IMS CAPITAL LIMITED
Last Update: 2026-03-13
Between 750 and 799
None
NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 1
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
Comparison Overview
IMS CAPITAL LIMITED
VS
Discover
Discover
Last Update: 2026-04-01
Between 600 and 649
Discover® is now part of Capital One. Together, we’ll continue to deliver exceptional financial products and experiences, drive innovation, and serve customers. Find the latest updates at https://capitalonediscover.com. Discover is one of the most recognized brands in the U.S. with the Discover® card, America's cash rewards pioneer, and offers personal loans, home loans, checking and savings accounts and certificates of deposit. The Discover Global Network® is comprised of Discover Network, with millions of merchants and cash access locations; PULSE®, one of the nation's leading ATM/debit networks; and Diners Club International®, a global payments network with acceptance around the world.
NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 19,187
Subsidiaries: 0
12-month incidents
0
Known data breaches
33
Attack type number
2
Compliance Badges Comparison
Security & Compliance Standards Overview
IMS CAPITAL LIMITED
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Discover
ISO 27001
Not verified
SOC2 Type 1
Not verified
SOC2 Type 2
Not verified
GDPR
Not verified
PCI DSS
Not verified
HIPAA
Not verified
Compliance Summary
IMS CAPITAL LIMITED
100%
Compliance Rate
0/4 Standards Verified
Discover
0%
Compliance Rate
0/4 Standards Verified
Benchmark & Cyber Underwriting Signals
Incidents vs Financial Services Industry Average (This Year)
No incidents recorded for IMS CAPITAL LIMITED in 2026.
Incidents vs Financial Services Industry Average (This Year)
No incidents recorded for Discover in 2026.
Incident History — IMS CAPITAL LIMITED (X = Date, Y = Severity)
IMS CAPITAL LIMITED cyber incidents detection timeline including parent company and subsidiaries
Incident History — Discover (X = Date, Y = Severity)
Discover cyber incidents detection timeline including parent company and subsidiaries
FAQ
IMS CAPITAL LIMITED company demonstrates a stronger AI Cybersecurity Score compared to Discover company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.
Discover company has historically faced a number of disclosed cyber incidents, whereas IMS CAPITAL LIMITED company has not reported any.
In the current year, Discover company and IMS CAPITAL LIMITED company have not reported any cyber incidents.
Neither Discover company nor IMS CAPITAL LIMITED company has reported experiencing a ransomware attack publicly.
Discover company has disclosed at least one data breach, while IMS CAPITAL LIMITED company has not reported such incidents publicly.
Discover company has reported targeted cyberattacks, while IMS CAPITAL LIMITED company has not reported such incidents publicly.
Neither IMS CAPITAL LIMITED company nor Discover company has reported experiencing or disclosing vulnerabilities publicly.
Neither IMS CAPITAL LIMITED nor Discover holds any compliance certifications.
Neither company holds any compliance certifications.
Neither IMS CAPITAL LIMITED company nor Discover company has publicly disclosed detailed information about the number of their subsidiaries.
Discover company employs more people globally than IMS CAPITAL LIMITED company, reflecting its scale as a Financial Services.
Neither IMS CAPITAL LIMITED nor Discover holds SOC 2 Type 1 certification.
Neither IMS CAPITAL LIMITED nor Discover holds SOC 2 Type 2 certification.
Neither IMS CAPITAL LIMITED nor Discover holds ISO 27001 certification.
Neither IMS CAPITAL LIMITED nor Discover holds PCI DSS certification.
Neither IMS CAPITAL LIMITED nor Discover holds HIPAA certification.
Neither IMS CAPITAL LIMITED nor Discover holds GDPR certification.
Latest Global CVEs (Not Company-Specific)
Description
Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description
The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials.
Description
XSS vulnerability in cveInterface.js allows for inject HTML to be passed to display, as cveInterface trusts input from CVE API services
Description
Multiple reflected cross-site scripting (XSS) vulnerabilities in the login.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda and red_url parameters.
Description
A reflected cross-site scripting (XSS) vulnerability in the login_newpwd.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda parameter.
