Comparison Overview

Northpoint Mortgage

VS

Wealthsimple

Northpoint Mortgage

200 Mansell Court East, Roswell, 30076, US
Last Update: 2026-04-04
View Profile
Between 700 and 749
https://www.northpointmortgage.com

At Northpoint Mortgage, we believe how we serve is just as important as what we deliver. We’re more than a mortgage company - we’re a culture built on communication, collaboration, and care. Our team of passionate professionals is driven by a shared commitment: to provide an experience that’s fast, accurate, and deeply personal. For Loan Officers: We provide the tools, support, and leadership you need to grow your business without red tape slowing you down. Here, you’re empowered to serve clients with excellence and build lasting relationships. For Realtors: We understand that communication makes or breaks a deal. That’s why we keep you updated every step of the way, creating a seamless partnership that strengthens your client relationships. For Consumers: We know no two situations are alike. Our tailored approach ensures every borrower feels heard, understood, and supported from application to closing. In a constantly evolving industry, Northpoint continues to anticipate change, adapt quickly, and stay focused on what matters most - people. Our goal is simple: make every client, partner, and team member feel like part of the Northpoint family. Northpoint Mortgage is proud to be a branch of Fairway Home Mortgage. Georgia Residential Mortgage Licensee / GA Mortgage Lender License #21158

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 55
Subsidiaries: 0
12-month incidents
0
Known data breaches
1
Attack type number
1
View Profile

Wealthsimple

80 Spadina Ave, 4th Floor, Toronto, Ontario, CA, M5V 2J4
Last Update: 2026-04-02
Between 550 and 599
http://www.wealthsimple.com

Better than your bank. wsim.co/legal

NAICS: 52
NAICS Definition: Finance and Insurance
Employees: 1,823
Subsidiaries: 0
12-month incidents
0
Known data breaches
3
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/northpointmortgage.jpeg
Northpoint Mortgage
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/wealthsimple.jpeg
Wealthsimple
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Northpoint Mortgage
100%
Compliance Rate
0/4 Standards Verified
Wealthsimple
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Financial Services Industry Average (This Year)

No incidents recorded for Northpoint Mortgage in 2026.

Incidents vs Financial Services Industry Average (This Year)

No incidents recorded for Wealthsimple in 2026.

Incident History — Northpoint Mortgage (X = Date, Y = Severity)

Northpoint Mortgage cyber incidents detection timeline including parent company and subsidiaries

Incident History — Wealthsimple (X = Date, Y = Severity)

Wealthsimple cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/northpointmortgage.jpeg
Northpoint Mortgage
Incidents

Date Detected: 11/2022
Type:Breach
Attack Vector: Insider Wrongdoing
Blog: Blog
https://images.rankiteo.com/companyimages/wealthsimple.jpeg
Wealthsimple
Incidents

Date Detected: 9/2025
Type:Breach
Attack Vector: Compromised third-party software package
Blog: Blog

Date Detected: 8/2025
Type:Breach
Attack Vector: Phishing Emails, Malicious Web Downloads, Exploitation of Unpatched Vulnerabilities (CVE-2024-40766, CVE-2025-55232, etc.), Social Engineering, Insecure Direct Object Reference (IDOR), Misconfigured SSLVPN, Auto-Run Tasks in AI Code Editor, Malicious Public Repositories, Developer-Signed Malware (Apple Notarization Bypass)
Motivation: Financial Gain (Credential Theft, Ransomware, Data Sales), Cybercrime-as-a-Service Profit, Supply Chain Disruption, Espionage (Alleged Russian Energy Sector Targeting), Hacktivism (Scattered Lapsus$), Data Exfiltration for Dark Web Sales, Persistence in Targeted Networks (ChillyHell)
Blog: Blog

Date Detected: 10/2020
Type:Breach
Attack Vector: Unauthorized Access
Blog: Blog

FAQ

Northpoint Mortgage company demonstrates a stronger AI Cybersecurity Score compared to Wealthsimple company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Wealthsimple company has faced a higher number of disclosed cyber incidents historically compared to Northpoint Mortgage company.

In the current year, Wealthsimple company and Northpoint Mortgage company have not reported any cyber incidents.

Neither Wealthsimple company nor Northpoint Mortgage company has reported experiencing a ransomware attack publicly.

Both Wealthsimple company and Northpoint Mortgage company have disclosed experiencing at least one data breach.

Neither Wealthsimple company nor Northpoint Mortgage company has reported experiencing targeted cyberattacks publicly.

Neither Northpoint Mortgage company nor Wealthsimple company has reported experiencing or disclosing vulnerabilities publicly.

Neither Northpoint Mortgage nor Wealthsimple holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Northpoint Mortgage company nor Wealthsimple company has publicly disclosed detailed information about the number of their subsidiaries.

Wealthsimple company employs more people globally than Northpoint Mortgage company, reflecting its scale as a Financial Services.

Neither Northpoint Mortgage nor Wealthsimple holds SOC 2 Type 1 certification.

Neither Northpoint Mortgage nor Wealthsimple holds SOC 2 Type 2 certification.

Neither Northpoint Mortgage nor Wealthsimple holds ISO 27001 certification.

Neither Northpoint Mortgage nor Wealthsimple holds PCI DSS certification.

Neither Northpoint Mortgage nor Wealthsimple holds HIPAA certification.

Neither Northpoint Mortgage nor Wealthsimple holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.

Published
Date
2026-04-02
Updated
Date
2026-04-02
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials.

Published
Date
2026-04-02
Updated
Date
2026-04-02
References
Description

XSS vulnerability in cveInterface.js allows for inject HTML to be passed to display, as cveInterface trusts input from CVE API services

Published
Date
2026-04-02
Updated
Date
2026-04-02
References
Description

Multiple reflected cross-site scripting (XSS) vulnerabilities in the login.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda and red_url parameters.

Published
Date
2026-04-02
Updated
Date
2026-04-02
References
Description

A reflected cross-site scripting (XSS) vulnerability in the login_newpwd.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda parameter.

Published
Date
2026-04-02
Updated
Date
2026-04-02
References