Comparison Overview

Social360 (Acquired by Signal AI)

VS

TOTVS

Social360 (Acquired by Signal AI)

8 Plaza Gardens, 88 Upper Richmond Road London, Putney SW15 2DT, GB
Last Update: 2025-03-17 (UTC)
Between 800 and 900
http://www.s360group.com

Strong

Social360 is a leading online media monitoring and analysis company, working with some of the biggest global brands and communications consultancies in the world. What sets us apart is our absolute focus on accuracy and relevance in every situation we track, delivering hand-picked critical insight that matters to your business. Our model is grounded in proprietary technology, scanning and harvesting vast online datasets and constantly refining searches based on clients’ requirements. Skilled and experienced communications teams edit and prioritise this intelligence, spotting trends and identifying influencers to deliver high-level, succinct and curated insight directly to our clients.

NAICS: 5112
NAICS Definition: Software Publishers
Employees: 51-200
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0

TOTVS

Av Braz Leme, 1000, Sao Paulo, SP, 02511-900, BR
Last Update: 2025-05-06 (UTC)

Strong

Between 800 and 900
https://www.totvs.com

Olá, somos a TOTVS! A maior empresa de tecnologia do Brasil. 🤓 Líder absoluta em sistemas e plataformas para empresas, a TOTVS possui mais de 70 mil clientes. Indo muito além do ERP, oferece tecnologia completa para digitalização dos negócios por meio de 3 unidades de negócio: - Gestão, com sistemas para automatizar processos das atividades fim e do backoffice da operação; 💻 - Techfin, oferecendo serviços financeiros personalizados por meio dos seus sistemas; 💸 - RD Station, com soluções para as empresas venderem mais e crescerem. 🚀 Nos últimos 5 anos, a companhia investiu R$3 bilhões em pesquisa e desenvolvimento para atender de maneira cada vez mais especializada empresas de 12 segmentos da economia, tornando-se um trusted advisor de seus clientes. A TOTVS é uma potência tecnológica que apoia a evolução de empresas de norte a sul do país. O Brasil, que faz, faz com TOTVS.

NAICS: 5112
NAICS Definition: Software Publishers
Employees: 14,067
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/defaultcompany.jpeg
Social360 (Acquired by Signal AI)
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/totvs.jpeg
TOTVS
ISO 27001
Not verified
SOC 2
Not verified
GDPR
No public badge
PCI DSS
No public badge
Compliance Summary
Social360 (Acquired by Signal AI)
100%
Compliance Rate
0/4 Standards Verified
TOTVS
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for Social360 (Acquired by Signal AI) in 2025.

Incidents vs Software Development Industry Average (This Year)

No incidents recorded for TOTVS in 2025.

Incident History — Social360 (Acquired by Signal AI) (X = Date, Y = Severity)

Social360 (Acquired by Signal AI) cyber incidents detection timeline including parent company and subsidiaries

Incident History — TOTVS (X = Date, Y = Severity)

TOTVS cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/defaultcompany.jpeg
Social360 (Acquired by Signal AI)
Incidents

No Incident

https://images.rankiteo.com/companyimages/totvs.jpeg
TOTVS
Incidents

No Incident

FAQ

Both Social360 (Acquired by Signal AI) company and TOTVS company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, TOTVS company has disclosed a higher number of cyber incidents compared to Social360 (Acquired by Signal AI) company.

In the current year, TOTVS company and Social360 (Acquired by Signal AI) company have not reported any cyber incidents.

Neither TOTVS company nor Social360 (Acquired by Signal AI) company has reported experiencing a ransomware attack publicly.

Neither TOTVS company nor Social360 (Acquired by Signal AI) company has reported experiencing a data breach publicly.

Neither TOTVS company nor Social360 (Acquired by Signal AI) company has reported experiencing targeted cyberattacks publicly.

Neither Social360 (Acquired by Signal AI) company nor TOTVS company has reported experiencing or disclosing vulnerabilities publicly.

Social360 (Acquired by Signal AI) company has more subsidiaries worldwide compared to TOTVS company.

TOTVS company employs more people globally than Social360 (Acquired by Signal AI) company, reflecting its scale as a Software Development.

Latest Global CVEs (Not Company-Specific)

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in The Wikimedia Foundation MediaWiki Cargo extension allows SQL Injection.This issue affects MediaWiki Cargo extension: 1.39, 1.43, 1.44.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss4
Base: 2.1
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:Y/R:U/V:C/RE:M/U:Amber
References
Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation MediaWiki QuizGame extension allows Stored XSS.This issue affects MediaWiki QuizGame extension: 1.39, 1.43, 1.44.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss4
Base: 2.0
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:C/RE:M/U:Amber
References
Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation MediaWiki PollNY extension allows Stored XSS.This issue affects MediaWiki PollNY extension: 1.39, 1.43, 1.44.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss4
Base: 2.0
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:C/RE:M/U:Amber
References
Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in The Wikimedia Foundation MediaWiki WebAuthn extension allows Stored XSS.This issue affects MediaWiki WebAuthn extension: 1.39, 1.43, 1.44.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss4
Base: 5.8
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:A/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:N/R:U/V:C/RE:L/U:Amber
References
Description

pyquokka is a framework for making data lakes work for time series. In versions 0.3.1 and prior, the FlightServer class directly uses pickle.loads() to deserialize action bodies received from Flight clients without any sanitization or validation in the do_action() method. The vulnerable code is located in pyquokka/flight.py at line 283 where arbitrary data from Flight clients is directly passed to pickle.loads(). When FlightServer is configured to listen on 0.0.0.0, this allows attackers across the entire network to perform arbitrary remote code execution by sending malicious pickled payloads through the set_configs action. Additional vulnerability points exist in the cache_garbage_collect, do_put, and do_get functions where pickle.loads is used to deserialize untrusted remote data.

Published
Date
2025-10-17
Updated
Date
2025-10-17
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References