Comparison Overview
Rakuten.ca

Rakuten.ca
4881 Yonge St, Toronto, Ontario, M2N 5X3, CA
Last Update: 29/04/2026
Rakuten.ca has helped its 7+ million members earn over $70 million in Cash Back. By connecting shoppers with top brands they already know and love, we provide Cash Back on everything from travel, luxury products, gift cards and everyday essentials, while our retail part...

Booking Holdings (NASDAQ: BKNG)
800 Connecticut Avenue, Norwalk, 06854, US
Last Update: 24/06/2026
Booking Holdings is the world’s leading provider of online travel & related services, provided to consumers and local partners in more than 220 countries and territories through six primary consumer-facing brands: Booking.com, Priceline, Agoda, Rentalcars.com, KAYAK and...
Compliance Ranges Comparison

Rakuten.ca







Booking Holdings (NASDAQ: BKNG)






Benchmark & Cyber Underwriting Signals
Incidents vs Technology, Information and Internet Industry Avg (This Year)
No incidents recorded for Rakuten.ca in 2026.
Incidents vs Technology, Information and Internet Industry Avg (This Year)
Booking Holdings (NASDAQ: BKNG) has 88.68% more incidents than the average of all companies with at least one recorded incident.
Incident History - Rakuten.ca (X = Date, Y = Severity)
Rakuten.ca cyber incidents detection timeline including parent company and subsidiaries.
Incident History - Booking Holdings (NASDAQ: BKNG) (X = Date, Y = Severity)
Booking Holdings (NASDAQ: BKNG) cyber incidents detection timeline including parent company and subsidiaries.
Notable Incidents

Rakuten.ca

Booking Holdings (NASDAQ: BKNG)
FAQ
Latest Global CVEs
Server-side request forgery (ssrf) in Microsoft Entra Provisioning Service (SyncFabric) allows an authorized attacker to elevate privileges over a network.
Incorrect authorization in Microsoft Exchange Online allows an authorized attacker to elevate privileges over a network.
Server-side request forgery (ssrf) in Azure OpenAI allows an authorized attacker to elevate privileges over a network.
Url redirection to untrusted site ('open redirect') in M365 Copilot allows an unauthorized attacker to elevate privileges over a network.
Improper access control in Azure Synapse allows an authorized attacker to elevate privileges over a network.