Comparison Overview

Sony

VS

Paramount

Sony

1-7-1 Konan,, Minato-ku, Tokyo, None, JP, 108-0075
Last Update: 2025-12-09
View Profile
Between 750 and 799
https://www.sony.com/en/

Sony’s purpose is simple. We aim to fill the world with emotion, through the power of creativity and technology. We want to be responsible for getting hearts racing, stirring ambition, and putting a smile on the faces of our customers. That challenge, combined with our spirit of innovation, motivates us to create groundbreaking technology, entertainment, and services for people worldwide. Our history as a global brand has been built around employees that all have a passion for touching peoples'​ lives, and pride in pushing beyond the status quo to produce truly extraordinary results. We’re uniquely positioned because we operate in many different industries - from movies and music to video games and electronics. And, with offices around the globe, we benefit from a global workforce that learns and grows together through mutual respect. If you're ready to join a diverse team at an innovation-led company with the power to change lives, then we encourage you to read up on the different Sony group companies and check out our Life page. Then, get in touch, and together, let’s make the world say wow.

NAICS: 71
NAICS Definition: Arts, Entertainment, and Recreation
Employees: 23,628
Subsidiaries: 11
12-month incidents
1
Known data breaches
2
Attack type number
4
View Profile

Paramount

None, None, New York, None, US, None
Last Update: 2025-12-09
Between 750 and 799
https://www.paramount.com

Paramount is a leading media and entertainment company that creates premium content and experiences for audiences worldwide. Driven by iconic studios, networks and streaming services, Paramount's portfolio of consumer brands includes CBS, Showtime Networks, Paramount Pictures, Skydance Animation, Skydance Sports, Nickelodeon, MTV, Comedy Central, BET, Paramount+, Skydance Games, and Pluto TV, among others. Paramount delivers the largest share of the U.S. television audience and boasts one of the industry's most important and extensive libraries of TV and film titles. In addition to offering innovative streaming services and digital video products, the company provides powerful capabilities in production, distribution and advertising solutions.

NAICS: 71
NAICS Definition: Arts, Entertainment, and Recreation
Employees: 31,968
Subsidiaries: 36
12-month incidents
0
Known data breaches
2
Attack type number
1

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/sony.jpeg
Sony
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/paramountco.jpeg
Paramount
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Sony
100%
Compliance Rate
0/4 Standards Verified
Paramount
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Entertainment Providers Industry Average (This Year)

Sony has 13.64% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs Entertainment Providers Industry Average (This Year)

No incidents recorded for Paramount in 2025.

Incident History — Sony (X = Date, Y = Severity)

Sony cyber incidents detection timeline including parent company and subsidiaries

Incident History — Paramount (X = Date, Y = Severity)

Paramount cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/sony.jpeg
Sony
Incidents

Date Detected: 3/2025
Type:Breach
Blog: Blog

Date Detected: 09/2023
Type:Data Leak
Motivation: Financial Gain
Blog: Blog

Date Detected: 12/2014
Type:Breach
Blog: Blog
https://images.rankiteo.com/companyimages/paramountco.jpeg
Paramount
Incidents

Date Detected: 12/2023
Type:Breach
Blog: Blog

Date Detected: 08/2023
Type:Breach
Blog: Blog

FAQ

Sony company demonstrates a stronger AI Cybersecurity Score compared to Paramount company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Sony company has faced a higher number of disclosed cyber incidents historically compared to Paramount company.

In the current year, Sony company has reported more cyber incidents than Paramount company.

Neither Paramount company nor Sony company has reported experiencing a ransomware attack publicly.

Both Paramount company and Sony company have disclosed experiencing at least one data breach.

Sony company has reported targeted cyberattacks, while Paramount company has not reported such incidents publicly.

Sony company has disclosed at least one vulnerability, while Paramount company has not reported such incidents publicly.

Neither Sony nor Paramount holds any compliance certifications.

Neither company holds any compliance certifications.

Paramount company has more subsidiaries worldwide compared to Sony company.

Paramount company employs more people globally than Sony company, reflecting its scale as a Entertainment Providers.

Neither Sony nor Paramount holds SOC 2 Type 1 certification.

Neither Sony nor Paramount holds SOC 2 Type 2 certification.

Neither Sony nor Paramount holds ISO 27001 certification.

Neither Sony nor Paramount holds PCI DSS certification.

Neither Sony nor Paramount holds HIPAA certification.

Neither Sony nor Paramount holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

A weakness has been identified in itsourcecode Online Pet Shop Management System 1.0. This vulnerability affects unknown code of the file /pet1/addcnp.php. This manipulation of the argument cnpname causes sql injection. The attack can be initiated remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in Tenda AX9 22.03.01.46. This affects the function image_check of the component httpd. The manipulation results in use of weak hash. It is possible to launch the attack remotely. A high complexity level is associated with this attack. It is indicated that the exploitability is difficult. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 2.6
Severity: HIGH
AV:N/AC:H/Au:N/C:N/I:P/A:N
cvss3
Base: 3.7
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N
cvss4
Base: 6.3
Severity: HIGH
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A weakness has been identified in code-projects Student File Management System 1.0. This issue affects some unknown processing of the file /admin/update_student.php. This manipulation of the argument stud_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been made available to the public and could be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A security flaw has been discovered in code-projects Student File Management System 1.0. This vulnerability affects unknown code of the file /admin/save_user.php. The manipulation of the argument firstname results in sql injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in code-projects Student File Management System 1.0. This affects an unknown part of the file /admin/update_user.php. The manipulation of the argument user_id leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published
Date
2025-12-13
Updated
Date
2025-12-13
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References