Comparison Overview

Q: Between IBM company and Orange Business company, which one has the best AI Cybersecurity Score ?

Orange Business company demonstrates a stronger AI Cybersecurity Score compared to IBM company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Q: Between IBM company and Orange Business company, which one has experienced more cyber incidents in the past ?

IBM company has faced a higher number of disclosed cyber incidents historically compared to Orange Business company.

Q: Between IBM company and Orange Business company, which one has experienced more cyber incidents this year ?

In the current year, IBM company has reported more cyber incidents than Orange Business company.

Q: Between IBM company and Orange Business company, which one has experienced at least one ransomware attack ?

Orange Business company has confirmed experiencing a ransomware attack, while IBM company has not reported such incidents publicly.

Q: Between IBM company and Orange Business company, which one has experienced at least one data breach ?

Both Orange Business company and IBM company have disclosed experiencing at least one data breach.

Q: Between IBM company and Orange Business company, which one has experienced at least one targeted cyberattack ?

Both Orange Business company and IBM company have reported experiencing targeted cyberattacks.

Q: Between IBM company and Orange Business company, which one has experienced at least one vulnerability ?

IBM company has disclosed at least one vulnerability, while Orange Business company has not reported such incidents publicly.

Q: Between IBM company and Orange Business company, which one holds the most compliance certifications ?

Neither IBM nor Orange Business holds any compliance certifications.

Q: Between IBM company and Orange Business company, which one has the most subsidiaries ?

Orange Business company has more subsidiaries worldwide compared to IBM company.

IBM

International Business Machines Corp., New Orchard Road, Armonk, New York, NY, US, 10504

Last Update: 2025-12-09

View Profile

Between 700 and 749

http://www.ibm.com

We don’t just imagine the future — we create it. We collaborate with technologists, developers and engineers to turn bold ideas into real-world impact. We partner with iconic brands like Ferrari and global events like the US Open, Wimbledon and The Masters to bring innovation to the world’s biggest stages and greatest fans. We work side-by-side with our clients, communities and even competitors to harness the power of AI, hybrid cloud and quantum computing — all to build a smarter, more efficient world. If you're fueled by curiosity and driven to make a difference, you'll feel right at home. Let’s create smarter business — together.

NAICS: 5415

NAICS Definition: Computer Systems Design and Related Services

Employees: 332,876

Subsidiaries: 14

12-month incidents

10

Known data breaches

3

Attack type number

3

View Profile

Orange Business

La Plaine Saint Denis, Paris, undefined, 93457 Cedex, FR

Last Update: 2025-12-03

Between 750 and 799

http://www.orange-business.com

At Orange Business, our ambition is to become the leading European Network and Digital Integrator by leveraging our proven expertise in next-generation connectivity solutions, the cloud and cybersecurity. Our 30,000 women and men are present in 65 countries, where every voice counts. Together, we are driven by the same determination and the same team spirit, to build the digital solutions of today and tomorrow and create a positive impact for our customers, for their employees and for the planet. We offer exciting opportunities through innovative projects in data and digital, cloud, AI, cybersecurity, IoT, or digital workspace and big data. Join us and be part of this adventure!

NAICS: 5415

NAICS Definition: Computer Systems Design and Related Services

Employees: 26,939

Subsidiaries: 28

12-month incidents

0

Known data breaches

3

Attack type number

3

https://images.rankiteo.com/companyimages/ibm.jpeg

IBM

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Orange Business

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs IT Services and IT Consulting Industry Average (This Year)

IBM has 1685.71% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs IT Services and IT Consulting Industry Average (This Year)

No incidents recorded for Orange Business in 2025.

Incident History — IBM (X = Date, Y = Severity)

IBM cyber incidents detection timeline including parent company and subsidiaries

Incident History — Orange Business (X = Date, Y = Severity)

Orange Business cyber incidents detection timeline including parent company and subsidiaries

IBM

Incidents

Date Detected: 11/2025

Type:Vulnerability

Blog: Blog

Date Detected: 10/2025

Type:Vulnerability

Blog: Blog

Date Detected: 9/2025

Type:Breach

Attack Vector: Phishing (Email), Vendor Scams, Credential Theft, Image-Based Phishing, Social Engineering

Blog: Blog

Orange Business

Incidents

Date Detected: 9/2025

Type:Cyber Attack

Attack Vector: Exploitation de données personnelles volées, Ingénierie sociale, SIM swapping

Motivation: Fraude financière, Vol d'identité, Accès non autorisé à des comptes en ligne

Blog: Blog

Date Detected: 8/2025

Type:Cyber Attack

Blog: Blog

Date Detected: 7/2025

Type:Cyber Attack

Blog: Blog

Orange Business company demonstrates a stronger AI Cybersecurity Score compared to IBM company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

IBM company has faced a higher number of disclosed cyber incidents historically compared to Orange Business company.

In the current year, IBM company has reported more cyber incidents than Orange Business company.

Orange Business company has confirmed experiencing a ransomware attack, while IBM company has not reported such incidents publicly.

Both Orange Business company and IBM company have disclosed experiencing at least one data breach.

Both Orange Business company and IBM company have reported experiencing targeted cyberattacks.

IBM company has disclosed at least one vulnerability, while Orange Business company has not reported such incidents publicly.

