Comparison Overview

Smart City Dortmund

VS

U.S. Department of the Treasury

Smart City Dortmund

Betenstraße, 19, Dortmund, North Rhine-Westphalia, DE, 44137
Last Update: 2025-12-25
View Profile
Between 700 and 749
smartcity.dortmund.de

Das Smart City Team der Stadt Dortmund setzt sich aus unterschiedlichen Mitarbeiter*innen mit verschiedenen Fachexpertisen zusammen, um als Impulsgeber das Thema Smart City innerhalb und außerhalb der Stadt voranzutreiben. Mit der übergeordneten Smart City Strategie DOS 2030, die zusammen mit der Stadt Schwerte erarbeitet wurde, möchten Dortmund und Schwerte ihren Bürger*innen neue und innovative Lösungen und Kommunikationskanäle bieten - und zwar über die Digitalisierung von Verwaltungsleistungen hinaus. Unsere Vision: Eine smarte Region "Smart Cities sind wir nur gemeinsam. Smart sind wir, wenn alle Akteur*innen und Technologien über einen intelligenten Prozess miteinander vernunden sind. Smart sind wir, wenn um unseren Bürger*innen unseren besten Service anzubieten, eine hohe Lebens- und Umweltqualität zu garantieren und die Wirtschaftsstandorte Dortmund und Schwerte zu stärken Wir sind bürger*innennah, sozial, nachhaltig, transparent, lebenswert und resilient."

NAICS: 92
NAICS Definition: Public Administration
Employees: 1
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
1
View Profile

U.S. Department of the Treasury

1500 Pennsylvania Ave NW, Washington, DC, US, 20005
Last Update: 2025-12-25
Between 600 and 649
https://home.treasury.gov/

The Treasury Department is the executive agency responsible for promoting economic prosperity and ensuring the financial security of the United States. The Department is responsible for a wide range of activities such as advising the President on economic and financial issues, encouraging sustainable economic growth, and fostering improved governance in financial institutions. The Department of the Treasury operates and maintains systems that are critical to the nation's financial infrastructure, such as the production of coin and currency, the disbursement of payments to the American public, revenue collection, and the borrowing of funds necessary to run the federal government. The Department works with other federal agencies, foreign governments, and international financial institutions to encourage global economic growth, raise standards of living, and to the extent possible, predict and prevent economic and financial crises. The Treasury Department also performs a critical and far-reaching role in enhancing national security by implementing economic sanctions against foreign threats to the U.S., identifying and targeting the financial support networks of national security threats, and improving the safeguards of our financial systems.

NAICS: 92
NAICS Definition: Public Administration
Employees: 14,388
Subsidiaries: 0
12-month incidents
3
Known data breaches
3
Attack type number
2

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/smartcitydortmund.jpeg
Smart City Dortmund
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/us-treasury.jpeg
U.S. Department of the Treasury
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Smart City Dortmund
100%
Compliance Rate
0/4 Standards Verified
U.S. Department of the Treasury
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Government Administration Industry Average (This Year)

No incidents recorded for Smart City Dortmund in 2025.

Incidents vs Government Administration Industry Average (This Year)

U.S. Department of the Treasury has 252.94% more incidents than the average of same-industry companies with at least one recorded incident.

Incident History — Smart City Dortmund (X = Date, Y = Severity)

Smart City Dortmund cyber incidents detection timeline including parent company and subsidiaries

Incident History — U.S. Department of the Treasury (X = Date, Y = Severity)

U.S. Department of the Treasury cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/smartcitydortmund.jpeg
Smart City Dortmund
Incidents

Date Detected: 10/2023
Type:Cyber Attack
Attack Vector: Distributed Denial of Service (DDoS)
Blog: Blog
https://images.rankiteo.com/companyimages/us-treasury.jpeg
U.S. Department of the Treasury
Incidents

Date Detected: 8/2025
Type:Cyber Attack
Attack Vector: exploitation of trusted cloud relationships (SaaS providers, Microsoft CSPs), zero-day vulnerabilities (e.g., Citrix NetScaler CVE-2023-3519, Ivanti Pulse Connect CVE-2025-0282), ProxyLogon (Microsoft Exchange), compromised SOHO devices as proxies, web shells (Neo-reGeorg, China Chopper), custom Linux RAT (CloudedHope)
Motivation: cyberespionage (targeting government, technology, legal, and professional services for sensitive data)
Blog: Blog

Date Detected: 3/2025
Type:Breach
Motivation: Espionage, Strategic Advantage
Blog: Blog

Date Detected: 1/2025
Type:Breach
Attack Vector: Exploited flaws in BeyondTrust software
Motivation: Data Theft
Blog: Blog

FAQ

Smart City Dortmund company demonstrates a stronger AI Cybersecurity Score compared to U.S. Department of the Treasury company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

U.S. Department of the Treasury company has faced a higher number of disclosed cyber incidents historically compared to Smart City Dortmund company.

In the current year, U.S. Department of the Treasury company has reported more cyber incidents than Smart City Dortmund company.

Neither U.S. Department of the Treasury company nor Smart City Dortmund company has reported experiencing a ransomware attack publicly.

U.S. Department of the Treasury company has disclosed at least one data breach, while Smart City Dortmund company has not reported such incidents publicly.

Both U.S. Department of the Treasury company and Smart City Dortmund company have reported experiencing targeted cyberattacks.

Neither Smart City Dortmund company nor U.S. Department of the Treasury company has reported experiencing or disclosing vulnerabilities publicly.

Neither Smart City Dortmund nor U.S. Department of the Treasury holds any compliance certifications.

Neither company holds any compliance certifications.

Neither Smart City Dortmund company nor U.S. Department of the Treasury company has publicly disclosed detailed information about the number of their subsidiaries.

U.S. Department of the Treasury company employs more people globally than Smart City Dortmund company, reflecting its scale as a Government Administration.

Neither Smart City Dortmund nor U.S. Department of the Treasury holds SOC 2 Type 1 certification.

Neither Smart City Dortmund nor U.S. Department of the Treasury holds SOC 2 Type 2 certification.

Neither Smart City Dortmund nor U.S. Department of the Treasury holds ISO 27001 certification.

Neither Smart City Dortmund nor U.S. Department of the Treasury holds PCI DSS certification.

Neither Smart City Dortmund nor U.S. Department of the Treasury holds HIPAA certification.

Neither Smart City Dortmund nor U.S. Department of the Treasury holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A vulnerability was determined in itsourcecode Online Frozen Foods Ordering System 1.0. This affects an unknown part of the file /contact_us.php. This manipulation of the argument Name causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

C-Kermit (aka ckermit) through 10.0 Beta.12 (aka 416-beta12) before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 8.9
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L
References
Description

Telenium Online Web Application is vulnerable due to a Perl script that is called to load the login page. Due to improper input validation, an attacker can inject arbitrary Perl code through a crafted HTTP request, leading to remote code execution on the server.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss4
Base: 9.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Fujitsu / Fsas Technologies ETERNUS SF ACM/SC/Express (DX / AF Management Software) before 16.8-16.9.1 PA 2025-12, when collected maintenance data is accessible by a principal/authority other than ETERNUS SF Admin, allows an attacker to potentially affect system confidentiality, integrity, and availability.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 5.6
Severity: HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N
References
Description

ONLYOFFICE Docs before 9.2.1 allows XSS in the textarea of the comment editing form. This is related to DocumentServer.

Published
Date
2025-12-24
Updated
Date
2025-12-24
Risk Information
cvss3
Base: 6.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
References