Comparison Overview

SC Johnson Lifestyle Brands

VS

Stanley Black & Decker, Inc.

SC Johnson Lifestyle Brands

631 Howard St, San Francisco, California, 94105, US
Last Update: 2025-03-16 (UTC)
Between 900 and 1000
https://jobs.scjohnson.com/lifestyle

Excellent

SC Johnson Lifestyle Brands (the LSB) is a growing house of like-minded brands under the SC Johnson umbrella including method, Mrs. Meyerโ€™s Clean Day, babyganics and Ecover. Headquartered in San Francisco with additional operations in Chicago and throughout Europe, the LSB is home to 650 employees. Together we act as a force for bold, transformative growth with a focus on delivering positive impact for people and the planet. At the LSB we imagine the world that we want, then set out to create it. We do things differently, because weโ€™re out to make a difference. If youโ€™re into pioneering the future and doing good while doing business, come join us. The LSB is part of SC Johnson, a family-owned company and leading manufacturer of household cleaning, home storage, air care, pest control and shoe care products, as well as professional products. Originally founded in 1886 and headquartered in Wisconsin, U.S.A., SC Johnson and the Lifestyle Brands division are at work for a better world.

NAICS: 339
NAICS Definition:
Employees: 521
Subsidiaries: 4
12-month incidents
0
Known data breaches
0
Attack type number
0

Stanley Black & Decker, Inc.

1000 Stanley Drive, New Britain, CT, 06053, US
Last Update: 2025-03-04 (UTC)

Strong

Between 800 and 900
http://www.stanleyblackanddecker.com

For the builders and protectors, for the makers and explorers, for those shaping and reshaping our world through hard work and inspiration, Stanley Black & Decker provides the tools and innovative solutions you can trust to get the job doneโ€”and we have since 1843. You repair your home and car with the tools we provide. Your car and your phone are secured with our fasteners. And the roads you drive on, the bridges you cross, the energy you consume, all of these most likely came to you via one of our infrastructure systems. We join forces to bring together the best of the best to create practical, meaningful products and services that make life easierโ€”empowering people to do better, safer, more significant work. Innovation and excellence have powered our success, but we know thereโ€™s more we can do for the world and those who make it. Across our businesses, weโ€™re investing in breakthrough innovation and digital excellence, striving for outperformance and increasing our focus on social responsibility. We define success as: delivering value to our customers, colleagues and communities. Our commitment to quality, safety and sustainabilityย helps us on our path to becoming the type of uniquely human-centered global industrial company that keeps every stakeholder in mind, while helping to make the world better.

NAICS: 30
NAICS Definition: Manufacturing
Employees: 25,799
Subsidiaries: 15
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/scj-lifestyle-brands.jpeg
SC Johnson Lifestyle Brands
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/stanley-black-decker-inc.jpeg
Stanley Black & Decker, Inc.
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
SC Johnson Lifestyle Brands
100%
Compliance Rate
0/4 Standards Verified
Stanley Black & Decker, Inc.
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for SC Johnson Lifestyle Brands in 2025.

Incidents vs Manufacturing Industry Average (This Year)

No incidents recorded for Stanley Black & Decker, Inc. in 2025.

Incident History โ€” SC Johnson Lifestyle Brands (X = Date, Y = Severity)

SC Johnson Lifestyle Brands cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Stanley Black & Decker, Inc. (X = Date, Y = Severity)

Stanley Black & Decker, Inc. cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/scj-lifestyle-brands.jpeg
SC Johnson Lifestyle Brands
Incidents

No Incident

https://images.rankiteo.com/companyimages/stanley-black-decker-inc.jpeg
Stanley Black & Decker, Inc.
Incidents

No Incident

FAQ

SC Johnson Lifestyle Brands company company demonstrates a stronger AI risk posture compared to Stanley Black & Decker, Inc. company company, reflecting its advanced AI governance and monitoring frameworks.

Historically, Stanley Black & Decker, Inc. company has disclosed a higher number of cyber incidents compared to SC Johnson Lifestyle Brands company.

In the current year, Stanley Black & Decker, Inc. company and SC Johnson Lifestyle Brands company have not reported any cyber incidents.

Neither Stanley Black & Decker, Inc. company nor SC Johnson Lifestyle Brands company has reported experiencing a ransomware attack publicly.

Neither Stanley Black & Decker, Inc. company nor SC Johnson Lifestyle Brands company has reported experiencing a data breach publicly.

Neither Stanley Black & Decker, Inc. company nor SC Johnson Lifestyle Brands company has reported experiencing targeted cyberattacks publicly.

Neither SC Johnson Lifestyle Brands company nor Stanley Black & Decker, Inc. company has reported experiencing or disclosing vulnerabilities publicly.

Stanley Black & Decker, Inc. company has more subsidiaries worldwide compared to SC Johnson Lifestyle Brands company.

Stanley Black & Decker, Inc. company employs more people globally than SC Johnson Lifestyle Brands company, reflecting its scale as a Manufacturing.

Latest Global CVEs (Not Company-Specific)

Description

Improper Protection Against Voltage and Clock Glitches in FPGA devices, could allow an attacker with physical access to undervolt the platform resulting in a loss of confidentiality.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss4
Base: 8.6
Severity: LOW
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Malicious code was inserted into the Nx (build system) package and several related plugins. The tampered package was published to the npm software registry, via a supply-chain attack. Affected versions contain code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 9.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
References
Description

Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References
Description

Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the /api/admin/assign-badge endpoint lacks proper access control, allowing any authenticated user to assign high-privilege badges (e.g., Staff) to themselves. This could lead to privilege escalation and impersonation of administrative roles. This issue has been patched in version 2.2.0.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
References
Description

parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeState function of parse version 5.3.0 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.

Published
Date
2025-09-24
Updated
Date
2025-09-24
References