Comparison Overview

Suricata Project | Open Information Security Foundation

VS

Thales Cyber Solutions

Suricata Project | Open Information Security Foundation

None
Last Update: 2025-03-13 (UTC)
Between 800 and 900
http://www.oisf.net

Strong

The Open Information Security Foundation (OISF) is a non-profit foundation organized to build a next-generation IDS/IPS engine. The OISF has formed a multi-national group of leading software developers in the security industry. In addition to developers and a consortium consisting of leading cyber security companies, OISF has engaged the open source security community to identify current and future IDS/IPS needs and desires. OISFโ€™s primary goal is to remain on the leading edge of open source IDS/IPS development, community needs, and objectives. This is only attainable if you, the community, get involved. We welcome participation large and small and have built working groups and mailing lists to engage and educate all interested people and organizations. Funding for the OISF comes from organizations within our community that form the OISF Consortium. These companies gain a non-GPL limited license and other benefits for the engine in return for their ongoing support. We run onsite and public training events, as well as, an annual users conference. Please contact us for information about these and other events [email protected]. As OISF continues to build the community we are always on the look out to take on additional open-source technologies and projects in the security sector.

NAICS: None
NAICS Definition:
Employees: 14
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0

Thales Cyber Solutions

None
Last Update: 2025-03-15 (UTC)

Strong

Between 800 and 900
https://cds.thalesgroup.com

Drawing on a team of 6,000 experts and developers, Thales is a global leader in cybersecurity โ€šร„รฌ no.1 in data security - with solutions deployed in 148 countries, generating annual revenues in excess of โ€šร‡ยจ2 billion in the domain. Thales supports its enterprise and government customers in the cybersecurity of their digital transformation and contribute to the identification and control of cyber risks, ensure the implementation of best reduction practices, operate cyber incident detection and response services, and intervene with our clients when attacks materialise. Drawing on this and on the expertise about industrial and critical systems, the services were deployed to cover the needs in the fields of transportation, aerospace, defence, government administrations, and finance in three operating models: > Cybersecurity Consulting and Architecture: Aimed at deploying a cybersecurity strategy adapted to the business and regulatory challenges of clients. > Cybersecurity Solutions Integration: Aimed at deploying technologies adapted to the challenges of organisations and at protecting their assets. > Detection and Response Services: Delivered from 11 Security Operations Centres (SOCs) around the world, these services detect attacks against monitored systems 24/7 and respond to them using our rapid intervention forces. Thales invests in the continuous development of its portfolio by leveraging the latest artificial intelligence and post-quantum cryptography technologies.

NAICS: None
NAICS Definition:
Employees: 10,001+
Subsidiaries: 0
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/the-open-information-security-foundation.jpeg
Suricata Project | Open Information Security Foundation
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
https://images.rankiteo.com/companyimages/thales-security.jpeg
Thales Cyber Solutions
โ€”
ISO 27001
Not verified
โ€”
SOC 2
Not verified
โ€”
GDPR
No public badge
โ€”
PCI DSS
No public badge
Compliance Summary
Suricata Project | Open Information Security Foundation
100%
Compliance Rate
0/4 Standards Verified
Thales Cyber Solutions
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Computer and Network Security Industry Average (This Year)

No incidents recorded for Suricata Project | Open Information Security Foundation in 2025.

Incidents vs Computer and Network Security Industry Average (This Year)

No incidents recorded for Thales Cyber Solutions in 2025.

Incident History โ€” Suricata Project | Open Information Security Foundation (X = Date, Y = Severity)

Suricata Project | Open Information Security Foundation cyber incidents detection timeline including parent company and subsidiaries

Incident History โ€” Thales Cyber Solutions (X = Date, Y = Severity)

Thales Cyber Solutions cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/the-open-information-security-foundation.jpeg
Suricata Project | Open Information Security Foundation
Incidents

No Incident

https://images.rankiteo.com/companyimages/thales-security.jpeg
Thales Cyber Solutions
Incidents

No Incident

FAQ

Both Suricata Project | Open Information Security Foundation company and Thales Cyber Solutions company demonstrate a comparable AI risk posture, with strong governance and monitoring frameworks in place.

Historically, Thales Cyber Solutions company has disclosed a higher number of cyber incidents compared to Suricata Project | Open Information Security Foundation company.

In the current year, Thales Cyber Solutions company and Suricata Project | Open Information Security Foundation company have not reported any cyber incidents.

Neither Thales Cyber Solutions company nor Suricata Project | Open Information Security Foundation company has reported experiencing a ransomware attack publicly.

Neither Thales Cyber Solutions company nor Suricata Project | Open Information Security Foundation company has reported experiencing a data breach publicly.

Neither Thales Cyber Solutions company nor Suricata Project | Open Information Security Foundation company has reported experiencing targeted cyberattacks publicly.

Neither Suricata Project | Open Information Security Foundation company nor Thales Cyber Solutions company has reported experiencing or disclosing vulnerabilities publicly.

Suricata Project | Open Information Security Foundation company has more subsidiaries worldwide compared to Thales Cyber Solutions company.

Suricata Project | Open Information Security Foundation company employs more people globally than Thales Cyber Solutions company, reflecting its scale as a Computer and Network Security.

Latest Global CVEs (Not Company-Specific)

Description

Improper Protection Against Voltage and Clock Glitches in FPGA devices, could allow an attacker with physical access to undervolt the platform resulting in a loss of confidentiality.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss4
Base: 8.6
Severity: LOW
CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Malicious code was inserted into the Nx (build system) package and several related plugins. The tampered package was published to the npm software registry, via a supply-chain attack. Affected versions contain code that scans the file system, collects credentials, and posts them to GitHub as a repo under user's accounts.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 9.6
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
References
Description

Flag Forge is a Capture The Flag (CTF) platform. In versions from 2.1.0 to before 2.3.0, the API endpoint GET /api/problems/:id returns challenge hints in plaintext within the question object, regardless of whether the user has unlocked them via point deduction. Users can view all hints for free, undermining the business logic of the platform and reducing the integrity of the challenge system. This issue has been patched in version 2.3.0.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References
Description

Flag Forge is a Capture The Flag (CTF) platform. In version 2.1.0, the /api/admin/assign-badge endpoint lacks proper access control, allowing any authenticated user to assign high-privilege badges (e.g., Staff) to themselves. This could lead to privilege escalation and impersonation of administrative roles. This issue has been patched in version 2.2.0.

Published
Date
2025-09-24
Updated
Date
2025-09-24
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
References
Description

parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeState function of parse version 5.3.0 and before allows attackers to inject properties on Object.prototype via supplying a crafted payload, causing denial of service (DoS) as the minimum consequence.

Published
Date
2025-09-24
Updated
Date
2025-09-24
References