Comparison Overview

Riverview Gardens, Inc.

VS

YMCA of the USA

Riverview Gardens, Inc.

1101 S. Oneida Street, Appleton, WI, 54915, US
Last Update: 2025-03-06 (UTC)
Between 900 and 1000
http://www.riverviewgardens.org

Excellent

Riverview Gardens is a financially self-sustaining social enterprise, focused on job training for people in need, using urban farming in a park-like setting in Appleton, WI. Our core concept is that all people have value and can contribute to the community where they live. We emphasize serving without judgment to: โ€ข empower people to build transferable work skills and strong work histories, allowing them to secure permanent employment and housing; โ€ข provide meaningful activity for socially isolated individuals; โ€ข make healthy food accessible; โ€ข change the community's perceptions of people in need through the creation of a thriving, highly interactive environment located in the center of our community. Founded in 1898, Riverview Country Club and golf course was Wisconsinโ€™s oldest private country club and an Appleton institution until its closing in 2011. Riverview Gardensโ€™ founders saw the beautiful, prominent property as an opportunity to address critical community needs in a completely new way, at the same time preserving and protecting the land for agricultural use. Riverview Gardens is the collaborative transformation of a 72-acre golf course and related country club. This transformation addresses serious regional challenges, including rising unemployment, homelessness, poverty, and lack of access to nutritious, fresh food, all with a financially self-sustaining model.

NAICS: None
NAICS Definition:
Employees: 48
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

YMCA of the USA

101 N. Wacker Dr, Chicago, IL, 60606, US
Last Update: 2025-03-02 (UTC)

Excellent

Between 900 and 1000
https://www.ymca.org/

YMCA of the USA is the national resource office for the nation's YMCAs. Headquartered in Chicago, IL, YMCA of the USA exists to serve YMCAs. To address the specific needs of communities, each YMCA is an independent organization, autonomous and separate from YMCA of the USA. They are required by the national constitution to pay annual dues, to refrain from discrimination and to support the YMCA mission. All other decisions are local choices, including programs offered, staffing and style of operation. Learn, Grow and Thrive with a Career at the Y Imagine going to work knowing that what you do each day positively affects the lives of the people in your community. Working at the Y, you'll discover more than a job-you'll enjoy a career with a future and the opportunity to make a lasting difference in the lives of those around you. Our staff members-of all ages and backgrounds and life experiences-enjoy the personal satisfaction that comes from nurturing the potential of youth and teens, improving the nation's health and well-being and providing support to our neighbors. The Y ensures that everyone has the opportunity to become healthier, more confident, connected and secure. Search for open positions at Ys across the U.S. and at the national office: https://www.ymca.org/get-involved/careers/opportunities/open-positions

NAICS: 8135
NAICS Definition: Others
Employees: 31,733
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/riverview-gardens-inc-.jpeg
Riverview Gardens, Inc.
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/ymcausa.jpeg
YMCA of the USA
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Riverview Gardens, Inc.
100%
Compliance Rate
0/4 Standards Verified
YMCA of the USA
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Non-profit Organizations Industry Average (This Year)

No incidents recorded for Riverview Gardens, Inc. in 2025.

Incidents vs Non-profit Organizations Industry Average (This Year)

No incidents recorded for YMCA of the USA in 2025.

Incident History โ€” Riverview Gardens, Inc. (X = Date, Y = Severity)

Riverview Gardens, Inc. cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” YMCA of the USA (X = Date, Y = Severity)

YMCA of the USA cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/riverview-gardens-inc-.jpeg
Riverview Gardens, Inc.
Incidents

No Incident

https://images.rankiteo.com/companyimages/ymcausa.jpeg
YMCA of the USA
Incidents

No Incident

FAQ

Both Riverview Gardens, Inc. company and YMCA of the USA company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, YMCA of the USA company has disclosed a higher number of cyber incidents compared to Riverview Gardens, Inc. company.

In the current year, YMCA of the USA company and Riverview Gardens, Inc. company have not reported any cyber incidents.

Neither YMCA of the USA company nor Riverview Gardens, Inc. company has reported experiencing a ransomware attack publicly.

Neither YMCA of the USA company nor Riverview Gardens, Inc. company has reported experiencing a data breach publicly.

Neither YMCA of the USA company nor Riverview Gardens, Inc. company has reported experiencing targeted cyberattacks publicly.

Neither Riverview Gardens, Inc. company nor YMCA of the USA company has reported experiencing or disclosing vulnerabilities publicly.

Neither Riverview Gardens, Inc. company nor YMCA of the USA company has publicly disclosed detailed information about the number of their subsidiaries.

YMCA of the USA company employs more people globally than Riverview Gardens, Inc. company, reflecting its scale as a Non-profit Organizations.

Latest Global CVEs (Not Company-Specific)

Description

FreshRSS is a free, self-hostable RSS aggregator. Versions 1.26.3 and below do not sanitize certain event handler attributes in feed content, so by finding a page that renders feed entries without CSP, it is possible to execute an XSS payload. The Allow API access authentication setting needs to be enabled by the instance administrator beforehand for the attack to work as it relies on api/query.php. An account takeover is possible by sending a change password request via the XSS payload / setting UserJS for persistence / stealing the autofill password / displaying a phishing page with a spoofed URL using history.replaceState() If the victim is an administrator, the attacker can also perform administrative actions. This issue is fixed in version 1.27.0.

Published
Date
2025-09-29
Updated
Date
2025-09-29
Risk Information
cvss3
Base: 6.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:L
References
Description

go-f3 is a Golang implementation of Fast Finality for Filecoin (F3). In versions 0.8.6 and below, go-f3 panics when it validates a "poison" messages causing Filecoin nodes consuming F3 messages to become vulnerable. A "poison" message can can cause integer overflow in the signer index validation, which can cause the whole node to crash. These malicious messages aren't self-propagating since the bug is in the validator. An attacker needs to directly send the message to all targets. This issue is fixed in version 0.8.7.

Published
Date
2025-09-29
Updated
Date
2025-09-29
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
Description

go-f3 is a Golang implementation of Fast Finality for Filecoin (F3). In versions 0.8.8 and below, go-f3's justification verification caching mechanism has a vulnerability where verification results are cached without properly considering the context of the message. An attacker can bypass justification verification by submitting a valid message with a correct justification and then reusing the same cached justification in contexts where it would normally be invalid. This occurs because the cached verification does not properly validate the relationship between the justification and the specific message context it's being used with. This issue is fixed in version 0.8.9.

Published
Date
2025-09-29
Updated
Date
2025-09-29
Risk Information
cvss3
Base: 5.9
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L
References
Description

mkdocs-include-markdown-plugin is an Mkdocs Markdown includer plugin. In versions 7.1.7 and below, there is a vulnerability where unvalidated input can collide with substitution placeholders. This issue is fixed in version 7.1.8.

Published
Date
2025-09-29
Updated
Date
2025-09-29
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
References
Description

go-mail is a comprehensive library for sending mails with Go. In versions 0.7.0 and below, due to incorrect handling of the mail.Address values when a sender- or recipient address is passed to the corresponding MAIL FROM or RCPT TO commands of the SMTP client, there is a possibility of wrong address routing or even ESMTP parameter smuggling. For successful exploitation, it is required that the user's code allows for arbitrary mail address input (i. e. through a web form or similar). If only static mail addresses are used (i. e. in a config file) and the mail addresses in use do not consist of quoted local parts, this should not affect users. This issue is fixed in version 0.7.1

Published
Date
2025-09-29
Updated
Date
2025-09-29
Risk Information
cvss4
Base: 8.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References