Comparison Overview

Litania Sports Group

VS

Anta

Litania Sports Group

601 Mercury Dr, Champaign, IL, 61822, US
Last Update: 2025-05-06 (UTC)
Between 900 and 1000
http://www.litaniasports.com

Excellent

Litania Sports Group is a North American design, sales, and manufacturer of sports equipment used in worldwide championship sporting events for legendary brands Gill Athletics and Porter Athletic. LSG Corporate headquarters are in Champaign, Illinois at a newly expanded 225,000 square foot factory and office space. LSG manufacturers approximately 75% of the products it sells in its Champaign, IL factory with the balance of products made in Asia. We distribute our products through team, specialty, and catalog dealers and specialty construction dealers in the US. LSG also sells internationally through dealers in most developed countries. Our mission is "empower coaches with innovative equipment"โ€‹. Join our team and Build The Best.

NAICS: 33992
NAICS Definition: Sporting and Athletic Goods Manufacturing
Employees: 64
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Anta

ๅŽฆ้—จๆ€ๆ˜ŽๅŒบๅ˜‰ไน‰่ทฏ99ๅท ๅŽฆ้—จๅธ‚, ็ฆๅปบ็œ 361008, CN
Last Update: 2025-05-03 (UTC)

Excellent

Between 900 and 1000
http://www.anta.com

ANTA Group was founded in 1991 and officially launched the ANTA brand in 1994. It is a comprehensive sportswear company specializing in the design, production, marketing and operation of sportswear, accessories and other sports equipment. Over more than 28 years of development, ANTA has transformed from a traditional private company into a public company that is able to compete internationally and has a modern corporate governance structure, as well as the largest sportswear conglomerate in China. In 2019, ANTA Group entered into "the coordination and value year" with the goal of achieving over 100 billion Yuan of its turnover by 2025 and becoming a respected world-class multi-brand sportswear conglomerate. In 2016, ANTA Group determined the development strategy of "Single-Focus, Multi-Brand and Omni-Channel". In March 2019, ANTA Group announced it has initially realized the acquisition of Amer Sports, a Finnish company. In 2018, ANTA Group achieved a revenue of 24.1 billion Yuan, a turnover of more than 40 billion Yuan and an annual sales of over 70 million pairs of sports shoes and over 100 million pieces of clothing. By August 2018, ANTA's market value had exceeded HK$ 120 billion, ranking the third of the world in the industry. By the first half of 2018, ANTA had paid taxes of over 20 billion Yuan and created more than 100,000 jobs directly and more than 200,000 jobs indirectly.

NAICS: 33992
NAICS Definition: Sporting and Athletic Goods Manufacturing
Employees: 10,001+
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/litania-sports-group.jpeg
Litania Sports Group
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/anta.jpeg
Anta
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Litania Sports Group
100%
Compliance Rate
0/4 Standards Verified
Anta
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Sporting Goods Manufacturing Industry Average (This Year)

No incidents recorded for Litania Sports Group in 2025.

Incidents vs Sporting Goods Manufacturing Industry Average (This Year)

No incidents recorded for Anta in 2025.

Incident History โ€” Litania Sports Group (X = Date, Y = Severity)

Litania Sports Group cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Anta (X = Date, Y = Severity)

Anta cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/litania-sports-group.jpeg
Litania Sports Group
Incidents

No Incident

https://images.rankiteo.com/companyimages/anta.jpeg
Anta
Incidents

No Incident

FAQ

Both Litania Sports Group company and Anta company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, Anta company has disclosed a higher number of cyber incidents compared to Litania Sports Group company.

In the current year, Anta company and Litania Sports Group company have not reported any cyber incidents.

Neither Anta company nor Litania Sports Group company has reported experiencing a ransomware attack publicly.

Neither Anta company nor Litania Sports Group company has reported experiencing a data breach publicly.

Neither Anta company nor Litania Sports Group company has reported experiencing targeted cyberattacks publicly.

Neither Litania Sports Group company nor Anta company has reported experiencing or disclosing vulnerabilities publicly.

Anta company has more subsidiaries worldwide compared to Litania Sports Group company.

Litania Sports Group company employs more people globally than Anta company, reflecting its scale as a Sporting Goods Manufacturing.

Latest Global CVEs (Not Company-Specific)

Description

Better Auth is an authentication and authorization library for TypeScript. In versions prior to 1.3.26, unauthenticated attackers can create or modify API keys for any user by passing that user's id in the request body to the `api/auth/api-key/create` route. `session?.user ?? (authRequired ? null : { id: ctx.body.userId })`. When no session exists but `userId` is present in the request body, `authRequired` becomes false and the user object is set to the attacker-controlled ID. Server-only field validation only executes when `authRequired` is true (lines 280-295), allowing attackers to set privileged fields. No additional authentication occurs before the database operation, so the malicious payload is accepted. The same pattern exists in the update endpoint. This is a critical authentication bypass enabling full an unauthenticated attacker can generate an API key for any user and immediately gain complete authenticated access. This allows the attacker to perform any action as the victim user using the api key, potentially compromise the user data and the application depending on the victim's privileges. Version 1.3.26 contains a patch for the issue.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Allstar is a GitHub App to set and enforce security policies. In versions prior to 4.5, a vulnerability in Allstarโ€™s Reviewbot component caused inbound webhook requests to be validated against a hard-coded, shared secret. The value used for the secret token was compiled into the Allstar binary and could not be configured at runtime. In practice, this meant that every deployment using Reviewbot would validate requests with the same secret unless the operator modified source code and rebuilt the component - an expectation that is not documented and is easy to miss. All Allstar releases prior to v4.5 that include the Reviewbot code path are affected. Deployments on v4.5 and later are not affected. Those who have not enabled or exposed the Reviewbot endpoint are not exposed to this issue.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 4.6
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Multiple cross-site scripting (XSS) vulnerabilities with Calendar events in Liferay Portal 7.4.3.35 through 7.4.3.111, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.7, 7.4 update 35 through update 92, and 7.3 update 25 through update 36 allow remote attackers to inject arbitrary web script or HTML via a crafted payload injected into a userโ€™s (1) First Name, (2) Middle Name or (3) Last Name text field.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Python Social Auth is a social authentication/registration mechanism. In versions prior to 5.6.0, upon authentication, the user could be associated by e-mail even if the `associate_by_email` pipeline was not included. This could lead to account compromise when a third-party authentication service does not validate provided e-mail addresses or doesn't require unique e-mail addresses. Version 5.6.0 contains a patch. As a workaround, review the authentication service policy on e-mail addresses; many will not allow exploiting this vulnerability.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Confidential Containers's Trustee project contains tools and components for attesting confidential guests and providing secrets to them. In versions prior to 0.15.0, the attestation-policy endpoint didn't check if the kbs-client submitting the request was actually authenticated (had the right key). This allowed any kbs-client to actually change the attestation policy. Version 0.15.0 fixes the issue.

Published
Date
2025-10-09
Updated
Date
2025-10-09
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References