Comparison Overview

Mirako Concept

VS

New America

Mirako Concept

Rua Tenente Cleto Campelo, 394, Rio de Janeiro, 21921025, BR
Last Update: 2025-12-01
View Profile
Between 750 and 799
http://x.mirako.org

Inovação tecnológica Sócio-Econômica-Ambiental. O objetivo é divulgar idéias ecologicamente sustentáveis e agregar pessoas para trabalhar pela evolução do ser humano, no sentido do desenvolvimento de suas virtudes morais e intelectuais, sem distinção de cor, ideologia política, credo religioso ou nacionalidade, buscando atingir um equilíbrio natural. Seguir uma linha tríplice de reflorestamento do ambiente, equidade social e sustentabilidade econômica, unidas uma nas outras se fortalecendo sinergeticamente. Expandir na sociedade um humanismo solidário global.

NAICS: 54172
NAICS Definition: Research and Development in the Social Sciences and Humanities
Employees: 5
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

New America

740 15th Street NW, Washington, 20005, US
Last Update: 2025-12-02
Between 750 and 799
http://www.newamerica.org

We are dedicated to renewing the promise of America by continuing the quest to realize our nation’s highest ideals. New America is a new kind of think-and-action tank: a civic platform that connects a research institute, technology lab, solutions network, media hub, and public forum. We generate big, bold ideas as templates for change. We design and advance evidence-based public policies. We surface, share, and scale locally generated and tested solutions to public problems through a national and global network of public, private, and civic partners. We develop legal, political, and technological tools to build democratic capacity and enable solutions to grow and spread. We tell stories about what is happening and what is possible, to give Americans a window into what we are capable of achieving together and a vision of what a renewed America could and should be.

NAICS: 54172
NAICS Definition: Research and Development in the Social Sciences and Humanities
Employees: 393
Subsidiaries: 2
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/mirako-concept.jpeg
Mirako Concept
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/new-america-foundation.jpeg
New America
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Mirako Concept
100%
Compliance Rate
0/4 Standards Verified
New America
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Think Tanks Industry Average (This Year)

No incidents recorded for Mirako Concept in 2025.

Incidents vs Think Tanks Industry Average (This Year)

No incidents recorded for New America in 2025.

Incident History — Mirako Concept (X = Date, Y = Severity)

Mirako Concept cyber incidents detection timeline including parent company and subsidiaries

Incident History — New America (X = Date, Y = Severity)

New America cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/mirako-concept.jpeg
Mirako Concept
Incidents

No Incident

https://images.rankiteo.com/companyimages/new-america-foundation.jpeg
New America
Incidents

No Incident

FAQ

New America company demonstrates a stronger AI Cybersecurity Score compared to Mirako Concept company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, New America company has disclosed a higher number of cyber incidents compared to Mirako Concept company.

In the current year, New America company and Mirako Concept company have not reported any cyber incidents.

Neither New America company nor Mirako Concept company has reported experiencing a ransomware attack publicly.

Neither New America company nor Mirako Concept company has reported experiencing a data breach publicly.

Neither New America company nor Mirako Concept company has reported experiencing targeted cyberattacks publicly.

Neither Mirako Concept company nor New America company has reported experiencing or disclosing vulnerabilities publicly.

Neither Mirako Concept nor New America holds any compliance certifications.

Neither company holds any compliance certifications.

New America company has more subsidiaries worldwide compared to Mirako Concept company.

New America company employs more people globally than Mirako Concept company, reflecting its scale as a Think Tanks.

Neither Mirako Concept nor New America holds SOC 2 Type 1 certification.

Neither Mirako Concept nor New America holds SOC 2 Type 2 certification.

Neither Mirako Concept nor New America holds ISO 27001 certification.

Neither Mirako Concept nor New America holds PCI DSS certification.

Neither Mirako Concept nor New America holds HIPAA certification.

Neither Mirako Concept nor New America holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

MCP Server Kubernetes is an MCP Server that can connect to a Kubernetes cluster and manage it. Prior to 2.9.8, there is a security issue exists in the exec_in_pod tool of the mcp-server-kubernetes MCP Server. The tool accepts user-provided commands in both array and string formats. When a string format is provided, it is passed directly to shell interpretation (sh -c) without input validation, allowing shell metacharacters to be interpreted. This vulnerability can be exploited through direct command injection or indirect prompt injection attacks, where AI agents may execute commands without explicit user intent. This vulnerability is fixed in 2.9.8.

Published
Date
2025-12-03
Updated
Date
2025-12-03
Risk Information
cvss3
Base: 6.4
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
References
Description

XML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request.

Published
Date
2025-12-03
Updated
Date
2025-12-03
References
Description

An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via a crafted authentication bypass.

Published
Date
2025-12-03
Updated
Date
2025-12-03
References
Description

Cal.com is open-source scheduling software. Prior to 5.9.8, A flaw in the login credentials provider allows an attacker to bypass password verification when a TOTP code is provided, potentially gaining unauthorized access to user accounts. This issue exists due to problematic conditional logic in the authentication flow. This vulnerability is fixed in 5.9.8.

Published
Date
2025-12-03
Updated
Date
2025-12-03
Risk Information
cvss4
Base: 9.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an application passed an attacker controlled float poing number into the toFixed() function, it might lead to high CPU consumption and a potential Denial of Service. Small numbers go through this call stack: NativeNumber.numTo > DToA.JS_dtostr > DToA.JS_dtoa > DToA.pow5mult where pow5mult attempts to raise 5 to a ridiculous power. This vulnerability is fixed in 1.8.1, 1.7.15.1, and 1.7.14.1.

Published
Date
2025-12-03
Updated
Date
2025-12-03
Risk Information
cvss4
Base: 5.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References