Comparison Overview

Kids Can Press

VS

Hachette Book Group

Kids Can Press

25 Dockside Drive, Toronto, Ontario, undefined, CA
Last Update: 2025-11-26
View Profile
Between 750 and 799
http://www.kidscanpress.com

Kids Can Press, the largest Canadian-owned children’s publisher in the world — home to major children’s brands Franklin the Turtle and Scaredy Squirrel, and to an array of international award-winning books — celebrated its 40th Anniversary in 2013. From its early years as a small collective borne out of a desire to publish high-quality, socially responsible children’s books, Kids Can Press has evolved into a broad-based content company, adapting as the world of books and publishing has changed through the decades. Kids Can Press consistently delivers high-quality print books that parents, teachers, librarians and children around the world have come to expect from the Toronto-based publisher, and currently leads the way in Canada with the most children’s illustrated ebooks in the market. Kids Can Press books continually garner critical acclaim, and for the past five years the publisher has dominated the Governor General’s Literary Awards, having won five awards for children’s books in as many years — more than any other children’s publisher since 2003 — most recently for Virginia Wolf (2012) and Ten Birds (2011). For 40 years, Kids Can Press has delivered exceptional children’s books through numerous formats (from audio books to game apps) and various marketplaces (from independent bookstores to ebook retailers), and looks forward to what the future brings to children’s publishing.

NAICS: 511
NAICS Definition: Publishing Industries (except Internet)
Employees: 52
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Hachette Book Group

1290 Sixth Avenue, New York, NY, 10104, US
Last Update: 2025-11-21
Between 750 and 799
https://www.hachettebookgroup.com/about/careers/

Hachette Book Group (HBG) is a leading U.S. trade publisher and a division of the third largest trade and educational book publisher in the world, Hachette Livre. HBG publishes great books for readers of all ages, more than 1,800 new books annually, in all formats—print, ebook, and audiobook—including many New York Times bestsellers. HBG is a dynamic place to work, a fast-paced and fun environment where new ideas in publishing are actively explored and encouraged. HBG is headquartered in New York City, with offices in Boston, MA; Lebanon, IN; Nashville, TN; Boulder, CO; Philadelphia, PA; and Berkeley, CA. HBG also owns Hachette Book Group Canada, Inc., a marketing and publicity company based in Toronto, ON. Publishing Great Books Well HBG’s staff is driven by a shared passion for books—and a desire to make significant contributions to culture. From editing to marketing to design, the HBG team is dedicated to bringing out exceptional content, whether it’s fiction, nonfiction, children’s literature, or audiobooks. HBG publishes major bestsellers and timely books that are part of the national conversation, and introduces exciting new voices to readers. A Dream Job For people who are enthusiastic about books and culture, working at an energetic, forward-thinking publisher like HBG is a dream job. The company culture centers on valuing and supporting employees, and transparency and communication are paramount. Staff members are encouraged to use their strengths and challenge themselves and make their voices heard. HBG employees work hard, but they also have fun together. Whether they’re playing pool and eating pizza at the “Third Thursday” get-together every month or enjoying a group sci-fi movie night, Hachette’s team maintains an environment of shared passion and camaraderie.

NAICS: 511
NAICS Definition: Publishing Industries (except Internet)
Employees: 1,514
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/kids-can-press.jpeg
Kids Can Press
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/hachette-book-group.jpeg
Hachette Book Group
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Kids Can Press
100%
Compliance Rate
0/4 Standards Verified
Hachette Book Group
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Book and Periodical Publishing Industry Average (This Year)

No incidents recorded for Kids Can Press in 2025.

Incidents vs Book and Periodical Publishing Industry Average (This Year)

No incidents recorded for Hachette Book Group in 2025.

Incident History — Kids Can Press (X = Date, Y = Severity)

Kids Can Press cyber incidents detection timeline including parent company and subsidiaries

Incident History — Hachette Book Group (X = Date, Y = Severity)

Hachette Book Group cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/kids-can-press.jpeg
Kids Can Press
Incidents

No Incident

https://images.rankiteo.com/companyimages/hachette-book-group.jpeg
Hachette Book Group
Incidents

No Incident

FAQ

Hachette Book Group company demonstrates a stronger AI Cybersecurity Score compared to Kids Can Press company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Hachette Book Group company has disclosed a higher number of cyber incidents compared to Kids Can Press company.

In the current year, Hachette Book Group company and Kids Can Press company have not reported any cyber incidents.

Neither Hachette Book Group company nor Kids Can Press company has reported experiencing a ransomware attack publicly.

Neither Hachette Book Group company nor Kids Can Press company has reported experiencing a data breach publicly.

Neither Hachette Book Group company nor Kids Can Press company has reported experiencing targeted cyberattacks publicly.

Neither Kids Can Press company nor Hachette Book Group company has reported experiencing or disclosing vulnerabilities publicly.

Neither Kids Can Press nor Hachette Book Group holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Kids Can Press company nor Hachette Book Group company has publicly disclosed detailed information about the number of their subsidiaries.

Hachette Book Group company employs more people globally than Kids Can Press company, reflecting its scale as a Book and Periodical Publishing.

Neither Kids Can Press nor Hachette Book Group holds SOC 2 Type 1 certification.

Neither Kids Can Press nor Hachette Book Group holds SOC 2 Type 2 certification.

Neither Kids Can Press nor Hachette Book Group holds ISO 27001 certification.

Neither Kids Can Press nor Hachette Book Group holds PCI DSS certification.

Neither Kids Can Press nor Hachette Book Group holds HIPAA certification.

Neither Kids Can Press nor Hachette Book Group holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint

Published
Date
2025-11-27
Updated
Date
2025-11-27
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description

Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References
Description

Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.

Published
Date
2025-11-27
Updated
Date
2025-11-27
References