complies with HIPAA regulations for healthcare data ?

Between Elsevier and Infosys BPM, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-67900

Risk Information

CVE-2025-67899

Risk Information

CVE-2025-14691

Risk Information

CVE-2025-67898

Risk Information

CVE-2025-13281

Risk Information