Neither IBM nor Orange Business holds any compliance certifications.

Neither company holds any compliance certifications.

Orange Business company has more subsidiaries worldwide compared to IBM company.

IBM company employs more people globally than Orange Business company, reflecting its scale as a IT Services and IT Consulting.

Neither IBM nor Orange Business holds SOC 2 Type 1 certification.

Neither IBM nor Orange Business holds SOC 2 Type 2 certification.

Neither IBM nor Orange Business holds ISO 27001 certification.

Neither IBM nor Orange Business holds PCI DSS certification.

Neither IBM nor Orange Business holds HIPAA certification.

Neither IBM nor Orange Business holds GDPR certification.

Description

Tuleap is a free and open source suite for management of software development and collaboration. Versions of Tuleap Community Edition prior to 17.0.99.1763126988 and Tuleap Enterprise Edition prior to 17.0-3 and 16.13-8 have missing CSRF protections which allow attackers to create or remove tracker triggers. This issue is fixed in Tuleap Community Edition version 17.0.99.1763126988 and Tuleap Enterprise Edition versions 17.0-3 and 16.13-8.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 4.6

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

References

Description

Tuleap is a free and open source suite for management of software development and collaboration. Tuleap Community Editon versions prior to 17.0.99.1762456922 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 are vulnerable to CSRF attacks through planning management API. Attackers have access to create, edit or remove plans. This issue is fixed in Tuleap Community Edition version 17.0.99.1762456922 and Tuleap Enterprise Edtion versions 17.0-2, 16.13-7 and 16.12-10.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 4.6

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

References

Description

Tuleap is an Open Source Suite for management of software development and collaboration. Tuleap Community Edition versions below 17.0.99.1762444754 and Tuleap Enterprise Edition versions prior to 17.0-2, 16.13-7 and 16.12-10 allow attackers trick victims into changing tracker general settings. This issue is fixed in version Tuleap Community Edition version 17.0.99.1762444754 and Tuleap Enterprise Edition versions 17.0-2, 16.13-7 and 16.12-10.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 4.6

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

References

Description

Tuleap is an Open Source Suite for management of software development and collaboration. Versions below 17.0.99.1762431347 of Tuleap Community Edition and Tuleap Enterprise Edition below 17.0-2, 16.13-7 and 16.12-10 allow attackers to access file release system information in projects they do not have access to. This issue is fixed in version 17.0.99.1762431347 of the Tuleap Community Edition and versions 17.0-2, 16.13-7 and 16.12-10 of Tuleap Enterprise Edition.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

References

Description

IBM watsonx.data 2.2 through 2.2.1 could allow an authenticated user to cause a denial of service through ingestion pods due to improper allocation of resources without limits.

Published

Date

2025-12-08

Updated

Date

2025-12-08

Risk Information

cvss3

Base: 6.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

References

https://www.ibm.com/support/pages/node/7253932

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

IBM

VS

Orange Business

IBM

Orange Business

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incident History — IBM (X = Date, Y = Severity)

Incident History — Orange Business (X = Date, Y = Severity)

Notable Incidents

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2025-64760

Risk Information

CVE-2025-64499

Risk Information

CVE-2025-64498

Risk Information

CVE-2025-64497

Risk Information

CVE-2025-36140

Risk Information

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

IBM

VS

Orange Business

IBM

Orange Business

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incidents vs IT Services and IT Consulting Industry Average (This Year)

Incident History — IBM (X = Date, Y = Severity)

Incident History — Orange Business (X = Date, Y = Severity)

Notable Incidents

🔒 Incident : Vulnerability IBM4593045110625

🔒 Incident : Vulnerability IBM4862048102525

🔒 Incident : Breach IBM500090325

🔒 Incident : Cyber Attack ORA814090225

🔒 Incident : Cyber Attack ORA1764727825

🔒 Incident : Cyber Attack ORA852072925

FAQ

Between IBM company and Orange Business company, which one has the best AI Cybersecurity Score ?

Between IBM company and Orange Business company, which one has experienced more cyber incidents in the past ?

Between IBM company and Orange Business company, which one has experienced more cyber incidents this year ?

Between IBM company and Orange Business company, which one has experienced at least one ransomware attack ?

Between IBM company and Orange Business company, which one has experienced at least one data breach ?

Between IBM company and Orange Business company, which one has experienced at least one targeted cyberattack ?

Between IBM company and Orange Business company, which one has experienced at least one vulnerability ?

Between IBM company and Orange Business company, which one holds the most compliance certifications ?

Between IBM company and Orange Business company, which one holds the fewest compliance certifications ?

Between IBM company and Orange Business company, which one has the most subsidiaries ?

Between IBM company and Orange Business company, which one has the largest number of employees ?

Between IBM and Orange Business, which company holds both SOC 2 Type 1 certifications ?

Between IBM and Orange Business, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — IBM or Orange Business ?

Which company is PCI DSS compliant — IBM or Orange Business ?

Between IBM and Orange Business, which company complies with HIPAA regulations for healthcare data ?

Between IBM and Orange Business, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2025-64760

Risk Information

CVE-2025-64499

Risk Information

CVE-2025-64498

Risk Information

CVE-2025-64497

Risk Information

CVE-2025-36140

Risk Information