Comparison Overview

Next GenTech

VS

Booking.com

Next GenTech

IN
Last Update: 2025-12-01
View Profile
Between 750 and 799
http://nextzt.com/

At NexT GenTech , We have combined all of our creative backgrounds to produce an experience designed for your specific needs. Our products are designed to be future ready and that elevate the mobile experience to the next level. Being innovative to us means simplifying technology to create easy to adopt solutions that address industry pain points. We understand your concerns regarding the data, so we are more focused in providing our products by building them with end-to-end encryption to provide a better companionship with best experience. We focus on turning insights into ideas that can be taken to execution quickly, and always committed in pioneering our products as per today’s industry that was fast moving towards mobile and wireless technology.

NAICS: 5112
NAICS Definition: Software Publishers
Employees: 0
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
1
View Profile

Booking.com

Oosterdokskade 163, None, Amsterdam, North Holland, NL, 1011 DL
Last Update: 2025-12-01
Between 750 and 799
http://careers.booking.com

A career at Booking.com is all about the journey, helping you explore new challenges in a place where you can be your best self. With plenty of exciting twists, turns and opportunities along the way. We’ve always been pioneers, on a mission to shape the future of travel through cutting edge technology, to make it easier for everyone to enjoy amazing experiences wherever they go. Under a desert sky, or in the heart of a bustling city. Discovering the perfect hideaway, or the perfect paella. When you join us, you’ll be part of a community where taking a different path and trying something new is celebrated and supported. And where making a difference counts. We’re determined to make the world of travel more sustainable, more accessible, and more inclusive, to create a positive impact on a global scale. That’s why we’re always looking for people who search for better solutions, the ones eager to stray off the beaten path to find new ways of doing things. Because at Booking.com it’s more than a job, it’s a journey we’re on together.

NAICS: 5112
NAICS Definition: Software Publishers
Employees: 15,885
Subsidiaries: 11
12-month incidents
3
Known data breaches
0
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/booking.com.jpeg
Booking.com
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Next GenTech
Compliance Rate
0/4 Standards Verified
Booking.com
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for Next GenTech in 2025.

Incidents vs Software Development Industry Average (This Year)

Booking.com has 597.67% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History — Next GenTech (X = Date, Y = Severity)

Next GenTech cyber incidents detection timeline including parent company and subsidiaries

Incident History — Booking.com (X = Date, Y = Severity)

Booking.com cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/nextgentech.jpeg
Next GenTech
Incidents

Date Detected: 9/2023
Type:Vulnerability
Attack Vector: Malware
Blog: Blog
https://images.rankiteo.com/companyimages/booking.com.jpeg
Booking.com
Incidents

Date Detected: 6/2025
Type:Cyber Attack
Attack Vector: Mass-phishing, Infostealer trojans
Motivation: Financial gain
Blog: Blog

Date Detected: 4/2025
Type:Cyber Attack
Attack Vector: compromised email accounts, phishing links, fake reCAPTCHA challenge, malware download (PureRAT), personalized WhatsApp messages, fake Booking/Expedia websites
Motivation: financial gain, data theft, fraudulent transactions
Blog: Blog

Date Detected: 2/2025
Type:Cyber Attack
Attack Vector: malicious domain registration, social engineering, phishing emails/websites
Motivation: financial gain, theft of payment details
Blog: Blog

FAQ

Booking.com company demonstrates a stronger AI Cybersecurity Score compared to Next GenTech company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Booking.com company has faced a higher number of disclosed cyber incidents historically compared to Next GenTech company.

In the current year, Booking.com company has reported more cyber incidents than Next GenTech company.

Neither Booking.com company nor Next GenTech company has reported experiencing a ransomware attack publicly.

Neither Booking.com company nor Next GenTech company has reported experiencing a data breach publicly.

Booking.com company has reported targeted cyberattacks, while Next GenTech company has not reported such incidents publicly.

Next GenTech company has disclosed at least one vulnerability, while Booking.com company has not reported such incidents publicly.

Neither Next GenTech nor Booking.com holds any compliance certifications.

Neither company holds any compliance certifications.

Booking.com company has more subsidiaries worldwide compared to Next GenTech company.

Booking.com company employs more people globally than Next GenTech company, reflecting its scale as a Software Development.

Neither Next GenTech nor Booking.com holds SOC 2 Type 1 certification.

Neither Next GenTech nor Booking.com holds SOC 2 Type 2 certification.

Neither Next GenTech nor Booking.com holds ISO 27001 certification.

Neither Next GenTech nor Booking.com holds PCI DSS certification.

Neither Next GenTech nor Booking.com holds HIPAA certification.

Neither Next GenTech nor Booking.com holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

vLLM is an inference and serving engine for large language models (LLMs). Prior to 0.11.1, vllm has a critical remote code execution vector in a config class named Nemotron_Nano_VL_Config. When vllm loads a model config that contains an auto_map entry, the config class resolves that mapping with get_class_from_dynamic_module(...) and immediately instantiates the returned class. This fetches and executes Python from the remote repository referenced in the auto_map string. Crucially, this happens even when the caller explicitly sets trust_remote_code=False in vllm.transformers_utils.config.get_config. In practice, an attacker can publish a benign-looking frontend repo whose config.json points via auto_map to a separate malicious backend repo; loading the frontend will silently run the backend’s code on the victim host. This vulnerability is fixed in 0.11.1.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss3
Base: 7.1
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
References
Description

fastify-reply-from is a Fastify plugin to forward the current HTTP request to another server. Prior to 12.5.0, by crafting a malicious URL, an attacker could access routes that are not allowed, even though the reply.from is defined for specific routes in @fastify/reply-from. This vulnerability is fixed in 12.5.0.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 21.0.2, 20.3.15, and 19.2.17, A Stored Cross-Site Scripting (XSS) vulnerability has been identified in the Angular Template Compiler. It occurs because the compiler's internal security schema is incomplete, allowing attackers to bypass Angular's built-in security sanitization. Specifically, the schema fails to classify certain URL-holding attributes (e.g., those that could contain javascript: URLs) as requiring strict URL security, enabling the injection of malicious scripts. This vulnerability is fixed in 21.0.2, 20.3.15, and 19.2.17.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 8.5
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Gin-vue-admin is a backstage management system based on vue and gin. In 2.8.6 and earlier, attackers can delete any file on the server at will, causing damage or unavailability of server resources. Attackers can control the 'FileMd5' parameter to delete any file and folder.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Portkey.ai Gateway is a blazing fast AI Gateway with integrated guardrails. Prior to 1.14.0, the gateway determined the destination baseURL by prioritizing the value in the x-portkey-custom-host request header. The proxy route then appends the client-specified path to perform an external fetch. This can be maliciously used by users for SSRF attacks. This vulnerability is fixed in 1.14.0.

Published
Date
2025-12-01
Updated
Date
2025-12-01
Risk Information
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References