Comparison Overview

Senator John Heinz History Center

VS

National Galleries of Scotland

Senator John Heinz History Center

1212 Smallman St, Pittsburgh, 15222, US
Last Update: 2025-12-01
View Profile
Between 750 and 799
http://www.heinzhistorycenter.org

Devoted to the history and heritage of Western Pennsylvania, the Senator John Heinz History Center is Pennsylvania’s largest history museum and a proud affiliate of the Smithsonian Institution. The six-floor, 275,000-square-foot museum and research facility, located in Pittsburgh's Strip District, presents the most compelling stories from American history with a Western Pennsylvania connection, all in an interactive environment perfect for visitors of every age. A variety of long-term and changing exhibits reveal the fascinating scope and impact of American history with a regional connection. The Western Pennsylvania Sports Museum, a museum-within-a-museum located on the History Center 's second and third floors, celebrates Western Pennsylvania’s unsurpassed sports legacy. More than 250 years of our region’s history can also be explored in our Detre Library & Archives. MISSION STATEMENT The History Center is an educational institution that engages and inspires a large and diverse audience with links to the past, understanding in the present, and guidance for the future by preserving regional history and presenting the American experience with a Western Pennsylvania connection. This work is accomplished in partnership with others through archaeology, archives, artifact collections, conservation, educational programs, exhibitions, library, museums, performance, publications, research, technical assistance, and increasingly through broadcast media and the internet.

NAICS: 712
NAICS Definition: Museums, Historical Sites, and Similar Institutions
Employees: 116
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

National Galleries of Scotland

The Mound, Edinburgh, Midlothian, GB, EH2 2EL
Last Update: 2025-12-02
Between 750 and 799
http://nationalgalleries.org

Art for everyone We are the National Galleries for Scotland, and our three Edinburgh galleries are the National, Modern and Portrait. We house and care for Scotland’s amazing world-class art collection. Step inside and explore treasures from Botticelli and Titian to the very best modern art and contemporary portraits of pop culture icons. And, as you would expect, the world’s greatest collection of Scottish art. We are a space for thinking, dreaming, doing, and playing. Soak up the art. Meet friends in the cafés. Have a family picnic surrounded by the sculptures in the Modern grounds. Be inspired by our amazing art films. Enjoy a free event. Choose your own experience. There is no one way to enjoy Scotland’s national collection. We are yours to discover.

NAICS: 712
NAICS Definition: Museums, Historical Sites, and Similar Institutions
Employees: 335
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/senator-john-heinz-history-center.jpeg
Senator John Heinz History Center
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/nationalgalleriesscot.jpeg
National Galleries of Scotland
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Senator John Heinz History Center
100%
Compliance Rate
0/4 Standards Verified
National Galleries of Scotland
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for Senator John Heinz History Center in 2025.

Incidents vs Museums, Historical Sites, and Zoos Industry Average (This Year)

No incidents recorded for National Galleries of Scotland in 2025.

Incident History — Senator John Heinz History Center (X = Date, Y = Severity)

Senator John Heinz History Center cyber incidents detection timeline including parent company and subsidiaries

Incident History — National Galleries of Scotland (X = Date, Y = Severity)

National Galleries of Scotland cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/senator-john-heinz-history-center.jpeg
Senator John Heinz History Center
Incidents

No Incident

https://images.rankiteo.com/companyimages/nationalgalleriesscot.jpeg
National Galleries of Scotland
Incidents

No Incident

FAQ

National Galleries of Scotland company demonstrates a stronger AI Cybersecurity Score compared to Senator John Heinz History Center company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, National Galleries of Scotland company has disclosed a higher number of cyber incidents compared to Senator John Heinz History Center company.

In the current year, National Galleries of Scotland company and Senator John Heinz History Center company have not reported any cyber incidents.

Neither National Galleries of Scotland company nor Senator John Heinz History Center company has reported experiencing a ransomware attack publicly.

Neither National Galleries of Scotland company nor Senator John Heinz History Center company has reported experiencing a data breach publicly.

Neither National Galleries of Scotland company nor Senator John Heinz History Center company has reported experiencing targeted cyberattacks publicly.

Neither Senator John Heinz History Center company nor National Galleries of Scotland company has reported experiencing or disclosing vulnerabilities publicly.

Neither Senator John Heinz History Center nor National Galleries of Scotland holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Senator John Heinz History Center company nor National Galleries of Scotland company has publicly disclosed detailed information about the number of their subsidiaries.

National Galleries of Scotland company employs more people globally than Senator John Heinz History Center company, reflecting its scale as a Museums, Historical Sites, and Zoos.

Neither Senator John Heinz History Center nor National Galleries of Scotland holds SOC 2 Type 1 certification.

Neither Senator John Heinz History Center nor National Galleries of Scotland holds SOC 2 Type 2 certification.

Neither Senator John Heinz History Center nor National Galleries of Scotland holds ISO 27001 certification.

Neither Senator John Heinz History Center nor National Galleries of Scotland holds PCI DSS certification.

Neither Senator John Heinz History Center nor National Galleries of Scotland holds HIPAA certification.

Neither Senator John Heinz History Center nor National Galleries of Scotland holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls RelinquishMagickMemory on _drawInfo->font, freeing the font string but leaving _drawInfo->font pointing to freed memory while _drawInfo->family is set to that (now-invalid) pointer. Any later cleanup or reuse of _drawInfo->font re-frees or dereferences dangling memory. DestroyDrawInfo and other setters (Options::font, Image::font) assume _drawInfo->font remains valid, so destruction or subsequent updates trigger crashes or heap corruption. This vulnerability is fixed in 7.1.2-9 and 6.9.13-34.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 4.9
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
References
Description

FeehiCMS version 2.1.1 has a Remote Code Execution via Unrestricted File Upload in Ad Management. FeehiCMS version 2.1.1 allows authenticated remote attackers to upload files that the server later executes (or stores in an executable location) without sufficient validation, sanitization, or execution restrictions. An authenticated remote attacker can upload a crafted PHP file and cause the application or web server to execute it, resulting in remote code execution (RCE).

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
References
Description

PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Specifically, the username parameter accepts unvalidated user input, which is then concatenated directly into a backend SQL query.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 6.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
References
Description

NMIS/BioDose software V22.02 and previous versions contain executable binaries with plain text hard-coded passwords. These hard-coded passwords could allow unauthorized access to both the application and database.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
cvss4
Base: 8.4
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure file permissions, which in certain deployment scenarios can enable users on client workstations to modify the program executables and libraries.

Published
Date
2025-12-02
Updated
Date
2025-12-02
Risk Information
cvss3
Base: 8.0
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H
cvss4
Base: 7.1
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References