Comparison Overview

Equal Equity Impact

VS

Odebrecht

Equal Equity Impact

undefined, Salt Lake City, Utah, undefined, US
Last Update: 2025-03-12 (UTC)
Between 900 and 1000
https://www.equalequityimpact.org/

Excellent

Equal Equity Impact is a nonprofit impact investing firm that makes minority stake investments in diverse-led ventures. We strive to change the appearance of the typical entrepreneur by increasing access to growth capital for previously overlooked founders. Our not-for-profit structure ensures that all profits made from investments are reinvested back into the fund to further our outreach. We seek to partner with founders, not control them. Our minority stake-based approach helps founding teams preserve their ownership, while simultaneously providing expansion capital to help startups to achieve scale. After investment, our experienced board and investment committee of industry experts provide continual marketing, financial, and strategic support to evolve our revenue-generating startups into viable, sustainable businesses.

NAICS: 523
NAICS Definition:
Employees: 0
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Odebrecht

Av. Luรญs Viana, 2841 Paralela Salvador, BA 41730-900, BR
Last Update: 2025-05-06 (UTC)

Excellent

Between 900 and 1000
https://www.novonor.com.br

Founded in 1944, Odebrecht is a Brazilian group with diverse businesses and world-class standards of quality. Its Members, guided by the Groupโ€™s own philosophy, the Odebrecht Entrepreneurial Technology (TEO), provide services and manufacture products for clients on five continents. As part of their entrepreneurial responsibility while serving clients and local communities, they contribute to the development of economically prosperous, socially just, environmentally sustainable, politically inclusive and culturally rich societies and countries.

NAICS: 5239
NAICS Definition: Other Financial Investment Activities
Employees: 10,001+
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/equal-equity-impact.jpeg
Equal Equity Impact
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/odebrecht.jpeg
Odebrecht
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Equal Equity Impact
100%
Compliance Rate
0/4 Standards Verified
Odebrecht
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Investment Management Industry Average (This Year)

No incidents recorded for Equal Equity Impact in 2025.

Incidents vs Investment Management Industry Average (This Year)

No incidents recorded for Odebrecht in 2025.

Incident History โ€” Equal Equity Impact (X = Date, Y = Severity)

Equal Equity Impact cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Odebrecht (X = Date, Y = Severity)

Odebrecht cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/equal-equity-impact.jpeg
Equal Equity Impact
Incidents

No Incident

https://images.rankiteo.com/companyimages/odebrecht.jpeg
Odebrecht
Incidents

No Incident

FAQ

Both Equal Equity Impact company and Odebrecht company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, Odebrecht company has disclosed a higher number of cyber incidents compared to Equal Equity Impact company.

In the current year, Odebrecht company and Equal Equity Impact company have not reported any cyber incidents.

Neither Odebrecht company nor Equal Equity Impact company has reported experiencing a ransomware attack publicly.

Neither Odebrecht company nor Equal Equity Impact company has reported experiencing a data breach publicly.

Neither Odebrecht company nor Equal Equity Impact company has reported experiencing targeted cyberattacks publicly.

Neither Equal Equity Impact company nor Odebrecht company has reported experiencing or disclosing vulnerabilities publicly.

Neither Equal Equity Impact company nor Odebrecht company has publicly disclosed detailed information about the number of their subsidiaries.

Neither Equal Equity Impact company nor Odebrecht company has publicly disclosed the exact number of their employees.

Latest Global CVEs (Not Company-Specific)

Description

Mastra is a Typescript framework for building AI agents and assistants. Versions 0.13.8 through 0.13.20-alpha.0 are vulnerable to a Directory Traversal attack that results in the disclosure of directory listings. The code contains a security check to prevent path traversal for reading file contents, but this check is effectively bypassed by subsequent logic that attempts to find directory suggestions. An attacker can leverage this flaw to list the contents of arbitrary directories on the user's filesystem, including the user's home directory, exposing sensitive information about the file system's structure. This issue is fixed in version 0.13.20.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
References
Description

KUNO CMS is a fully deployable full-stack blog application. Versions 1.3.13 and below contain validation flaws in its file upload functionality that can be exploited for stored XSS. The upload endpoint only validates file types based on Content-Type headers, lacks file content analysis and extension whitelist restrictions, allowing attackers to upload SVG files containing malicious scripts (disguised as images). When users access the uploaded resource pages, arbitrary JavaScript executes in their browsers. This issue is fixed in version 1.3.14.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 5.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
References
Description

Minecraft RCON Terminal is a VS Code extension that streamlines Minecraft server management. Versions 0.1.0 through 2.0.6 stores passwords using VS Code's configuration API which writes to settings.json in plaintext. This issue is fixed in version 2.1.0.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss4
Base: 6.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Anyquery is an SQL query engine built on top of SQLite. Versions 0.4.3 and below allow attackers who have already gained access to localhost, even with low privileges, to use the http server through the port unauthenticated, and access private integration data like emails, without any warning of a foreign login from the provider. This issue is fixed in version 0.4.4.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 7.7
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
References
Description

DataChain is a Python-based AI-data warehouse for transforming and analyzing unstructured data. Versions 0.34.1 and below allow for deseriaization of untrusted data because of the way the DataChain library reads serialized objects from environment variables (such as DATACHAIN__METASTORE and DATACHAIN__WAREHOUSE) in the loader.py module. An attacker with the ability to set these environment variables can trigger code execution when the application loads. This issue is fixed in version 0.34.2.

Published
Date
2025-10-03
Updated
Date
2025-10-03
Risk Information
cvss3
Base: 2.5
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N
References