Comparison Overview

SM Supermalls

VS

Berkshire Hathaway HomeServices

SM Supermalls

Mall of Asia Complex, Pasay City, Metro Manila, PH, 1300
Last Update: 2025-12-01
View Profile
Between 750 and 799
https://www.smsupermalls.com/careers/

The SM Group of companies stands today as an institution, a store, a mall, a bank, a home, a resort, a hotel, and a place to see and experience with the family. One of the core business areas of the SM Group is the Shopping Center Management Corporation, generally referred to as SM Supermalls. The company is owned by SM Prime Holdings, Inc., a publicly-listed company and one of the largest integrated property developers in Southeast Asia. It operates 87 malls in the Philippines and 8 malls in China. SM Supermalls provides family fun experiences as it partners with the best-loved brands. The company has also become an engine for the country’s economic growth because wherever we go, new jobs are created. Careers are given a jumpstart, small businesses grow, real estate values go up, and we see an immediate acceleration of retail activity in the area. The company continues to expand locally and internationally, creating more experiences and providing opportunities for the people and the community. Visit www.smsupermalls.com for more information. #EverythingsHereAtSM #SMLIFE

NAICS: None
NAICS Definition: Others
Employees: 13,397
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0
View Profile

Berkshire Hathaway HomeServices

None
Last Update: 2025-12-01
Between 750 and 799
http://berkshirehathawayhs.com

Berkshire Hathaway HomeServices is a global residential real estate network with more than 50,000 real estate professionals and nearly 1,600 offices across 4 continents and 13 countries and territories including the U.S., Canada, Mexico, Europe, the Middle East, The Caribbean and India. In 2022, the Berkshire Hathaway HomeServices global network represented more than USD$154.7 billion in real estate sales volume. The network, among the few organizations entrusted to use the world-renowned Berkshire Hathaway name, brings to the real estate market a definitive mark of trust, integrity, stability, and longevity. For a confidential conversation on becoming a Berkshire Hathaway HomeServices Network Member or for Merger & Acquisition opportunities, email, [email protected].

NAICS: None
NAICS Definition: Others
Employees: 12,266
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/smsupermalls.jpeg
SM Supermalls
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/berkshire-hathaway-homeservices.jpeg
Berkshire Hathaway HomeServices
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
SM Supermalls
100%
Compliance Rate
0/4 Standards Verified
Berkshire Hathaway HomeServices
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Real Estate Industry Average (This Year)

No incidents recorded for SM Supermalls in 2025.

Incidents vs Real Estate Industry Average (This Year)

No incidents recorded for Berkshire Hathaway HomeServices in 2025.

Incident History — SM Supermalls (X = Date, Y = Severity)

SM Supermalls cyber incidents detection timeline including parent company and subsidiaries

Incident History — Berkshire Hathaway HomeServices (X = Date, Y = Severity)

Berkshire Hathaway HomeServices cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/smsupermalls.jpeg
SM Supermalls
Incidents

No Incident

https://images.rankiteo.com/companyimages/berkshire-hathaway-homeservices.jpeg
Berkshire Hathaway HomeServices
Incidents

No Incident

FAQ

SM Supermalls company demonstrates a stronger AI Cybersecurity Score compared to Berkshire Hathaway HomeServices company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Berkshire Hathaway HomeServices company has disclosed a higher number of cyber incidents compared to SM Supermalls company.

In the current year, Berkshire Hathaway HomeServices company and SM Supermalls company have not reported any cyber incidents.

Neither Berkshire Hathaway HomeServices company nor SM Supermalls company has reported experiencing a ransomware attack publicly.

Neither Berkshire Hathaway HomeServices company nor SM Supermalls company has reported experiencing a data breach publicly.

Neither Berkshire Hathaway HomeServices company nor SM Supermalls company has reported experiencing targeted cyberattacks publicly.

Neither SM Supermalls company nor Berkshire Hathaway HomeServices company has reported experiencing or disclosing vulnerabilities publicly.

Neither SM Supermalls nor Berkshire Hathaway HomeServices holds any compliance certifications.

Neither company holds any compliance certifications.

Berkshire Hathaway HomeServices company has more subsidiaries worldwide compared to SM Supermalls company.

SM Supermalls company employs more people globally than Berkshire Hathaway HomeServices company, reflecting its scale as a Real Estate.

Neither SM Supermalls nor Berkshire Hathaway HomeServices holds SOC 2 Type 1 certification.

Neither SM Supermalls nor Berkshire Hathaway HomeServices holds SOC 2 Type 2 certification.

Neither SM Supermalls nor Berkshire Hathaway HomeServices holds ISO 27001 certification.

Neither SM Supermalls nor Berkshire Hathaway HomeServices holds PCI DSS certification.

Neither SM Supermalls nor Berkshire Hathaway HomeServices holds HIPAA certification.

Neither SM Supermalls nor Berkshire Hathaway HomeServices holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in codingWithElias School Management System up to f1ac334bfd89ae9067cc14dea12ec6ff3f078c01. Affected is an unknown function of the file /student-view.php of the component Edit Student Info Page. This manipulation of the argument First Name causes cross site scripting. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss2
Base: 3.3
Severity: LOW
AV:N/AC:L/Au:M/C:N/I:P/A:N
cvss3
Base: 2.4
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

By providing a command-line argument starting with a semi-colon ; to an API endpoint created by the EnhancedCommandExecutor class of the HexStrike AI MCP server, the resultant composed command is executed directly in the context of the MCP server’s normal privilege; typically, this is root. There is no attempt to sanitize these arguments in the default configuration of this MCP server at the affected version (as of commit 2f3a5512 in September of 2025).

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss3
Base: 9.1
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
References
Description

A weakness has been identified in winston-dsouza Ecommerce-Website up to 87734c043269baac0b4cfe9664784462138b1b2e. Affected by this issue is some unknown functionality of the file /includes/header_menu.php of the component GET Parameter Handler. Executing manipulation of the argument Error can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be exploited. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss2
Base: 5.0
Severity: LOW
AV:N/AC:L/Au:N/C:N/I:P/A:N
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Qualitor 8.20/8.24. Affected by this vulnerability is the function eval of the file /html/st/stdeslocamento/request/getResumo.php. Performing manipulation of the argument passageiros results in code injection. Remote exploitation of the attack is possible. The exploit has been released to the public and may be exploited. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in Scada-LTS up to 2.7.8.1. Affected is the function Common.getHomeDir of the file br/org/scadabr/vo/exporter/ZIPProjectManager.java of the component Project Import. Such manipulation leads to path traversal. The attack may be launched remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published
Date
2025-11-30
Updated
Date
2025-11-30
Risk Information
cvss2
Base: 6.5
Severity: LOW
AV:N/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 6.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References